Large Language Models (LLMs) like Codex are powerful tools for performing code
completion and code generation tasks as they are trained on billions of lines of code from …

Many developers rely on Large Language Models (LLMs) to facilitate software development.
Nevertheless, these models have exhibited limited capabilities in the security domain. We …

Cryptographic algorithms act as essential ingredients of all secure systems. However, the
expected security guarantee from cryptographic algorithms often falls short in practice due to …

WebAssembly is a compilation target for cross-platform applications that is increasingly
being used. In this paper, we investigate whether one can transparently cross-compile C …

Background: Previous studies have shown that up to 99.59% of the Java apps using crypto
APIs misuse the API at least once. However, these studies have been conducted on Java …

Prior research has shown that cryptography is hard to use for developers. We aim to
understand what cryptography issues developers face in practice. We clustered 91 954 …

Security issue reports are the primary means of informing development teams of security
risks in projects, but little is known about current practices. We aim to understand the …

Research has shown that cryptography concepts are hard to understand for developers, and
secure use of cryptography APIs is challenging for mainstream developers. We have …

The complexity of cryptographic APIs and developers' expertise gaps often leads to their
improper use, seriously threatening information security. Existing cryptographic API misuse …

Misuse of cryptographic (crypto) APIs is a noteworthy cause of security vulnerabilities. For
this reason, static analyzers were recently proposed for detecting crypto API misuses. They …