{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,21]],"date-time":"2025-02-21T01:15:58Z","timestamp":1740100558615,"version":"3.37.3"},"reference-count":34,"publisher":"IEEE","license":[{"start":{"date-parts":[[2021,10,1]],"date-time":"2021-10-01T00:00:00Z","timestamp":1633046400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2021,10,1]],"date-time":"2021-10-01T00:00:00Z","timestamp":1633046400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100001871","name":"Funda\u00e7\u00e3o para a Ci\u00eancia e Tecnologia (FCT)","doi-asserted-by":"publisher","award":["PTDC\/CCI-INF\/290S8\/2017 (SEAL),UIDB\/50021\/2020 (lNESC-ID)"],"award-info":[{"award-number":["PTDC\/CCI-INF\/290S8\/2017 (SEAL),UIDB\/50021\/2020 (lNESC-ID)"]}],"id":[{"id":"10.13039\/501100001871","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021,10]]},"DOI":"10.1109\/trustcom53373.2021.00119","type":"proceedings-article","created":{"date-parts":[[2022,3,9]],"date-time":"2022-03-09T20:30:55Z","timestamp":1646857855000},"page":"840-848","source":"Crossref","is-referenced-by-count":1,"title":["Virtual Static Security Analyzer for Web Applications"],"prefix":"10.1109","author":[{"given":"Mihail","family":"Brinza","sequence":"first","affiliation":[{"name":"INESC-ID, Instituto Superior T&#x00E9;cnico, Universidade de Lisboa,Lisbon,Portugal"}]},{"given":"Miguel","family":"Correia","sequence":"additional","affiliation":[{"name":"INESC-ID, Instituto Superior T&#x00E9;cnico, Universidade de Lisboa,Lisbon,Portugal"}]},{"given":"Joao","family":"Pereira","sequence":"additional","affiliation":[{"name":"INESC-ID, Instituto Superior T&#x00E9;cnico, Universidade de Lisboa,Lisbon,Portugal"}]}],"member":"263","reference":[{"journal-title":"SonarQube in Action","year":"2013","author":"campbell","key":"ref33"},{"key":"ref32","first-page":"2320","article-title":"Continuous integration and automation","author":"mohammad","year":"2016","journal-title":"International Journal of Creative Research Thoughts"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1145\/2931037.2931041"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1145\/2048066.2048145"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-37057-1_15"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/1368088.1368112"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23262"},{"key":"ref12","article-title":"Finding security vulnerabilities in Java applications with static analysis","volume":"14","author":"livshits","year":"0","journal-title":"USENIX Security Symposium"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/1273463.1273490"},{"key":"ref14","first-page":"3","article-title":"Dynamic taint analysis for automatic detection, analysis, and signature generation of exploits on commodity software","volume":"5","author":"newsome","year":"0","journal-title":"Symposium on Network and Distributed System Security"},{"key":"ref15","article-title":"DTA++: dynamic taint analysis with targeted control-flow propagation","author":"kang","year":"0","journal-title":"Symposium on Network and Distributed System Security"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1145\/2714064.2660212"},{"journal-title":"Detection of vulnerabilities and automatic protection for web applications","year":"2016","author":"de sousa medeiros","key":"ref17"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/MSPEC.2020.9150550"},{"key":"ref19","doi-asserted-by":"crossref","first-page":"149","DOI":"10.1016\/S0065-2458(09)01205-4","article-title":"Dynamically typed languages","volume":"77","author":"tratt","year":"2009","journal-title":"Advances in Computers"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1145\/2642937.2643017"},{"key":"ref4","first-page":"2627","article-title":"Review of security metrics in software development process","volume":"2","author":"jain","year":"2011","journal-title":"International Journal of Computer Science and Information Technologies"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1145\/1007512.1007514"},{"journal-title":"OWASP Top 10 2017 The Ten Most Critical Web Application Security Risks","year":"2017","author":"williams","key":"ref3"},{"key":"ref6","article-title":"PHP Aspis: using partial taint tracking to protect against injection attacks","volume":"13","author":"papagiannis","year":"0","journal-title":"2nd USENIX Conference on Web Application Development"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/52.976940"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516696"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1145\/2666356.2594299"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2006.29"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2017.4451227"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2015.16"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2007.70712"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1145\/2954679.2872364"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1145\/360051.360056"},{"journal-title":"The Definitive Antlr 4 Reference","year":"2013","author":"parr","key":"ref21"},{"key":"ref24","article-title":"Boomerang: Demand-driven flow- and context-sensitive pointer analysis for Java","author":"sp\u00e4th","year":"0","journal-title":"Eur Conference on Object-Oriented Programming"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-36946-9_8"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1145\/1375696.1375704"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/379605.379665"}],"event":{"name":"2021 IEEE 20th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)","start":{"date-parts":[[2021,10,20]]},"location":"Shenyang, China","end":{"date-parts":[[2021,10,22]]}},"container-title":["2021 IEEE 20th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/9724288\/9724267\/09724427.pdf?arnumber=9724427","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,6,15]],"date-time":"2022-06-15T20:12:43Z","timestamp":1655323963000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9724427\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,10]]},"references-count":34,"URL":"https:\/\/doi.org\/10.1109\/trustcom53373.2021.00119","relation":{},"subject":[],"published":{"date-parts":[[2021,10]]}}}