{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,12]],"date-time":"2025-11-12T08:11:29Z","timestamp":1762935089036,"version":"3.45.0"},"publisher-location":"Cham","reference-count":21,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783032103437","type":"print"},{"value":"9783032103444","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,11,13]],"date-time":"2025-11-13T00:00:00Z","timestamp":1762992000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,11,13]],"date-time":"2025-11-13T00:00:00Z","timestamp":1762992000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-3-032-10344-4_14","type":"book-chapter","created":{"date-parts":[[2025,11,12]],"date-time":"2025-11-12T08:07:24Z","timestamp":1762934844000},"page":"147-159","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Towards a Systematic Approach to Memory Safety: A Case Study Integrating Techniques and Practices Over the Software Development Life Cycle (SDLC)"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0009-0009-5052-8173","authenticated-orcid":false,"given":"Isaia","family":"Tonini","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5667-3429","authenticated-orcid":false,"given":"Giacomo","family":"Nalli","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7530-4119","authenticated-orcid":false,"given":"Luca","family":"Piras","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0006-7684-7189","authenticated-orcid":false,"given":"Pietro","family":"De Matteis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0002-1660-387X","authenticated-orcid":false,"given":"Stelios","family":"Kapetanakis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7269-9285","authenticated-orcid":false,"given":"Silvio","family":"Ranise","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2025,11,13]]},"reference":[{"issue":"2","key":"14_CR1","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1145\/3708553","volume":"68","author":"RN Watson","year":"2025","unstructured":"Watson, R.N., et al.: It is time to standardize principles and practices for software memory safety. Commun. ACM 68(2), 40\u201345 (2025)","journal-title":"Commun. ACM"},{"key":"14_CR2","doi-asserted-by":"crossref","unstructured":"Azevedo de Amorim, A., HriT\u00b8C, C. Pierce, B.: The meaning of memory safety. in principles of security and trust, pp 79\u2013105. Springer International Publishing (2018)","DOI":"10.1007\/978-3-319-89722-6_4"},{"key":"14_CR3","doi-asserted-by":"crossref","unstructured":"Mantel, H.: Information flow and non-interference. In: Encyclopedia of Cryptography, Security and Privacy, pp. 1\u20135. Springer, Berlin (2022)","DOI":"10.1007\/978-3-642-27739-9_874-2"},{"key":"14_CR4","doi-asserted-by":"crossref","unstructured":"Yan, H., Chen, S., Sui, Y., et al.: Per-dereference verification of temporal heap safety via adaptive context-sensitive analysis. In: International Symposium on Static Analysis Symposium. Springer (2019)","DOI":"10.1007\/978-3-030-32304-2_4"},{"key":"14_CR5","unstructured":"The MITRE Corporation, Comprehensive Categorization: Memory Safety. https:\/\/cwe.mitre.org\/data\/definitions\/1399.html. Accessed 13 June 2025"},{"key":"14_CR6","unstructured":"Open Source Security Foundation (OpenSSF), Useful Definitions. https:\/\/github.com\/ossf\/Memory-Safety\/blob\/main\/docs\/definitions.md. Accessed 26 May 2025"},{"key":"14_CR7","unstructured":"Balaji, New WhatsApp RCE Vulnerability Let Remote Hackers Steal the Files in Your Android Phone Using Malformed GIF\u2019s, GBHackers On Security (2019). https:\/\/gbhackers.com\/whatsapp-double-free-vulnerability\/"},{"key":"14_CR8","unstructured":"Valgrind: Debugging and profiling tools. http:\/\/valgrind.org\/. Accessed24 June 2025"},{"key":"14_CR9","unstructured":"GitHub Copilot. https:\/\/github.com\/features\/copilot. Accessed 22 June 2025"},{"key":"14_CR10","unstructured":"GitHub Project. https:\/\/github.com\/Isax03\/unsafe-file-tracker. Accessed 28 June 2025"},{"key":"14_CR11","unstructured":"National Institute of Standards and Technology (NIST), Source Code Security Analyzers. https:\/\/www.nist.gov\/itl\/ssd\/software-quality-group\/source-code-security-analyzers"},{"key":"14_CR12","unstructured":"Cppcheck: A tool for static C\/C++ code analysis. https:\/\/cppcheck.sourceforge.io\/"},{"key":"14_CR13","unstructured":"LLVM Project, Clang: a C language family frontend for LLVM. https:\/\/clang.llvm.org\/"},{"key":"14_CR14","unstructured":"Frama-C: A sound and extensible static analyzer for C code. https:\/\/frama-c.com\/"},{"key":"14_CR15","unstructured":"AddressSanitizer. https:\/\/github.com\/google\/sanitizers\/wiki\/AddressSanitizer"},{"key":"14_CR16","unstructured":"OWASP Foundation, Inc. Secure Coding Practice Quick-reference Guide. https:\/\/owasp.org\/www-project-secure-coding-practices-quick-reference-guide\/stable-en\/"},{"key":"14_CR17","unstructured":"Xmalloc repository GitHub. https:\/\/github.com\/rosingh\/xmalloc"},{"key":"14_CR18","unstructured":"Safestringlib repository GitHub. https:\/\/github.com\/intel\/safestringlib"},{"key":"14_CR19","unstructured":"Chin Eian, I., Ka Yong, L., Yeap Xiao Li, M., Affan Bin Noor Hasmaddi, N., Zahra, F.: Integration of Security Modules in Software Development Lifecycle Phases (2020)"},{"key":"14_CR20","doi-asserted-by":"crossref","unstructured":"Sabelfeld, A., Myers, A.C.: Language-based information-flow security. IEEE J. Sel. Areas Commun. 21(1), 5\u201319 (2003)","DOI":"10.1109\/JSAC.2002.806121"},{"key":"14_CR21","doi-asserted-by":"crossref","unstructured":"Bigiotti, A., Bottoni, M.P.F., Nalli, G.: Blockchain in e-learning platform to enhance trustworthy and sharing of micro-credentials. In: International Conference on Advanced Information Systems Engineering. Springer (2024)","DOI":"10.1007\/978-3-031-61003-5_1"}],"container-title":["Lecture Notes on Data Engineering and Communications Technologies","Advances on P2P, Parallel, Grid, Cloud and Internet Computing"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-032-10344-4_14","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,11,12]],"date-time":"2025-11-12T08:07:34Z","timestamp":1762934854000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-032-10344-4_14"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,11,13]]},"ISBN":["9783032103437","9783032103444"],"references-count":21,"URL":"https:\/\/doi.org\/10.1007\/978-3-032-10344-4_14","relation":{},"ISSN":["2367-4512","2367-4520"],"issn-type":[{"value":"2367-4512","type":"print"},{"value":"2367-4520","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,11,13]]},"assertion":[{"value":"13 November 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"3PGCIC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on P2P, Parallel, Grid, Cloud and Internet Computing","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Sharjah","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"United Arab Emirates","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"12 November 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14 November 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"pgcic2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/voyager.ce.fit.ac.jp\/conf\/3pgcic\/2025\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}