IRIS

In Abstract Interpretation, completeness ensures that the analysis does not lose information with respect to the property of interest. In particular, for dynamic languages like JavaScript, completeness of string analysis is a key security issue, as poorly managed string manipulation code may easily lead to significant security flaws. In this paper, we provide a systematic and constructive approach for generating the completion of string domains for dynamic languages, and we apply it to the refinement of existing string abstractions. We also provide an effective procedure to measure the precision improvement obtained when lifting the analysis to complete domains.

Completeness of string analysis for dynamic languages / Arceri, V.; Olliaro, M.; Cortesi, A.; Mastroeni, I.. - In: INFORMATION AND COMPUTATION. - ISSN 0890-5401. - (2021), p. 104791.104791. [10.1016/j.ic.2021.104791]

Completeness of string analysis for dynamic languages

Arceri V.
;
2021-01-01

Abstract

In Abstract Interpretation, completeness ensures that the analysis does not lose information with respect to the property of interest. In particular, for dynamic languages like JavaScript, completeness of string analysis is a key security issue, as poorly managed string manipulation code may easily lead to significant security flaws. In this paper, we provide a systematic and constructive approach for generating the completion of string domains for dynamic languages, and we apply it to the refinement of existing string abstractions. We also provide an effective procedure to measure the precision improvement obtained when lifting the analysis to complete domains.
2021
Completeness of string analysis for dynamic languages / Arceri, V.; Olliaro, M.; Cortesi, A.; Mastroeni, I.. - In: INFORMATION AND COMPUTATION. - ISSN 0890-5401. - (2021), p. 104791.104791. [10.1016/j.ic.2021.104791]
1.1 Articolo su rivista
File in questo prodotto:
File Dimensione Formato  
1-s2.0-S0890540121001073-main.pdf

solo utenti autorizzati

Tipologia: Versione (PDF) editoriale
Licenza: NON PUBBLICO - Accesso privato/ristretto
Dimensione 566.62 kB
Formato Adobe PDF
  Visualizza/Apri   Richiedi una copia
566.62 kB Adobe PDF   Visualizza/Apri   Richiedi una copia
main.pdf

accesso aperto

Tipologia: Documento in Post-print
Licenza: Creative commons
Dimensione 488.76 kB
Formato Adobe PDF
Visualizza/Apri
488.76 kB Adobe PDF Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11381/2899227
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 2
  • ???jsp.display-item.citation.isi??? 2
social impact