{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,13]],"date-time":"2026-01-13T23:03:47Z","timestamp":1768345427018,"version":"3.49.0"},"reference-count":73,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"6","license":[{"start":{"date-parts":[[2022,11,1]],"date-time":"2022-11-01T00:00:00Z","timestamp":1667260800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2022,11,1]],"date-time":"2022-11-01T00:00:00Z","timestamp":1667260800000},"content-version":"am","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2022,11,1]],"date-time":"2022-11-01T00:00:00Z","timestamp":1667260800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2022,11,1]],"date-time":"2022-11-01T00:00:00Z","timestamp":1667260800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/100000006","name":"Office of Naval Research","doi-asserted-by":"publisher","award":["ONR-N00014-17-1-2498"],"award-info":[{"award-number":["ONR-N00014-17-1-2498"]}],"id":[{"id":"10.13039\/100000006","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100008982","name":"National Science Foundation","doi-asserted-by":"publisher","award":["CNS 1657124"],"award-info":[{"award-number":["CNS 1657124"]}],"id":[{"id":"10.13039\/501100008982","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans. Dependable and Secure Comput."],"published-print":{"date-parts":[[2022,11,1]]},"DOI":"10.1109\/tdsc.2021.3108031","type":"journal-article","created":{"date-parts":[[2021,8,27]],"date-time":"2021-08-27T20:09:26Z","timestamp":1630094966000},"page":"3790-3803","source":"Crossref","is-referenced-by-count":5,"title":["From Theory to Code: Identifying Logical Flaws in Cryptographic Implementations in C\/C++"],"prefix":"10.1109","volume":"19","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-1258-6470","authenticated-orcid":false,"given":"Sazzadur","family":"Rahaman","sequence":"first","affiliation":[{"name":"Department of Computer Science, Virginia Tech, Blacksburg, VA, USA"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5224-9970","authenticated-orcid":false,"given":"Haipeng","family":"Cai","sequence":"additional","affiliation":[{"name":"School of Electrical Engineering and Computer Science, Washington State University, Pullman, WA, USA"}]},{"given":"Omar","family":"Chowdhury","sequence":"additional","affiliation":[{"name":"Department of Computer Science, The University of Iowa, Iowa City, IA, USA"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8969-2792","authenticated-orcid":false,"given":"Danfeng","family":"Yao","sequence":"additional","affiliation":[{"name":"Department of Computer Science, Virginia Tech, Blacksburg, VA, USA"}]}],"member":"263","reference":[{"key":"ref73","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2017.23476"},{"key":"ref72","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2017.23265"},{"key":"ref71","doi-asserted-by":"publisher","DOI":"10.1109\/CSF.2015.37"},{"key":"ref70","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2014.11.001"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2013.42"},{"key":"ref38","article-title":"This POODLE bites: Exploiting the SSL 3.0 fallback","author":"m\u00f6ller","year":"2014"},{"key":"ref33","first-page":"319","article-title":"On the practical exploitability of dual EC in TLS implementations","author":"checkoway","year":"2014","journal-title":"Proc USENIX Conf Secur Symp"},{"key":"ref32","first-page":"205","article-title":"Mining your Ps and Qs: Detection of widespread weak keys in network devices","author":"heninger","year":"2012","journal-title":"Proc USENIX Conf Secur Symp"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-42045-0_18"},{"key":"ref30","first-page":"66","article-title":"Randomness and the netscape browser","volume":"21","author":"goldberg","year":"1996","journal-title":"Dr Dobb's Software Tools for the Professional Programmer"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-46035-7_35"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2016.23418"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978423"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813707"},{"key":"ref60","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382204"},{"key":"ref62","doi-asserted-by":"publisher","DOI":"10.1145\/2884781.2884790"},{"key":"ref61","article-title":"Symbolic execution of security protocol implementations: Handling cryptographic primitives","author":"vanhoef","year":"2018","journal-title":"Proc 12th USENIX Workshop Offensive Technol"},{"key":"ref63","doi-asserted-by":"publisher","DOI":"10.1109\/SecDev.2019.00017"},{"key":"ref28","article-title":"The vulnerability of SSL to chosen plaintext attack","author":"bard","year":"2004"},{"key":"ref64","article-title":"Secure design: A better bug repellent","author":"kern","year":"2017","journal-title":"Proc IEEE Secure Develop Conf"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1145\/2637166.2637237"},{"key":"ref65","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.52"},{"key":"ref66","doi-asserted-by":"publisher","DOI":"10.1145\/1543135.1542486"},{"key":"ref29","article-title":"BEAST","year":"2017"},{"key":"ref67","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23089"},{"key":"ref68","doi-asserted-by":"publisher","DOI":"10.1145\/1273463.1273490"},{"key":"ref69","doi-asserted-by":"publisher","DOI":"10.1145\/2619091"},{"key":"ref2","year":"2018","journal-title":"HTTP Over TLS - RFC 2818"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/SecDev.2017.23"},{"key":"ref20","author":"lindell","year":"2014","journal-title":"Introduction to Modern Cryptography"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1145\/2892208.2892230"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660283"},{"key":"ref24","first-page":"1639","article-title":"Make sure DSA signing exponentiations really are constant-time","author":"garc\u00eda","year":"2016","journal-title":"Proc ACM SIGSAC Conf Comput Commun Secur"},{"key":"ref23","first-page":"53","article-title":"Verifying constant-time implementations","author":"almeida","year":"2016","journal-title":"Proc 25th USENIX Conf Secur Symp"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1007\/BFb0055716"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382204"},{"key":"ref50","article-title":"CCS injection vulnerability","year":"2017"},{"key":"ref51","article-title":"The FREAK attack","year":"2017"},{"key":"ref59","first-page":"209","article-title":"KLEE: Unassisted and automatic generation of high-coverage tests for complex systems programs","author":"cadar","year":"2008","journal-title":"Proc 8th USENIX Conf Operating Syst Des Implementation"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1109\/SCCC.2016.7835996"},{"key":"ref57","year":"2019","journal-title":"Clang Static Analyzer"},{"key":"ref56","article-title":"Cross site scripting prevention with dynamic data tainting and static analysis","author":"vogt","year":"2007","journal-title":"Proc Symp Network and Distributed System Security"},{"key":"ref55","year":"2017","journal-title":"Fixed pthread implementation to avoid unintended double initialisations and double frees"},{"key":"ref54","year":"2017","journal-title":"Fixed potential stack corruption in mbedtls_x509write_crt_der()"},{"key":"ref53","year":"2017","journal-title":"libevent (stack) buffer overflow in evutil_parse_sockaddr_port()"},{"key":"ref52","article-title":"Non-control-data attacks are realistic threats","author":"chen","year":"2005","journal-title":"Proc Usenix Secur Symp"},{"key":"ref10","first-page":"931","article-title":"CogniCrypt: Supporting developers in using cryptography","author":"kr \u00fcger","year":"2017","journal-title":"Proc 32nd IEEE\/ACM Int Conf Automated Softw Eng"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3345659"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-45238-6_33"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.38"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.40"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.46"},{"key":"ref15","first-page":"177","article-title":"A system to verify network behavior of known cryptographic clients","author":"chi","year":"2017","journal-title":"Proc 14th USENIX Symp Netw Syst Des Implementation"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978411"},{"key":"ref17","first-page":"193","article-title":"Protocol state fuzzing of TLS implementations","author":"de ruiter","year":"2015","journal-title":"24th USENIX Security Symp"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.39"},{"key":"ref19","year":"2018","journal-title":"Bleichenbacher’s RSA signature forgery based on implementation error"},{"key":"ref4","year":"2018","journal-title":"RFC 3207 - SMTP service extension for secure SMTP over transport layer security"},{"key":"ref3","year":"2018","journal-title":"RFC 6944 - applicability statement DNS security (DNSSEC) DNSKEY algorithm implementation status"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978395"},{"key":"ref5","article-title":"The heartbleed bug","year":"2017"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516693"},{"key":"ref7","author":"kohno","year":"2010","journal-title":"Cryptography Engineering Design Principles and Practical Applications"},{"key":"ref49","article-title":"Cache-timing attacks on AES","author":"bernstein","year":"2017"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3133977"},{"key":"ref46","article-title":"Remote timing attacks are practical","author":"brumley","year":"2003","journal-title":"Proc Usenix Secur Symp"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660356"},{"key":"ref48","article-title":"Theoretical use of cache memory as a cryptanalytic side-channel","author":"page","year":"2002"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-23822-2_20"},{"key":"ref42","first-page":"752","article-title":"Bleichenbacher’s attack strikes again: Breaking PKCS#1 v1.5 in XML encryption","author":"jager","year":"2012","journal-title":"Proc Euro Symp Res Computer Security"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-32009-5_36"},{"key":"ref44","first-page":"733","article-title":"Revisiting SSL\/TLS implementations: New bleichenbacher side channels and attacks","author":"meyer","year":"2014","journal-title":"Proc Usenix Secur Symp"},{"key":"ref43","first-page":"689","article-title":"DROWN: Breaking TLS Using SSLv2","author":"aviram","year":"2016","journal-title":"Proc Usenix Secur Symp"}],"container-title":["IEEE Transactions on Dependable and Secure Computing"],"original-title":[],"link":[{"URL":"https:\/\/ieeexplore.ieee.org\/ielam\/8858\/9945627\/9524495-aam.pdf","content-type":"application\/pdf","content-version":"am","intended-application":"syndication"},{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8858\/9945627\/09524495.pdf?arnumber=9524495","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,12,12]],"date-time":"2022-12-12T19:26:23Z","timestamp":1670873183000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9524495\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,11,1]]},"references-count":73,"journal-issue":{"issue":"6"},"URL":"https:\/\/doi.org\/10.1109\/tdsc.2021.3108031","relation":{},"ISSN":["1545-5971","1941-0018","2160-9209"],"issn-type":[{"value":"1545-5971","type":"print"},{"value":"1941-0018","type":"electronic"},{"value":"2160-9209","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022,11,1]]}}}