{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,18]],"date-time":"2025-11-18T23:14:24Z","timestamp":1763507664213,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":28,"publisher":"ACM","license":[{"start":{"date-parts":[[2012,7,15]],"date-time":"2012-07-15T00:00:00Z","timestamp":1342310400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2012,7,15]]},"DOI":"10.1145\/2338965.2336760","type":"proceedings-article","created":{"date-parts":[[2012,7,26]],"date-time":"2012-07-26T14:41:14Z","timestamp":1343313674000},"page":"56-66","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":20,"title":["ViewPoints: differential string analysis for discovering client- and server-side input validation inconsistencies"],"prefix":"10.1145","author":[{"given":"Muath","family":"Alkhalaf","sequence":"first","affiliation":[{"name":"UC Santa Barbara, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shauvik Roy","family":"Choudhary","sequence":"additional","affiliation":[{"name":"Georgia Tech, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mattia","family":"Fazzini","sequence":"additional","affiliation":[{"name":"Georgia Tech, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tevfik","family":"Bultan","sequence":"additional","affiliation":[{"name":"UC Santa Barbara, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alessandro","family":"Orso","sequence":"additional","affiliation":[{"name":"Georgia Tech, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Christopher","family":"Kruegel","sequence":"additional","affiliation":[{"name":"UC Santa Barbara, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2012,7,15]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.5555\/2337223.2337334"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2008.22"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"crossref","unstructured":"C.\n       \n      Bartzis\n     and \n      \n      \n      T.\n       \n      Bultan\n      \n  \n  . \n  Widening arithmetic automata. In R. Alur and D. Peled editors Proceedings of the 16th International Conference on Computer Aided Verification (CAV\n   \n  2004\n  ) volume \n  3114\n   of \n  Lecture Notes in Computer Science pages \n  321\n  -\n  333\n  . \n  Springer-Verlag July 2004.  C. Bartzis and T. Bultan. Widening arithmetic automata. In R. Alur and D. Peled editors Proceedings of the 16th International Conference on Computer Aided Verification (CAV 2004) volume 3114 of Lecture Notes in Computer Science pages 321-333. Springer-Verlag July 2004.","DOI":"10.1007\/978-3-540-27813-9_25"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/1866307.1866375"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046774"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1007\/11924661_23"},{"key":"e_1_3_2_1_7_1","unstructured":"N. Coward and Y. Yoshida. Java Servlet Specification Version 2.4. Technical report Nov. 2003.  N. Coward and Y. Yoshida. Java Servlet Specification Version 2.4. Technical report Nov. 2003."},{"key":"e_1_3_2_1_8_1","unstructured":"Gargoyle Software. HtmlUnit: headless browser for testing web applications. http:\/\/htmlunit.sourceforge.net\/.  Gargoyle Software. HtmlUnit: headless browser for testing web applications. http:\/\/htmlunit.sourceforge.net\/."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/1572272.1572305"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2007.70748"},{"volume-title":"Proceedings of the International Symposium on Secure Software Engineering","year":"2006","author":"Halfond W. G.","key":"e_1_3_2_1_11_1"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.5555\/2028067.2028068"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2006.29"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1060745.1060809"},{"key":"e_1_3_2_1_15_1","unstructured":"Mozilla Foundation. Rhino: Javascript for Java. http:\/\/www.mozilla.org\/rhino\/.  Mozilla Foundation. Rhino: Javascript for Java. http:\/\/www.mozilla.org\/rhino\/."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1007\/0-387-25660-1_20"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/1806596.1806598"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.38"},{"volume-title":"Proceedings of the Network and Distributed System Security Symposium (NDSS)","year":"2010","author":"Saxena P.","key":"e_1_3_2_1_19_1"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/511446.511498"},{"key":"e_1_3_2_1_21_1","unstructured":"The OWASP Foundation. Data Validation 2010. http:\/\/ www.owasp.org\/index.php\/Data_Validation.  The OWASP Foundation. Data Validation 2010. http:\/\/ www.owasp.org\/index.php\/Data_Validation."},{"key":"e_1_3_2_1_22_1","unstructured":"The OWASP Foundation. Top Ten Most Critical Web Application Vulnerabilities 2010. http:\/\/www.owasp. org\/documentation\/topten.html.  The OWASP Foundation. Top Ten Most Critical Web Application Vulnerabilities 2010. http:\/\/www.owasp. org\/documentation\/topten.html."},{"key":"e_1_3_2_1_23_1","unstructured":"The OWASP Foundation. Validation Performed in Client 2010. http:\/\/www.owasp.org\/index.php\/ Validation_performed_in_client.  The OWASP Foundation. Validation Performed in Client 2010. http:\/\/www.owasp.org\/index.php\/ Validation_performed_in_client."},{"key":"e_1_3_2_1_24_1","first-page":"121","article-title":"A Survey of Program Slicing Techniques","volume":"3","author":"Tip F.","year":"1995","journal-title":"Journal of Programming Languages"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/1250734.1250739"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1145\/1368088.1368112"},{"volume-title":"Proceedings of the 15th USENIX Security Symposium (USENIX-SS)","year":"2006","author":"Xie Y.","key":"e_1_3_2_1_27_1"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-85114-1_21"}],"event":{"name":"ISSTA '12: International Symposium on Software Testing and Analysis","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering","SIGPLAN ACM Special Interest Group on Programming Languages"],"location":"Minneapolis MN USA","acronym":"ISSTA '12"},"container-title":["Proceedings of the 2012 International Symposium on Software Testing and Analysis"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2338965.2336760","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2338965.2336760","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T09:21:08Z","timestamp":1750238468000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2338965.2336760"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2012,7,15]]},"references-count":28,"alternative-id":["10.1145\/2338965.2336760","10.1145\/2338965"],"URL":"https:\/\/doi.org\/10.1145\/2338965.2336760","relation":{},"subject":[],"published":{"date-parts":[[2012,7,15]]},"assertion":[{"value":"2012-07-15","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}