Sound and precise malware analysis for Android via pushdown reachability and entry-point saturation
Sound malware analysis of Android applications is challenging. First, object-oriented
programs exhibit highly interprocedural, dynamically dispatched control structure. Second …
programs exhibit highly interprocedural, dynamically dispatched control structure. Second …
Allocation characterizes polyvariance: a unified methodology for polyvariant control-flow analysis
The polyvariance of a static analysis is the degree to which it structurally differentiates
approximations of program values. Polyvariant techniques come in a number of different …
approximations of program values. Polyvariant techniques come in a number of different …
Static analysis of non-interference in expressive low-level languages
P Aldous, M Might - Static Analysis: 22nd International Symposium, SAS …, 2015 - Springer
Early work in implicit information flow detection applied only to flat, procedureless languages
with structured control-flow (eg, if statements, while loops). These techniques have yet to be …
with structured control-flow (eg, if statements, while loops). These techniques have yet to be …
[PDF][PDF] Static Taint Analysis of Event-driven Scheme Programs.
Event-driven programs consist of event listeners that can be registered dynamically with
different types of events. The order in which these events are triggered is, however …
different types of events. The order in which these events are triggered is, however …
Information flow analysis for a dynamically typed language with staged metaprogramming
Web applications written in JavaScript are regularly used for dealing with sensitive or
personal data. Consequently, reasoning about their security properties has become an …
personal data. Consequently, reasoning about their security properties has become an …
Abstract allocation as a unified approach to polyvariance in control-flow analyses
In higher order settings, control-flow analysis aims to model the propagation of both data
and control by finitely approximating program behaviors across all possible executions. The …
and control by finitely approximating program behaviors across all possible executions. The …
Noninterference in expressive low-level languages
PS Aldous - 2017 - search.proquest.com
Early work in implicit information flow detection applied only to flat, procedureless languages
with structured control-flow (eg, if statements, while loops). These techniques have yet to be …
with structured control-flow (eg, if statements, while loops). These techniques have yet to be …
A posteriori taint-tracking for demonstrating non-interference in expressive low-level languages
P Aldous, M Might - 2016 IEEE Security and Privacy …, 2016 - ieeexplore.ieee.org
We previously presented a theory of analysis for expressive low-level languages that is
capable of proving non-interference for expressive languages. We now provide an …
capable of proving non-interference for expressive languages. We now provide an …
[PDF][PDF] A Taint Analyzer for COBOL Programs
A Lovato, R Giacobazzi, I Mastroeni - personales.upv.es
The potential damage injection attacks or information leakage can inflict to an organization
is huge. It is therefore important to recognize vulnerabilities in software that can make these …
is huge. It is therefore important to recognize vulnerabilities in software that can make these …