Software composition analysis for vulnerability detection: An empirical study on Java projects

Software composition analysis for vulnerability detection: An empirical study on Java projects

Software composition analysis (SCA) tools are proposed to detect potential vulnerabilities introduced by open-source software (OSS) imported as third-party libraries (TPL). With the increasing complexity of software functionality, SCA tools may encounter various scenarios during the dependency resol...

Saved in:

書目詳細資料
Main Authors:	ZHAO, Lida, CHEN, Sen, XU, Zhengzi, ZHANG, Lyuye, WU, Jiahui, SUN, Jun, LIU, Yang
格式:	text
語言:	English
出版:	Institutional Knowledge at Singapore Management University 2023
主題:	SCA Package manager Vulnerability detection Software Engineering
在線閱讀:	https://ink.library.smu.edu.sg/sis_research/9317 https://ink.library.smu.edu.sg/context/sis_research/article/10317/viewcontent/fse2023_sca.pdf
標簽:	添加標簽沒有標簽, 成為第一個標記此記錄!
機構:	Singapore Management University
語言:	English

相似書籍

Genetic analysis of SCA2, 3 and 17 in idiopathic Parkinson's disease
由: Lim S.W., et al.
出版: (2018)

Analysis of SCA8, SCA10, SCA12, SCA17 and SCA19 in patients with unknown spinocerebellar ataxia: a Thai multicentre study
由: Lulin Choubtum, et al.
出版: (2017)

Combining Software Metrics and Text Features for Vulnerable File Prediction
由: ZHANG, Yun, et al.
出版: (2015)

Towards practical binary code similarity detection: vulnerability verification via patch semantic analysis
由: Yang, Shouguo, et al.
出版: (2024)

Finding real world software vulnerabilities using ChatGPT
由: Wong, Sean Chun Foh
出版: (2024)

Search-driven string constraint solving for vulnerability detection
由: THOME, Julian, et al.
出版: (2017)

Enhancing code vulnerability detection via vulnerability-preserving data augmentation
由: LIU, Shangqing, et al.
出版: (2024)

An empirical study of blockchain system vulnerabilities: modules, types, and patterns
由: YI, Xiao, et al.
出版: (2022)

Automatic vulnerability detection and repair
由: MA, Siqi
出版: (2018)

An empirical study of automatic program repair techniques for injection vulnerabilities
由: ZHU, Tingwei, et al.
出版: (2024)

Towards a hybrid framework for detecting input manipulation vulnerabilities
由: DING, Sun, et al.
出版: (2013)

Comprehensively understanding of software project code reuse for Java
由: Zhao, Lida
出版: (2025)

Locating vulnerabilities in binaries via memory layout recovering
由: WANG, Haijun, et al.
出版: (2019)

Cerebro: Context-aware adaptive fuzzing for effective vulnerability detection
由: LI, Yuekang, et al.
出版: (2019)

Learning program semantics for vulnerability detection via vulnerability-specific inter-procedural slicing
由: WU, Bozhi, et al.
出版: (2023)

An integrated approach for effective injection vulnerability analysis of web applications through security slicing and hybrid constraint solving
由: THOME, Julian, et al.
出版: (2018)

MANDO-GURU: vulnerability detection for smart contract source code by heterogeneous graph embeddings
由: NGUYEN, Huu Hoang, et al.
出版: (2022)

DAPA : Differential Analysis Aided Power Attack on (non-) linear feedback shift registers
由: Sim, Siang Meng, et al.
出版: (2021)

Exploiting library vulnerability via migration-based automated test generation
由: CHEN, Zirui, et al.
出版: (2024)

SGUARD: Towards fixing vulnerable smart contracts automatically
由: NGUYEN, Tai D., et al.
出版: (2021)

SOFTWARE VULNERABILITY REPAIR
由: RIDWAN SALIHIN SHARIFFDEEN
出版: (2023)

Enforcing system-wide control flow integrity for exploit detection and diagnosis
由: Prakash, A., et al.
出版: (2014)

Project system vulnerability to political risks in international construction projects: The case of Chinese contractors
由: Deng, X., et al.
出版: (2014)

SoFi: Reflection-augmented fuzzing for JavaScript engines
由: HE, Xiaoyu, et al.
出版: (2021)

VuRLE: Automatic vulnerability detection and repair by learning from examples
由: MA SIQI,, et al.
出版: (2017)

Spinocerebellar ataxia type 3 presenting as an L-DOPA responsive dystonia phenotype in a Chinese family
由: Wilder-Smith, E., et al.
出版: (2014)

Semantic driven vulnerability detection and patch analysis
由: Xu, Zhengzi
出版: (2021)

MANDO: Multi-level heterogeneous graph embeddings for fine-grained detection of smart contract vulnerabilities
由: NGUYEN, Huu Hoang, et al.
出版: (2022)

Finding RESTful API vulnerabilities using ChatGPT
由: Ho, Kenneth Jun Minn
出版: (2024)

Towards understanding Android system vulnerabilities: Techniques and insights
由: WU, Daoyuan, et al.
出版: (2019)

Smart Learning to Find Dumb Contracts
由: Tamer Abdelaziz, et al.
出版: (2023)

Mitigation of vulnerabilities and incompatibility in open-source ecosystem
由: Zhang, Lyuye
出版: (2024)

The socio-economic impacts of the COVID-19 mitigation measures and vulnerabilities in Singapore
由: Daly, Patrick, et al.
出版: (2025)

Techniques for identifying mobile platform vulnerabilities and detecting policy-violating applications
由: SU, Mon Kywe
出版: (2016)

Predicting SQL injection and cross site scripting vulnerabilities through mining input sanitization patterns
由: SHAR, Lwin Khin, et al.
出版: (2013)

Climate change impacts on rice-based livelihood vulnerability in the lower Vietnamese Mekong Delta: empirical evidence from Can Tho City and Tra Vinh Province
由: Tran, Dung Duc, et al.
出版: (2023)

Typestate-guided fuzzer for discovering use-after-free vulnerabilities
由: WANG, Haijun, et al.
出版: (2020)

EXPLORING A TRANSDIAGNOSTIC COGNITIVE VULNERABILITY TO INTERNALIZING SYMPTOMS IN ADOLESCENTS
由: RUTH POH YI NING
出版: (2019)

Multi-Granularity Detector for Vulnerability Fixes
由: NGUYEN, Truong Giang, et al.
出版: (2023)

HERMES: using commit-issue linking to detect vulnerability-fixing commits
由: NGUYEN, Truong Giang, et al.
出版: (2022)