Filters








91,017 Hits in 10.2 sec

Analyzing the State of Static Analysis: A Large-Scale Evaluation in Open Source Software

Moritz Beller, Radjino Bholanath, Shane McIntosh, Andy Zaidman
<span title="">2016</span> <i title="IEEE"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/qjdq73uwobgdxnahtgyqdrsouu" style="color: black;">2016 IEEE 23rd International Conference on Software Analysis, Evolution, and Reengineering (SANER)</a> </i> &nbsp;
The use of automatic static analysis has been a software engineering best practice for decades.  ...  However, we still do not know a lot about its use in real-world software projects: How prevalent is the use of Automated Static Analysis Tools (ASATs) such as FindBugs and JSHint?  ...  INTRODUCTION Automated Static Analysis Tools (ASATs) scan the source or binary code of a software system for a set of pre-defined problems.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/saner.2016.105">doi:10.1109/saner.2016.105</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/wcre/BellerBMZ16.html">dblp:conf/wcre/BellerBMZ16</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/apu7goujm5aj3ozi5hkgmntiuu">fatcat:apu7goujm5aj3ozi5hkgmntiuu</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170924065344/https://repository.tudelft.nl/islandora/object/uuid:ad01e7dd-cd11-4fa8-9b46-92abff3dbae8/datastream/OBJ" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/99/80/998065c6747d8fb05dca5977415179e20371c3d4.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/saner.2016.105"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> ieee.com </button> </a>

CIASYS--Change Impact Analysis at System Level

Gabriella Tóth, Csaba Nagy, Judit Jász, Árpád Beszédes, Lajos Jeno Fülöp
<span title="">2010</span> <i title="IEEE"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/7bxtpp5fdjfohafns6t4goc57q" style="color: black;">2010 14th European Conference on Software Maintenance and Reengineering</a> </i> &nbsp;
The research field of change impact analysis plays an important role in software engineering theory and practice nowadays.  ...  The suite will use hybrid analysis techniques to benefit from all the advantages of static and dynamic analyses.  ...  This software implements new techniques besides evaluating and improving the state-of-the-art methods in the field of static analysis.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/csmr.2010.35">doi:10.1109/csmr.2010.35</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/csmr/TothNJBF10.html">dblp:conf/csmr/TothNJBF10</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/nrxejruerzg4lbmxi23cgigfda">fatcat:nrxejruerzg4lbmxi23cgigfda</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170808024515/http://www.inf.u-szeged.hu/~beszedes/research/csmr10-gop.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/48/76/4876ae7e771ed3a287a544fa81894859788d5575.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/csmr.2010.35"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> ieee.com </button> </a>

High Performance Static Analysis for Industry

Mark Bradley, Franck Cassez, Ansgar Fehnker, Thomas Given-Wilson, Ralf Huuck
<span title="">2012</span> <i title="Elsevier BV"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/uy5mv2ncw5eahkdx47hkrglxmm" style="color: black;">Electronical Notes in Theoretical Computer Science</a> </i> &nbsp;
Static source code analysis for software bug detection has come a long way since its early beginnings as a compiler technology.  ...  In this work we present an empirical study of our industrial strength source code analysis tool Goanna that uses a model checking core for static analysis of C/C++ code.  ...  We present a number of qualitative results and real-life software bugs found in large open-source code bases.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1016/j.entcs.2012.11.002">doi:10.1016/j.entcs.2012.11.002</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/5s7bkaya5bahjcoeolypxrkxou">fatcat:5s7bkaya5bahjcoeolypxrkxou</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20130409143015/http://www.cse.unsw.edu.au/~rhuuck/bcfgh-tapas12.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/38/52/3852975dbc18483d420b2015446bed2e8237e4a6.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1016/j.entcs.2012.11.002"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="unlock alternate icon" style="background-color: #fb971f;"></i> elsevier.com </button> </a>

Towards Vulnerability Discovery Using Staged Program Analysis [article]

Bhargava Shastry, Fabian Yamaguchi, Konrad Rieck, Jean-Pierre Seifert
<span title="2016-04-06">2016</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>
Our findings indicate that static analysis is a viable reinforcement to the software testing tool set.  ...  In this paper, we present the design and implementation of a practical vulnerability assessment framework, called Melange.  ...  Authors would like to thank colleagues at SecT and Daniel Defreez for valuable feedback on a draft of this paper, and Janis Danisevskis for discussions on the C++ standard and occasional code reviews.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1508.04627v2">arXiv:1508.04627v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/v353f43rvvfk7eaowkyhztdyjm">fatcat:v353f43rvvfk7eaowkyhztdyjm</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20191014134713/https://arxiv.org/pdf/1508.04627v2.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/34/0b/340bd3f7405e7ba7182db9369e951f8722bba2cd.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1508.04627v2" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>

Statical and Dynamical Software Analysis

Sergii Sosnytskyi, Mykola Glybovets, Olena Pyechkurova
<span title="2020-12-28">2020</span> <i title="National University of Kyiv - Mohyla Academy"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/s6loo75ydberxaqgf4kkm3n7ou" style="color: black;">NaUKMA Research Papers Computer Science</a> </i> &nbsp;
The article has an overview of why combination of several analysis techniques is necessary for software quality and examples how static and dynamical analysis may be introduced in a modern agile software  ...  The development of software built with quality has become an important trend and a natural choice in many organisations.  ...  The SQALE Model SQALE (Lifecycle Quality Assessment) is a method to support the evaluation of software sources. This is a general method that is independent of language and source analysis tools.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.18523/2617-3808.2020.3.50-55">doi:10.18523/2617-3808.2020.3.50-55</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/dl3s4tmhebbyhetm6ucm4snosy">fatcat:dl3s4tmhebbyhetm6ucm4snosy</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20201231211124/http://nrpcomp.ukma.edu.ua/article/download/220829/220478" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/50/df/50df8662233f32a05a2c0ab49e313cbf17c37cca.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.18523/2617-3808.2020.3.50-55"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> Publisher / doi.org </button> </a>

Static Program Analysis as a Fuzzing Aid [chapter]

Bhargava Shastry, Markus Leutner, Tobias Fiebig, Kashyap Thimmaraju, Fabian Yamaguchi, Konrad Rieck, Stefan Schmid, Jean-Pierre Seifert, Anja Feldmann
<span title="">2017</span> <i title="Springer International Publishing"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/2w3awgokqne6te4nvlofavy5a4" style="color: black;">Lecture Notes in Computer Science</a> </i> &nbsp;
In this paper, we demonstrate how static program analysis can guide fuzzing by augmenting existing program models maintained by the fuzzer.  ...  Using our approach, we have uncovered 15 zero-day vulnerabilities in the evaluated software that were not found by stand-alone fuzzers.  ...  We would like to thank Julian Fietkau for helping customize the Peach fuzzer for our experiments.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-319-66332-6_2">doi:10.1007/978-3-319-66332-6_2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/wa7tt73lp5fpnjonsrokamrx4a">fatcat:wa7tt73lp5fpnjonsrokamrx4a</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20180718233805/https://repository.tudelft.nl/islandora/object/uuid%3A4c2fca37-25fd-429b-a024-9075f96ce669/datastream/OBJ/download" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/e3/02/e30245f3c9257dcc0b29f180ab7465426a89493a.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-319-66332-6_2"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> springer.com </button> </a>

Automated analysis of load testing results

Zhen Ming Jiang
<span title="">2010</span> <i title="ACM Press"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/5ttq32n6ujhkxfb7h22ytvohp4" style="color: black;">Proceedings of the 19th international symposium on Software testing and analysis - ISSTA &#39;10</a> </i> &nbsp;
Few research efforts are devoted to the automated analysis of load testing results, mainly due to the limited access to large scale systems for use as case studies.  ...  Current industrial practices for checking the results of a load test remain ad hoc, involving highlevel checks.  ...  The author appreciates the generosity of the Performance Engineering team at Research In Motion (RIM).  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/1831708.1831726">doi:10.1145/1831708.1831726</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/issta/Jiang10.html">dblp:conf/issta/Jiang10</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/mgzhllrfujctnkszhtuqaqy4m4">fatcat:mgzhllrfujctnkszhtuqaqy4m4</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20150430021142/http://sail.cs.queensu.ca/publications/pubs/issta2010_jiang.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/d1/a2/d1a21b77a3d1d17e209682dec8fa401d84bfc230.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/1831708.1831726"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

Hang analysis

Xi Wang, Zhenyu Guo, Xuezheng Liu, Zhilei Xu, Haoxiang Lin, Xiaoge Wang, Zheng Zhang
<span title="">2008</span> <i title="ACM Press"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/m52bwee6j5hgxdqcfnxtfxy5we" style="color: black;">Proceedings of the 3rd ACM SIGOPS/EuroSys European Conference on Computer Systems 2008 - Eurosys &#39;08</a> </i> &nbsp;
Experiments with several large, real-world software packages (including a source control client, a graphics editor and a web server) show that there are several hang bugs in these applications, and that  ...  The experiments also demonstrate that HANGWIZ is scalable and can analyze millions of lines of code. We further discuss related techniques and report our experience on fixing hang bugs.  ...  Acknowledgments We would like to thank our shepherd, Terence Kelly, and the anonymous reviewers for their insightful comments. Thanks to John Whaley for useful discussions about bddbddb.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/1352592.1352612">doi:10.1145/1352592.1352612</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/eurosys/WangGLXLWZ08.html">dblp:conf/eurosys/WangGLXLWZ08</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/aihhov6vjzgtrbmcv4kz7x22da">fatcat:aihhov6vjzgtrbmcv4kz7x22da</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20110901083533/http://pdos.csail.mit.edu/~xi/papers/hang-eurosys08.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/a6/1d/a61dea743f839b44dc74987e3eeb1766e703b43e.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/1352592.1352612"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

Collective program analysis

Ganesha Upadhyaya, Hridesh Rajan
<span title="">2018</span> <i title="ACM Press"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/wvv27s77dvd5flktsj246kcxwu" style="color: black;">Proceedings of the 40th International Conference on Software Engineering - ICSE &#39;18</a> </i> &nbsp;
Boa [22] is a language and infrastructure for analyzing open source projects. Sourcerer [10] is an infrastructure for large-scale collection and analysis of open source code.  ...  INTRODUCTION Recently there has been significant interest and success in analyzing large corpora of source code repositories to solve a broad range of software engineering problems including but not limited  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/3180155.3180252">doi:10.1145/3180155.3180252</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/icse/UpadhyayaR18.html">dblp:conf/icse/UpadhyayaR18</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/icl4tlwo2beu5ir6wu45thij5u">fatcat:icl4tlwo2beu5ir6wu45thij5u</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20190504075259/https://lib.dr.iastate.edu/cgi/viewcontent.cgi?article=7485&amp;context=etd" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/35/8d/358ddbf3bddd75713421f3657d819515bc1720d0.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/3180155.3180252"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

Static analysis for security

B. Chess, G. McGraw
<span title="">2004</span> <i title="Institute of Electrical and Electronics Engineers (IEEE)"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/kt7pnevei5bd5ed4soqmccmdte" style="color: black;">IEEE Security and Privacy</a> </i> &nbsp;
source-code security analysis with static analysis tools. Since ITS4's release in early 2000 (www.cigital.com/its4/), the idea of detecting security problems through source code has come of age.  ...  By building an abstract syntax tree (AST) from source code, such a tool can take into account the basic semantics of the program being evaluated.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/msp.2004.111">doi:10.1109/msp.2004.111</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/vfducfihrvdlvp24d3xgvn6mw4">fatcat:vfducfihrvdlvp24d3xgvn6mw4</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170706111311/http://www.ida.liu.se/~TDDC90/literature/papers/static04mcgraw.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/76/86/76865f314e94e4da52a9e74684adf1c1b50e7695.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/msp.2004.111"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> ieee.com </button> </a>

Rapid Multi-Purpose, Multi-Commit Code Analysis

Carol V. Alexandru, Harald C. Gall
<span title="">2015</span> <i title="IEEE"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/wvv27s77dvd5flktsj246kcxwu" style="color: black;">2015 IEEE/ACM 37th IEEE International Conference on Software Engineering</a> </i> &nbsp;
Existing code-and software evolution studies typically operate on the scale of a few revisions of a small number of projects, mostly because existing tools are unsuited for performing large-scale studies  ...  We present a novel approach, which can be used to analyze an arbitrary number of revisions of a software project simultaneously and which can be adapted for the analysis of mixed-language projects.  ...  RELATED WORK There is fairly little existing research on speeding up static source code analysis and on large scale software analysis.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/icse.2015.211">doi:10.1109/icse.2015.211</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/icse/AlexandruG15.html">dblp:conf/icse/AlexandruG15</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/xk3rx5256zdnlh5z7euf56hfb4">fatcat:xk3rx5256zdnlh5z7euf56hfb4</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170926025140/http://www.zora.uzh.ch/id/eprint/110155/1/alexandru-gall_rapid-code-analysis_icse-nier15.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/db/a9/dba9dda39b6a3c8b3e1a51186c1b9a6cf61fa751.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/icse.2015.211"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> ieee.com </button> </a>

Integrating quality models and static analysis for comprehensive quality assessment

Klaus Lochmann, Lars Heinemann
<span title="">2011</span> <i title="ACM Press"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/wvv27s77dvd5flktsj246kcxwu" style="color: black;">Proceeding of the 2nd international workshop on Emerging trends in software metrics - WETSoM &#39;11</a> </i> &nbsp;
Furthermore, we propose a new approach for normalizing the results of rule-based code analysis tools, which uses the information on the structure of the source code in the quality model.  ...  To assess the quality of software, two ingredients are available today: (1) quality models defining abstract quality characteristics and (2) code analysis tools providing a large variety of metrics.  ...  A case study shows the suitability of the quality model to cover a large number of rules from two rule-based static analysis tools.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/1985374.1985378">doi:10.1145/1985374.1985378</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/icse/LochmannH11.html">dblp:conf/icse/LochmannH11</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/mbgbbtcrp5egvm2zsjbko7nziy">fatcat:mbgbbtcrp5egvm2zsjbko7nziy</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170706051535/https://www.cqse.eu/publications/2011-integrating-quality-models-and-static-analysis-for-comprehensive-quality-assessment.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/fd/98/fd9832c1aac14d8ab5d26333c54dbb2c064da660.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/1985374.1985378"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

On the combination of static analysis for software security assessment – a case study of an open-source e-government project [article]

Anh Nguyen-Duc, Manh Viet Do, Quan Luong Hong, Kiem Nguyen Khac
<span title="2021-03-23">2021</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>
In this work, we reported a longitudinal case study of adopting SAST as a part of a human-driven security assessment for an open-source e-government project.  ...  Static Application Security Testing (SAST) is a popular quality assurance technique in software engineering.  ...  Acknowledgement This work was co-funded under the Vietnam national project entitled "SOREG -Secured Open source-software Repository for E-Government". The project is led by MQ Solution 9 .  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2103.08010v2">arXiv:2103.08010v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/tqv4oj52yfg27hqfs3podcomuy">fatcat:tqv4oj52yfg27hqfs3podcomuy</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20210404222035/https://arxiv.org/vc/arxiv/papers/2103/2103.08010v1.pdf" title="fulltext PDF download [not primary version]" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <span style="color: #f43e3e;">&#10033;</span> <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/b6/12/b6126df749dac0a904e239c17884c326cd721939.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2103.08010v2" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>

Tools and Techniques for Malware Detection and Analysis [article]

Sajedul Talukder
<span title="2020-06-30">2020</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>
Malicious software, often referred to as a malware that are designed by attackers are polymorphic and metamorphic in nature which have the capability to change their code as they spread.  ...  One of the major and serious threats that the Internet faces today is the vast amounts of data and files which need to be evaluated for potential malicious intent.  ...  It can evaluate the application with different modules within the static analysis component to get a summary of the program.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2002.06819v2">arXiv:2002.06819v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/mekiawuu4fgzdedjthtq3v44hm">fatcat:mekiawuu4fgzdedjthtq3v44hm</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20200321105642/https://arxiv.org/pdf/2002.06819v1.pdf" title="fulltext PDF download [not primary version]" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <span style="color: #f43e3e;">&#10033;</span> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2002.06819v2" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>

Static Analysis-Based Approaches for Secure Software Development [chapter]

Miltiadis Siavvas, Erol Gelenbe, Dionysios Kehagias, Dimitrios Tzovaras
<span title="">2018</span> <i title="Springer International Publishing"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/jyopc6cf5ze5vipjlm4aztcffi" style="color: black;">Communications in Computer and Information Science</a> </i> &nbsp;
The multitude of static analysis tools that are available provide a large number of raw results that may contain security-relevant information, which may be useful for the production of secure software  ...  adoption of static analysis for addressing the identified open issues.  ...  This work is partially funded by the European Union's Horizon 2020 Research and Innovation Programme through SDK4ED project under Grant Agreement No. 780572.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-319-95189-8_13">doi:10.1007/978-3-319-95189-8_13</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/dwrls25kjnbhppblqea5g75zh4">fatcat:dwrls25kjnbhppblqea5g75zh4</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20190427010334/http://spiral.imperial.ac.uk/bitstream/10044/1/65154/7/2018_Book_SecurityInComputerAndInformati%282%29-153-168.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/72/cc/72cc6ad4d5d191a76beba6db5c0044ea3446ab88.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-319-95189-8_13"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> springer.com </button> </a>
&laquo; Previous Showing results 1 &mdash; 15 out of 91,017 results