{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,30]],"date-time":"2026-03-30T20:57:38Z","timestamp":1774904258402,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":35,"publisher":"ACM","license":[{"start":{"date-parts":[[2009,6,15]],"date-time":"2009-06-15T00:00:00Z","timestamp":1245024000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2009,6,15]]},"DOI":"10.1145\/1542476.1542485","type":"proceedings-article","created":{"date-parts":[[2009,6,16]],"date-time":"2009-06-16T09:34:36Z","timestamp":1245144876000},"page":"75-86","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":83,"title":["Merlin"],"prefix":"10.1145","author":[{"given":"Benjamin","family":"Livshits","sequence":"first","affiliation":[{"name":"Microsoft Research, Redmond, WA, USA"}]},{"given":"Aditya V.","family":"Nori","sequence":"additional","affiliation":[{"name":"Microsoft Research, Bangalore, India"}]},{"given":"Sriram K.","family":"Rajamani","sequence":"additional","affiliation":[{"name":"Microsoft Research, Bangalore, India"}]},{"given":"Anindya","family":"Banerjee","sequence":"additional","affiliation":[{"name":"IMDEA Software, Madrid, Spain"}]}],"member":"320","published-online":{"date-parts":[[2009,6,15]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2007.37"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/1250662.1250722"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/502034.502041"},{"key":"e_1_3_2_1_4_1","unstructured":"Fortify. Fortify code analyzer. http:\/\/www.ouncelabs.com\/ 2008.  Fortify. Fortify code analyzer. http:\/\/www.ouncelabs.com\/ 2008."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-00768-2_26"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.2005.21"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/363235.363259"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/988672.988679"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2006.29"},{"key":"e_1_3_2_1_10_1","first-page":"161","volume-title":"Symposium on Operating Systems Design and Implementation","author":"Kremenek T.","year":"2006","unstructured":"T. Kremenek , P. Twohey , G. Back , A. Y. Ng , and D. R. Engler . From uncertainty to belief: Inferring the specification within . In Symposium on Operating Systems Design and Implementation , pages 161 -- 176 , Nov. 2006 . T. Kremenek, P. Twohey, G. Back, A. Y. Ng, and D. R. Engler. From uncertainty to belief: Inferring the specification within. In Symposium on Operating Systems Design and Implementation, pages 161--176, Nov. 2006."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/1294261.1294293"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/18.910572"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/1081706.1081755"},{"key":"e_1_3_2_1_15_1","first-page":"271","volume-title":"Proceedings of the Usenix Security Symposium","author":"Livshits B.","year":"2005","unstructured":"B. Livshits and M. S. Lam . Finding security errors in Java programs with static analysis . In Proceedings of the Usenix Security Symposium , pages 271 -- 286 , Aug. 2005 . B. Livshits and M. S. Lam. Finding security errors in Java programs with static analysis. In Proceedings of the Usenix Security Symposium, pages 271--286, Aug. 2005."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/1081706.1081754"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/1094811.1094840"},{"key":"e_1_3_2_1_18_1","volume-title":"SecuriFly: Runtime vulnerability protection for Web applications. Technical report","author":"Martin M.","year":"2006","unstructured":"M. Martin , B. Livshits , and M. S. Lam . SecuriFly: Runtime vulnerability protection for Web applications. Technical report , Stanford University , Oct. 2006 . M. Martin, B. Livshits, and M. S. Lam. SecuriFly: Runtime vulnerability protection for Web applications. Technical report, Stanford University, Oct. 2006."},{"key":"e_1_3_2_1_19_1","volume-title":"Abstraction, Refinement and Proof of Probabilistic Systems","author":"McIver A.","year":"2004","unstructured":"A. McIver and C. Morgan . Abstraction, Refinement and Proof of Probabilistic Systems . Springer , 2004 . A. McIver and C. Morgan. Abstraction, Refinement and Proof of Probabilistic Systems. Springer, 2004."},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/1059816.1059824"},{"key":"e_1_3_2_1_21_1","unstructured":"Microsoft Corporation. Microsoft Code Analysis Tool .NET (CAT.NET). http:\/\/www.microsoft. com\/downloads\/details.aspx?FamilyId= 0178e2ef-9da8-445e-9348-c93f24cc9f9d&displaylang=en 3 2009.  Microsoft Corporation. Microsoft Code Analysis Tool .NET (CAT.NET). http:\/\/www.microsoft. com\/downloads\/details.aspx?FamilyId= 0178e2ef-9da8-445e-9348-c93f24cc9f9d&displaylang=en 3 2009."},{"key":"e_1_3_2_1_22_1","volume-title":"Infer.NET 2.2","author":"Minka T.","year":"2009","unstructured":"T. Minka , J. Winn , J. Guiver , and A. Kannan . Infer.NET 2.2 , 2009 . Microsoft Research Cambridge . http:\/\/research.microsoft.com\/infernet. T. Minka, J.Winn, J. Guiver, and A. Kannan. Infer.NET 2.2, 2009. Microsoft Research Cambridge. http:\/\/research.microsoft.com\/infernet."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1007\/0-387-25660-1_20"},{"key":"e_1_3_2_1_24_1","unstructured":"OunceLabs Inc. Ounce. http:\/\/www.ouncelabs.com\/ 2008.  OunceLabs Inc. Ounce. http:\/\/www.ouncelabs.com\/ 2008."},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1007\/11663812_7"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1145\/1250734.1250749"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1109\/JSAC.2002.806121"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/1111037.1111070"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/1314299.1314302"},{"key":"e_1_3_2_1_30_1","unstructured":"L. Wall. Perl security. http:\/\/search.cpan.org\/dist\/perl\/ pod\/perlsec.pod.  L. Wall. Perl security. http:\/\/search.cpan.org\/dist\/perl\/ pod\/perlsec.pod."},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-31980-1_30"},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/566172.566212"},{"key":"e_1_3_2_1_33_1","first-page":"271","volume-title":"Proceedings of the Usenix Security Symposium","author":"Xie Y.","year":"2006","unstructured":"Y. Xie and A. Aiken . Static detection of security vulnerabilities in scripting languages . In Proceedings of the Usenix Security Symposium , pages 271 -- 286 , Aug. 2006 . Y. Xie and A. Aiken. Static detection of security vulnerabilities in scripting languages. In Proceedings of the Usenix Security Symposium, pages 271--286, Aug. 2006."},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/1134285.1134325"},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.5555\/779343.779352"},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.5555\/1298455.1298481"}],"event":{"name":"PLDI '09: ACM SIGPLAN Conference on Programming Language Design and Implementation","location":"Dublin Ireland","acronym":"PLDI '09","sponsor":["SIGPLAN ACM Special Interest Group on Programming Languages","ACM Association for Computing Machinery"]},"container-title":["Proceedings of the 30th ACM SIGPLAN Conference on Programming Language Design and Implementation"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1542476.1542485","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1542476.1542485","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T09:29:56Z","timestamp":1750238996000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1542476.1542485"}},"subtitle":["specification inference for explicit information flow problems"],"short-title":[],"issued":{"date-parts":[[2009,6,15]]},"references-count":35,"alternative-id":["10.1145\/1542476.1542485","10.1145\/1542476"],"URL":"https:\/\/doi.org\/10.1145\/1542476.1542485","relation":{"is-identical-to":[{"id-type":"doi","id":"10.1145\/1543135.1542485","asserted-by":"object"}]},"subject":[],"published":{"date-parts":[[2009,6,15]]},"assertion":[{"value":"2009-06-15","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}