{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,1]],"date-time":"2025-10-01T15:57:42Z","timestamp":1759334262027,"version":"build-2065373602"},"reference-count":41,"publisher":"IEEE","license":[{"start":{"date-parts":[[2025,7,16]],"date-time":"2025-07-16T00:00:00Z","timestamp":1752624000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2025,7,16]],"date-time":"2025-07-16T00:00:00Z","timestamp":1752624000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025,7,16]]},"DOI":"10.1109\/qrs65678.2025.00071","type":"proceedings-article","created":{"date-parts":[[2025,9,29]],"date-time":"2025-09-29T17:51:28Z","timestamp":1759168288000},"page":"370-381","source":"Crossref","is-referenced-by-count":0,"title":["Hybrid Introspection for JIT-Compilers and Interpreters in Attack Surface Analysis"],"prefix":"10.1109","author":[{"given":"Pavel","family":"Dovgalyuk","sequence":"first","affiliation":[{"name":"Yaroslav-the-Wise Novgorod State University,Velikiy Novgorod,Russia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Vladislav","family":"Stepanov","sequence":"additional","affiliation":[{"name":"Institute for System Programming,Moscow,Russia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Arkadiy","family":"Ivanov","sequence":"additional","affiliation":[{"name":"Institute for System Programming,Moscow,Russia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Natalia","family":"Fursova","sequence":"additional","affiliation":[{"name":"Institute for System Programming,Moscow,Russia"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","first-page":"41","article-title":"QEMU, a Fast and Portable Dynamic Translator","volume-title":"Proceedings of the Annual Conference on USENIX Annual Technical Conference, ATEC \u201905, 2005, Anaheim, CA","author":"Bellard"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-30122-3_11"},{"key":"ref3","first-page":"1","article-title":"Decoupling dynamic program analysis from execution in virtual environments","volume-title":"USENIX 2008 Annual Technical Conference (ATC\u201908)","author":"Chow","year":"2008"},{"key":"ref4","first-page":"22","article-title":"Understanding Data Lifetime via Whole System Simulation","volume-title":"Proceedings of the 13th Conference on USENIX Security Symposium - Volume 13, SSYM\u201904, 2004, San Diego, CA","author":"Chow"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1145\/1961295.1950396"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/dsn.2017.39"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/3676641.3716023"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1145\/3313808.3313811"},{"volume-title":"Coverage-guided, in-process fuzzing for the JVM","year":"2025","key":"ref9"},{"article-title":"Cuckoo Foundation","volume-title":"Automated Malware Analysis","year":"2025","key":"ref10"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516697"},{"key":"ref12","first-page":"553","article-title":"2012 16th European Conference on Software Maintenance and Reengineering","volume-title":"Deterministic Replay of System\u2019s Execution with Multi-target QEMU Simulator for Dynamic Analysis and Reverse Debugging","author":"Dovgalyuk","year":"2012"},{"key":"ref13","first-page":"944","article-title":"QEMU-based Framework for Non-intrusive Virtual Machine Instrumentation and Introspection","volume-title":"Proceedings of the2017 11th Joint Meeting on Foundations of Software Engineering, ESEC\/FSE 2017, 2017, Paderborn, Germany","author":"Pavel"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/qrs51102.2020.00036"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1109\/QRS-C60940.2023.00023"},{"journal-title":"Bridging the Semantic Gap in Virtual Machine Introspection and Forensic Memory Analysis","year":"2025","author":"Fellicious","key":"ref16"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/qrs-c55045.2021.00174"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1145\/2610384.2610407"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1007\/0-387-24006-3_8"},{"article-title":"The HTML syntax","volume-title":"Character references","year":"2025","key":"ref20"},{"volume-title":"JDK Project","year":"2025","key":"ref21"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1145\/1972551.1972557"},{"journal-title":"The Java Virtual Machine Specification","year":"2024","author":"Lindholm","key":"ref23"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1109\/tse.2010.60"},{"volume-title":"MidPoint: the open source leader in identity security","year":"2025","key":"ref25"},{"volume-title":"Named character references","year":"2025","key":"ref26"},{"volume-title":"OWASP Noir. Attack surface detector that identifies endpoints by static analysis","year":"2025","key":"ref27"},{"volume-title":"PCRE2 - Perl-Compatible Regular Expressions","year":"2025","key":"ref28"},{"volume-title":"Petclinic: A sample Spring-based application","year":"2025","key":"ref29"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1016\/j.diin.2017.01.002"},{"volume-title":"Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU","year":"2025","key":"ref31"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1109\/candarw57323.2022.00069"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2023.111722"},{"volume-title":"Spring Boot","year":"2025","key":"ref34"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/QRS60937.2023.00047"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1145\/3607199.3607246"},{"volume-title":"What is V8?","year":"2025","key":"ref37"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1016\/j.fsidi.2022.301400"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/imccc.2011.213"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.3390\/electronics14020274"},{"key":"ref41","doi-asserted-by":"crossref","DOI":"10.1007\/978-3-030-00470-5_32","article-title":"KASR: A Reliable and Practical Approach to Attack Surface Reduction of Commodity OS Kernels","volume-title":"Research in Attacks, Intrusions, and Defenses","volume":"11050","author":"Zhang","year":"2018"}],"event":{"name":"2025 25th International Conference on Software Quality, Reliability and Security (QRS)","start":{"date-parts":[[2025,7,16]]},"location":"Hangzhou, China","end":{"date-parts":[[2025,7,20]]}},"container-title":["2025 25th International Conference on Software Quality, Reliability and Security (QRS)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/11173421\/11173424\/11173481.pdf?arnumber=11173481","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,9,30]],"date-time":"2025-09-30T13:22:13Z","timestamp":1759238533000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11173481\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,7,16]]},"references-count":41,"URL":"https:\/\/doi.org\/10.1109\/qrs65678.2025.00071","relation":{},"subject":[],"published":{"date-parts":[[2025,7,16]]}}}