The Spec# programming system is a new attempt at a more cost effective way to develop
and maintain high-quality software. This paper describes the goals and architecture of the …

Today's smartphones are a ubiquitous source of private and confidential data. At the same
time, smartphone users are plagued by carelessly programmed apps that leak important …

The paper shows how a large class of interprocedural dataflow-analysis problems can be
solved precisely in polynomial time by transforming them into a special kind of graph …

We present a new approach to static analysis for security vetting of Android apps and a
general framework called Amandroid. Amandroid determines points-to information for all …

Many threats present in smartphones are the result of interactions between application
components, not just artifacts of single components. However, current techniques for …

Static analysis tools for capturing bugs and vulnerabilities in software programs are widely
employed in practice, as they have the unique advantages of high coverage and …

This paper describes how a number of program-analysis problems can be solved by
transforming them to graph-reachability problems. Some of the program-analysis problems …

Solver-aided domain-specific languages (SDSLs) are an emerging class of computer-aided
programming systems. They ease the construction of programs by using satisfiability solvers …

Many program analyses require statically inferring the possible values of composite types.
However, current approaches either do not account for correlations between object fields or …

Data flow analysis is used to discover information for a wide variety of useful applications,
ranging from compiler optimizations to software engineering and verification. Modern …