{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,21]],"date-time":"2025-11-21T06:17:57Z","timestamp":1763705877635,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":55,"publisher":"ACM","license":[{"start":{"date-parts":[[2020,6,27]],"date-time":"2020-06-27T00:00:00Z","timestamp":1593216000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000185","name":"Defense Advanced Research Projects Agency","doi-asserted-by":"publisher","award":["FA8750-15-2-0087"],"award-info":[{"award-number":["FA8750-15-2-0087"]}],"id":[{"id":"10.13039\/100000185","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100007515","name":"National Science Foundation","doi-asserted-by":"publisher","award":["CCF-1817242,CCF-1901098"],"award-info":[{"award-number":["CCF-1817242,CCF-1901098"]}],"id":[{"id":"10.13039\/100007515","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2020,6,27]]},"DOI":"10.1145\/3377811.3380432","type":"proceedings-article","created":{"date-parts":[[2020,10,1]],"date-time":"2020-10-01T18:25:34Z","timestamp":1601576734000},"page":"1011-1023","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":22,"title":["JVM fuzzing for JIT-induced side-channel detection"],"prefix":"10.1145","author":[{"given":"Tegan","family":"Brennan","sequence":"first","affiliation":[{"name":"University of California Santa Barbara"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Seemanta","family":"Saha","sequence":"additional","affiliation":[{"name":"University of California Santa Barbara"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tevfik","family":"Bultan","sequence":"additional","affiliation":[{"name":"University of California Santa Barbara"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2020,10]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"[n. d.]. Apache FtpServer. https:\/\/mina.apache.org\/ftpserver-project\/. Accessed: 2018-08-21. ([n. d.])."},{"key":"e_1_3_2_1_2_1","unstructured":"[n. d.]. Authentication plugin for the Bukkit\/Spigot API. https:\/\/github.com\/AuthMe\/AuthMeReloaded. Accessed: 2018-08-21. ([n. d.])."},{"key":"e_1_3_2_1_3_1","volume-title":"IMA International Conference on Cryptography and Coding. Springer, 185--203","author":"Ac\u0131i\u00e7mez Onur","year":"2007","unstructured":"Onur Ac\u0131i\u00e7mez, Shay Gueron, and Jean-Pierre Seifert. 2007. New branch prediction vulnerabilities in OpenSSL and necessary software countermeasures. In IMA International Conference on Cryptography and Coding. Springer, 185--203."},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/1229285.1266999"},{"volume-title":"Cryptographers Track at the RSA Conference","author":"Ac\u0131i\u00e7mez Onur","key":"e_1_3_2_1_5_1","unstructured":"Onur Ac\u0131i\u00e7mez, \u00c7etin Kaya Ko\u00e7, and Jean-Pierre Seifert. 2007. Predicting secret keys via branch prediction. In Cryptographers Track at the RSA Conference. Springer, 225--242."},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/325694.325702"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/3062341.3062378"},{"key":"e_1_3_2_1_8_1","first-page":"104","article-title":"Janalyzer: A Static Analysis Tool for Java Bytecode","volume":"17","author":"Balasubramanian Daniel","year":"2017","unstructured":"Daniel Balasubramanian, Zhenkai Zhang, Dan McDermet, and Gabor Karsai. 2017. Janalyzer: A Static Analysis Tool for Java Bytecode. ISIS 17 (2017), 104.","journal-title":"ISIS"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/2950290.2950362"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2018.00029"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00007"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/3213846.3213867"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-10366-7_39"},{"key":"e_1_3_2_1_14_1","volume-title":"ASM: A code manipulation tool to implement adaptable systems. In In Adaptable and extensible component systems.","author":"Bruneton Eric","year":"2002","unstructured":"Eric Bruneton, Romain Lenglet, and Thierry Coupaye. 2002. ASM: A code manipulation tool to implement adaptable systems. In In Adaptable and extensible component systems."},{"key":"e_1_3_2_1_15_1","volume-title":"Automated Conformance Testing of Java Virtual Machines. In Seventh International Conference on Complex, Intelligent, and Software Intensive Systems, CISIS 2013","author":"Calvagna Andrea","year":"2013","unstructured":"Andrea Calvagna and Emiliano Tramontana. 2013. Automated Conformance Testing of Java Virtual Machines. In Seventh International Conference on Complex, Intelligent, and Software Intensive Systems, CISIS 2013, Taichung, Taiwan, July 3-5, 2013. 547--552."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046737"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134058"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2019.00127"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/2908080.2908095"},{"key":"e_1_3_2_1_20_1","first-page":"23","article-title":"Compiler mitigations for time attacks on modern x86 processors","volume":"8","author":"Cleemput Jeroen V","year":"2012","unstructured":"Jeroen V Cleemput, Bart Coppens, and Bjorn De Sutter. 2012. Compiler mitigations for time attacks on modern x86 processors. ACM Transactions on Architecture and Code Optimization (TACO) 8, 4 (2012), 23.","journal-title":"ACM Transactions on Architecture and Code Optimization (TACO)"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2009.19"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/2756550"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1109\/MICRO.2016.7783743"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/3173162.3173204"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/24039.24041"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1007\/s13389-015-0100-7"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/3236024.3236028"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.entcs.2005.02.031"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/53990.53994"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1007\/BFb0055858"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3138820"},{"key":"e_1_3_2_1_32_1","volume-title":"Spectre attacks: Exploiting speculative execution. arXiv preprint arXiv:1801.01203","author":"Kocher Paul","year":"2018","unstructured":"Paul Kocher, Daniel Genkin, Daniel Gruss, Werner Haas, Mike Hamburg, Moritz Lipp, Stefan Mangard, Thomas Prescher, Michael Schwarz, and Yuval Yarom. 2018. Spectre attacks: Exploiting speculative execution. arXiv preprint arXiv:1801.01203 (2018)."},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.5555\/646761.706156"},{"key":"e_1_3_2_1_34_1","volume-title":"26th USENIX Security Symposium, USENIX Security. 16--18","author":"Lee Sangho","year":"2017","unstructured":"Sangho Lee, Ming-Wei Shih, Prasun Gera, Taesoo Kim, Hyesoon Kim, and Marcus Peinado. 2017. Inferring fine-grained control flow inside SGX enclaves with branch shadowing. In 26th USENIX Security Symposium, USENIX Security. 16--18."},{"key":"e_1_3_2_1_35_1","volume-title":"arXiv preprint arXiv:1801.01207","author":"Lipp Moritz","year":"2018","unstructured":"Moritz Lipp, Michael Schwarz, Daniel Gruss, Thomas Prescher, Werner Haas, Stefan Mangard, Paul Kocher, Daniel Genkin, Yuval Yarom, and Mike Hamburg. 2018. Meltdown. arXiv preprint arXiv:1801.01207 (2018)."},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.43"},{"key":"e_1_3_2_1_37_1","first-page":"269","article-title":"Quantifying Side-Channel Information Leakage from Web Applications","volume":"2012","author":"Mather Luke","year":"2012","unstructured":"Luke Mather and Elisabeth Oswald. 2012. Quantifying Side-Channel Information Leakage from Web Applications. IACR Cryptology ePrint Archive 2012 (2012), 269.","journal-title":"IACR Cryptology ePrint Archive"},{"volume-title":"Principles of program analysis","author":"Nielson Flemming","key":"e_1_3_2_1_38_1","unstructured":"Flemming Nielson, Hanne R Nielson, and Chris Hankin. 2015. Principles of program analysis. Springer."},{"key":"e_1_3_2_1_39_1","volume-title":"DifFuzz: Differential Fuzzing for Side-Channel Analysis. arXiv preprint arXiv:1811.07005","author":"Nilizadeh Shirin","year":"2018","unstructured":"Shirin Nilizadeh, Yannic Noller, and Corina S Pasareanu. 2018. DifFuzz: Differential Fuzzing for Side-Channel Analysis. arXiv preprint arXiv:1811.07005 (2018)."},{"volume-title":"Cryptographers' Track at the RSA Conference","author":"Osvik Dag Arne","key":"e_1_3_2_1_40_1","unstructured":"Dag Arne Osvik, Adi Shamir, and Eran Tromer. 2006. Cache attacks and countermeasures: the case of AES. In Cryptographers' Track at the RSA Conference. Springer, 1--20."},{"key":"e_1_3_2_1_41_1","first-page":"169","article-title":"Theoretical use of cache memory as a cryptanalytic side-channel","volume":"2002","author":"Page Dan","year":"2002","unstructured":"Dan Page. 2002. Theoretical use of cache memory as a cryptanalytic side-channel. IACR Cryptology ePrint Archive 2002 (2002), 169.","journal-title":"IACR Cryptology ePrint Archive"},{"key":"e_1_3_2_1_42_1","volume-title":"A Note On Side Channels Resulting From Dynamic Compilation. https:\/\/eprint.iacr.org\/2006\/349.pdf. Cryptology ePrint archive","author":"Page Daniel","year":"2006","unstructured":"Daniel Page. 2006. A Note On Side Channels Resulting From Dynamic Compilation. https:\/\/eprint.iacr.org\/2006\/349.pdf. Cryptology ePrint archive (2006)."},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSF.2016.34"},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSF.2016.34"},{"key":"e_1_3_2_1_45_1","volume-title":"Synthesis of Adaptive Side-Channel Attacks. In Computer Security Foundations Symposium (CSF)","author":"Phan Quoc-Sang","year":"2017","unstructured":"Quoc-Sang Phan, Lucas Bang, Corina S Pasareanu, Pasquale Malacaria, and Tevfik Bultan. 2017. Synthesis of Adaptive Side-Channel Attacks. In Computer Security Foundations Symposium (CSF), 2017 IEEE 30th. IEEE, 328--342."},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.5555\/893551"},{"key":"e_1_3_2_1_47_1","volume-title":"Lucas Bang, and Tevfik Bultan.","author":"Rosner Nicol\u00e1s","year":"2018","unstructured":"Nicol\u00e1s Rosner, Ismet Burak Kadron, Lucas Bang, and Tevfik Bultan. 2018. Profit: Detecting and Quantifying Side Channels in Networked Applications."},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1145\/3282517.3282527"},{"key":"e_1_3_2_1_49_1","volume-title":"Bjorn De Sutter, and Koen De Bosschere","author":"Cleemput Jeroen Van","year":"2017","unstructured":"Jeroen Van Cleemput, Bjorn De Sutter, and Koen De Bosschere. 2017. Adaptive compiler strategies for mitigating timing side channel attacks. IEEE Transactions on Dependable and Secure Computing (2017)."},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134016"},{"key":"e_1_3_2_1_51_1","volume-title":"USENIX Security Symposium. 719--732","author":"Yarom Yuval","year":"2014","unstructured":"Yuval Yarom and Katrina Falkner. 2014. FLUSH+ RELOAD: A High Resolution, Low Noise, L3 Cache Side-Channel Attack.. In USENIX Security Symposium. 719--732."},{"key":"e_1_3_2_1_52_1","volume-title":"Random Program Generator for Java JIT Compiler Test System. In 3rd International Conference on Quality Software (QSIC 2003)","author":"Yoshikawa Takahide","year":"2003","unstructured":"Takahide Yoshikawa, Kouya Shimura, and Toshihiro Ozawa. 2003. Random Program Generator for Java JIT Compiler Test System. In 3rd International Conference on Quality Software (QSIC 2003), 6-7 November 2003, Dallas, TX, USA. 20."},{"key":"e_1_3_2_1_53_1","unstructured":"Michal Zalewski. 2017. American fuzzy lop (AFL) fuzzer. http:\/\/lcamtuf.coredump.cx\/afl\/ (2017)."},{"key":"e_1_3_2_1_54_1","unstructured":"Michal Zalewski. 2017. The bug-o-rama trophy case. http:\/\/lcamtuf.coredump.cx\/afl\/#bugs (2017)."},{"key":"e_1_3_2_1_55_1","volume-title":"Proceedings of the 17th ACM conference on Computer and communications security. ACM, 595--606","author":"Zhang Kehuan","year":"2010","unstructured":"Kehuan Zhang, Zhou Li, Rui Wang, XiaoFeng Wang, and Shuo Chen. 2010. Side-buster: automated detection and quantification of side-channel leaks in web application development. In Proceedings of the 17th ACM conference on Computer and communications security. ACM, 595--606."}],"event":{"name":"ICSE '20: 42nd International Conference on Software Engineering","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering","KIISE Korean Institute of Information Scientists and Engineers","IEEE CS"],"location":"Seoul South Korea","acronym":"ICSE '20"},"container-title":["Proceedings of the ACM\/IEEE 42nd International Conference on Software Engineering"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3377811.3380432","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3377811.3380432","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3377811.3380432","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T22:41:40Z","timestamp":1750200100000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3377811.3380432"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,6,27]]},"references-count":55,"alternative-id":["10.1145\/3377811.3380432","10.1145\/3377811"],"URL":"https:\/\/doi.org\/10.1145\/3377811.3380432","relation":{},"subject":[],"published":{"date-parts":[[2020,6,27]]},"assertion":[{"value":"2020-10-01","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}