We present Apposcopy, a new semantics-based approach for identifying a prevalent class of
Android malware that steals private user information. Apposcopy incorporates (i) a high …

We present a survey of control-flow analysis of functional programs, which has been the
subject of extensive investigation throughout the past 30 years. Analyses of the control flow …

Pointer analysis is a fundamental static program analysis, with a rich literature and wide
applications. The goal of pointer analysis is to compute an approximation of the set of …

Object-sensitivity has emerged as an excellent context abstraction for points-to analysis in
object-oriented languages. Despite its practical success, however, object-sensitivity is poorly …

Graph-based intermediate representations (IRs) are widely used for powerful compiler
optimizations, either interprocedurally in pure functional languages, or intraprocedurally in …

Context-sensitive points-to analysis is valuable for achieving high precision with good
performance. The standard flavors of context-sensitivity are call-site-sensitivity (kCFA) and …

Precise static analyses are context-, field-and flow-sensitive. Context-and field-sensitivity are
both expressible as context-free language (CFL) reachability problems. Solving both CFL …

Context-sensitivity is the primary approach for adding more precision to a points-to analysis,
while hopefully also maintaining scalability. An oft-reported problem with context-sensitive …

We present a high-level survey of state-of-the-art alias analyses for object-oriented
programs, based on a years-long effort develo** industrial-strength static analyses for …

JavaScript is widely used to provide client-side functionality in Web applications. To provide
services ranging from maps to advertisements, Web applications may incorporate untrusted …