A number of tools can statically check program code to identify commonly encountered bug patterns. At the same time, programs are increasingly relying on external APIs for performing the bulk of their work: the bug-prone program logic is being fleshed-out, and many errors involve tricky subroutine calls to the constantly growing set of external libraries. Extending the static analysis tools to cover the available APIs is an approach that replicates scarce human effort across different tools and does not scale. Instead, we propose moving the static API call verification code into the API implementation, and distributing the verification code together with the library proper. We have designed a framework for providing static verification code...
The behavior of software using the Java Reflection API is fundamentally hard to predict by analyzing...
The behavior of software using the Java Reflection API is fundamentally hard to predict by analyzing...
In this paper, we describe static analysis techniques for finding bugs in programs using the Java Na...
Abstract—Programmers using an API often must follow protocols that specify when it is legal to call ...
Programmers using an API often must follow protocols that specify when it is legal to call particula...
<p>Programmers using an API often must follow protocols that specify when it is legal to call partic...
The Java Card API provides a framework of classes and interfaces that hides the details of the under...
Static analysis tools cannot detect violations of application-specific rules. They can be extended w...
Abstract. The Java Card API provides a framework of classes and interfaces that hides the details of...
Abstract. The Java Card API provides a framework of classes and interfaces that hides the details of...
Abstract. Software contains bugs and bugs cost money. A good way to find some bugs quickly is the us...
The behavior of software that uses the Java Reflection API is fundamentally hard to predict by analy...
Finding and fixing buggy code is an important and cost-intensive maintenance task, and static analys...
Today's software industry relies heavily on the reuse of existing software libraries. Such libraries...
Software development and maintenance are costly endeavors. The cost can be reduced if more software ...
The behavior of software using the Java Reflection API is fundamentally hard to predict by analyzing...
The behavior of software using the Java Reflection API is fundamentally hard to predict by analyzing...
In this paper, we describe static analysis techniques for finding bugs in programs using the Java Na...
Abstract—Programmers using an API often must follow protocols that specify when it is legal to call ...
Programmers using an API often must follow protocols that specify when it is legal to call particula...
<p>Programmers using an API often must follow protocols that specify when it is legal to call partic...
The Java Card API provides a framework of classes and interfaces that hides the details of the under...
Static analysis tools cannot detect violations of application-specific rules. They can be extended w...
Abstract. The Java Card API provides a framework of classes and interfaces that hides the details of...
Abstract. The Java Card API provides a framework of classes and interfaces that hides the details of...
Abstract. Software contains bugs and bugs cost money. A good way to find some bugs quickly is the us...
The behavior of software that uses the Java Reflection API is fundamentally hard to predict by analy...
Finding and fixing buggy code is an important and cost-intensive maintenance task, and static analys...
Today's software industry relies heavily on the reuse of existing software libraries. Such libraries...
Software development and maintenance are costly endeavors. The cost can be reduced if more software ...
The behavior of software using the Java Reflection API is fundamentally hard to predict by analyzing...
The behavior of software using the Java Reflection API is fundamentally hard to predict by analyzing...
In this paper, we describe static analysis techniques for finding bugs in programs using the Java Na...