{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,9]],"date-time":"2026-06-09T16:27:19Z","timestamp":1781022439863,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":29,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,3,27]],"date-time":"2023-03-27T00:00:00Z","timestamp":1679875200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100010661","name":"Horizon 2020 Framework Programme","doi-asserted-by":"publisher","award":["883275"],"award-info":[{"award-number":["883275"]}],"id":[{"id":"10.13039\/100010661","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,3,27]]},"DOI":"10.1145\/3555776.3577593","type":"proceedings-article","created":{"date-parts":[[2023,6,7]],"date-time":"2023-06-07T17:16:29Z","timestamp":1686158189000},"page":"1522-1529","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":3,"title":["Free Willy: Prune System Calls to Enhance Software Security"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-1383-1183","authenticated-orcid":false,"given":"Charlie","family":"Groh","sequence":"first","affiliation":[{"name":"Technical University of Munich, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0524-2493","authenticated-orcid":false,"given":"Sergej","family":"Proskurin","sequence":"additional","affiliation":[{"name":"Technical University of Munich, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8480-6989","authenticated-orcid":false,"given":"Apostolis","family":"Zarras","sequence":"additional","affiliation":[{"name":"University of Piraeus, Greece"},{"name":"Foundation for Research and Technology -- Hellas, Heraklion, Greece"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2023,6,7]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Nibbler: Debloating Binary Shared Libraries. In Annual Computer Security Applications Conference (ACSAC).","author":"Ioannis","unstructured":"Ioannis Agadakos et al. 2019 . Nibbler: Debloating Binary Shared Libraries. In Annual Computer Security Applications Conference (ACSAC). Ioannis Agadakos et al. 2019. Nibbler: Debloating Binary Shared Libraries. In Annual Computer Security Applications Conference (ACSAC)."},{"key":"e_1_3_2_1_2_1","volume-title":"USENIX Security Symposium.","author":"Dennis","unstructured":"Dennis Andriesse et al. 2016. An In-Depth Analysis of Disassembly on Full-Scale x86\/x64 Binaries . In USENIX Security Symposium. Dennis Andriesse et al. 2016. An In-Depth Analysis of Disassembly on Full-Scale x86\/x64 Binaries. In USENIX Security Symposium."},{"key":"e_1_3_2_1_3_1","volume-title":"Flowdroid: Precise Context, Flow, Field, Object-Sensitive and Lifecycle-Aware Taint Analysis for Android Apps. ACM SIGPLAN Notices.","author":"Steven Arzt","year":"2014","unstructured":"Steven Arzt et al. 2014 . Flowdroid: Precise Context, Flow, Field, Object-Sensitive and Lifecycle-Aware Taint Analysis for Android Apps. ACM SIGPLAN Notices. Steven Arzt et al. 2014. Flowdroid: Precise Context, Flow, Field, Object-Sensitive and Lifecycle-Aware Taint Analysis for Android Apps. ACM SIGPLAN Notices."},{"key":"e_1_3_2_1_4_1","volume-title":"Boxify: Full-Fledged App Sandboxing for Stock Android. In USENIX Security Symposium.","author":"Michael","unstructured":"Michael Backes et al. 2015 . Boxify: Full-Fledged App Sandboxing for Stock Android. In USENIX Security Symposium. Michael Backes et al. 2015. Boxify: Full-Fledged App Sandboxing for Stock Android. In USENIX Security Symposium."},{"key":"e_1_3_2_1_5_1","volume-title":"International Workshop on Verification, Model Checking, and Abstract Interpretation (VMCAI).","author":"S\u00e9bastien","unstructured":"S\u00e9bastien Bardin et al. 2011. Refinement-based CFG Reconstruction from Unstructured Programs . In International Workshop on Verification, Model Checking, and Abstract Interpretation (VMCAI). S\u00e9bastien Bardin et al. 2011. Refinement-based CFG Reconstruction from Unstructured Programs. In International Workshop on Verification, Model Checking, and Abstract Interpretation (VMCAI)."},{"key":"e_1_3_2_1_6_1","volume-title":"Symposium on Principles of Programming Languages.","author":"Cousot Patrick","year":"1977","unstructured":"Patrick Cousot and Radhia Cousot . 1977 . Abstract Interpretation: A Unified Lattice Model for Static Analysis of Programs by Construction or Approximation of Fixpoints . In Symposium on Principles of Programming Languages. Patrick Cousot and Radhia Cousot. 1977. Abstract Interpretation: A Unified Lattice Model for Static Analysis of Programs by Construction or Approximation of Fixpoints. In Symposium on Principles of Programming Languages."},{"key":"e_1_3_2_1_7_1","volume-title":"International Symposium on Research in Attacks, Intrusions and Defenses (RAID).","author":"Nicholas","unstructured":"Nicholas DeMarinis et al. 2020. sysfilter: Automated System Call Filtering for Commodity Software . In International Symposium on Research in Attacks, Intrusions and Defenses (RAID). Nicholas DeMarinis et al. 2020. sysfilter: Automated System Call Filtering for Commodity Software. In International Symposium on Research in Attacks, Intrusions and Defenses (RAID)."},{"key":"e_1_3_2_1_8_1","unstructured":"Alexis Engelke. 2022. Lightweight Disassembler. https:\/\/github.com\/aengelke\/lwdpy.  Alexis Engelke. 2022. Lightweight Disassembler. https:\/\/github.com\/aengelke\/lwdpy."},{"key":"e_1_3_2_1_9_1","volume-title":"Formalizing Sensitivity in Static Analysis for Intrusion Detection. In IEEE Symposium on Security and Privacy (S&P).","author":"Hanping Henry","unstructured":"Henry Hanping Feng et al. 2004 . Formalizing Sensitivity in Static Analysis for Intrusion Detection. In IEEE Symposium on Security and Privacy (S&P). Henry Hanping Feng et al. 2004. Formalizing Sensitivity in Static Analysis for Intrusion Detection. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_10_1","volume-title":"Insight: An Open Binary Analysis Framework. In International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS).","author":"Emmanuel","unstructured":"Emmanuel Fleury et al. 2015 . Insight: An Open Binary Analysis Framework. In International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS). Emmanuel Fleury et al. 2015. Insight: An Open Binary Analysis Framework. In International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS)."},{"key":"e_1_3_2_1_11_1","volume-title":"Confine: Automated System Call Policy Generation for Container Attack Surface Reduction. In International Symposium on Research in Attacks, Intrusions and Defenses (RAID).","author":"Seyedhamed","unstructured":"Seyedhamed Ghavamnia et al. 2020 . Confine: Automated System Call Policy Generation for Container Attack Surface Reduction. In International Symposium on Research in Attacks, Intrusions and Defenses (RAID). Seyedhamed Ghavamnia et al. 2020. Confine: Automated System Call Policy Generation for Container Attack Surface Reduction. In International Symposium on Research in Attacks, Intrusions and Defenses (RAID)."},{"key":"e_1_3_2_1_12_1","volume-title":"Temporal System Call Specialization for Attack Surface Reduction. In USENIX Security Symposium.","author":"Seyedhamed","unstructured":"Seyedhamed Ghavamnia et al. 2020 . Temporal System Call Specialization for Attack Surface Reduction. In USENIX Security Symposium. Seyedhamed Ghavamnia et al. 2020. Temporal System Call Specialization for Attack Surface Reduction. In USENIX Security Symposium."},{"key":"e_1_3_2_1_13_1","volume-title":"USENIX Security Symposium.","author":"Ian","unstructured":"Ian Goldberg et al. 1996. A Secure Environment for Untrusted Helper Applications: Confining the Wily Hacker . In USENIX Security Symposium. Ian Goldberg et al. 1996. A Secure Environment for Untrusted Helper Applications: Confining the Wily Hacker. In USENIX Security Symposium."},{"key":"e_1_3_2_1_14_1","volume-title":"Information Flow Analysis of Android Applications in Droidsafe. In ISOC Network and Distributed System Security Symposium (NDSS).","author":"Michael","unstructured":"Michael I Gordon et al. 2015 . Information Flow Analysis of Android Applications in Droidsafe. In ISOC Network and Distributed System Security Symposium (NDSS). Michael I Gordon et al. 2015. Information Flow Analysis of Android Applications in Droidsafe. In ISOC Network and Distributed System Security Symposium (NDSS)."},{"key":"e_1_3_2_1_15_1","volume-title":"Mining Sandboxes. In International Conference on Software Engineering (ICSE).","author":"Konrad","unstructured":"Konrad Jamrozik et al. 2016 . Mining Sandboxes. In International Conference on Software Engineering (ICSE). Konrad Jamrozik et al. 2016. Mining Sandboxes. In International Conference on Software Engineering (ICSE)."},{"key":"e_1_3_2_1_16_1","volume-title":"Proceedings of the 1st annual ACM SIGACT-SIGPLAN symposium on Principles of programming languages.","author":"Kildall Gary A","year":"1973","unstructured":"Gary A Kildall . 1973 . A Unified Approach to Global Program Optimization . In Proceedings of the 1st annual ACM SIGACT-SIGPLAN symposium on Principles of programming languages. Gary A Kildall. 1973. A Unified Approach to Global Program Optimization. In Proceedings of the 1st annual ACM SIGACT-SIGPLAN symposium on Principles of programming languages."},{"key":"e_1_3_2_1_17_1","volume-title":"International Conference on Computer-Aided Verification (CAV).","author":"Kinder Johannes","year":"2008","unstructured":"Johannes Kinder and Helmut Veith . 2008 . Jakstab: A static analysis platform for binaries . In International Conference on Computer-Aided Verification (CAV). Johannes Kinder and Helmut Veith. 2008. Jakstab: A static analysis platform for binaries. In International Conference on Computer-Aided Verification (CAV)."},{"key":"e_1_3_2_1_18_1","volume-title":"Configuration-Driven Software Debloating. In European Workshop on System Security (EuroSec).","author":"Hyungjoon","unstructured":"Hyungjoon Koo et al. 2019 . Configuration-Driven Software Debloating. In European Workshop on System Security (EuroSec). Hyungjoon Koo et al. 2019. Configuration-Driven Software Debloating. In European Workshop on System Security (EuroSec)."},{"key":"e_1_3_2_1_19_1","volume-title":"Towards Mining Comprehensive Android Sandboxes. In International Conference on Engineering of Complex Computer Systems.","author":"Tien-Duy","unstructured":"Tien-Duy B Le et al. 2018 . Towards Mining Comprehensive Android Sandboxes. In International Conference on Engineering of Complex Computer Systems. Tien-Duy B Le et al. 2018. Towards Mining Comprehensive Android Sandboxes. In International Conference on Engineering of Complex Computer Systems."},{"key":"e_1_3_2_1_20_1","volume-title":"DroidBot: A Lightweight UI-guided Test Input Generator for Android. In International Conference on Software Engineering Companion.","author":"Yuanchun","unstructured":"Yuanchun Li et al. 2017 . DroidBot: A Lightweight UI-guided Test Input Generator for Android. In International Conference on Software Engineering Companion. Yuanchun Li et al. 2017. DroidBot: A Lightweight UI-guided Test Input Generator for Android. In International Conference on Software Engineering Companion."},{"key":"e_1_3_2_1_21_1","volume-title":"Improving Host Security With System Call Policies. In USENIX Security Symposium.","author":"Provos Niels","year":"2003","unstructured":"Niels Provos . 2003 . Improving Host Security With System Call Policies. In USENIX Security Symposium. Niels Provos. 2003. Improving Host Security With System Call Policies. In USENIX Security Symposium."},{"key":"e_1_3_2_1_22_1","volume-title":"Debloating Software Through Piece-Wise Compilation and Loading. In USENIX Security Symposium.","author":"Anh","unstructured":"Anh Quach et al. 2018 . Debloating Software Through Piece-Wise Compilation and Loading. In USENIX Security Symposium. Anh Quach et al. 2018. Debloating Software Through Piece-Wise Compilation and Loading. In USENIX Security Symposium."},{"key":"e_1_3_2_1_23_1","volume-title":"Cimplifier: Automatically Debloating Containers. In Joint Meeting on Foundations of Software Engineering.","author":"Vaibhav","unstructured":"Vaibhav Rastogi et al. 2017 . Cimplifier: Automatically Debloating Containers. In Joint Meeting on Foundations of Software Engineering. Vaibhav Rastogi et al. 2017. Cimplifier: Automatically Debloating Containers. In Joint Meeting on Foundations of Software Engineering."},{"key":"e_1_3_2_1_24_1","volume-title":"New Directions for Container Debloating. In Workshop on Forming an Ecosystem Around Software Transformation.","author":"Vaibhav","unstructured":"Vaibhav Rastogi et al. 2017 . New Directions for Container Debloating. In Workshop on Forming an Ecosystem Around Software Transformation. Vaibhav Rastogi et al. 2017. New Directions for Container Debloating. In Workshop on Forming an Ecosystem Around Software Transformation."},{"key":"e_1_3_2_1_25_1","volume-title":"SoK: (State Of) the Art of War: Offensive Techniques in Binary Analysis. In IEEE Symposium on Security and Privacy (S&P).","author":"Yan","unstructured":"Yan Shoshitaishvili et al. 2016 . SoK: (State Of) the Art of War: Offensive Techniques in Binary Analysis. In IEEE Symposium on Security and Privacy (S&P). Yan Shoshitaishvili et al. 2016. SoK: (State Of) the Art of War: Offensive Techniques in Binary Analysis. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_26_1","volume-title":"IEEE Symposium on Security and Privacy (S&P).","author":"Wagner David","year":"2001","unstructured":"David Wagner and Drew Dean . 2001 . Intrusion Detection via Static Analysis . In IEEE Symposium on Security and Privacy (S&P). David Wagner and Drew Dean. 2001. Intrusion Detection via Static Analysis. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_27_1","volume-title":"Mining Sandboxes for Linux Containers. In IEEE International Conference on Software Testing, Verification and Validation (ICST).","author":"Zhiyuan","unstructured":"Zhiyuan Wan et al. 2017 . Mining Sandboxes for Linux Containers. In IEEE International Conference on Software Testing, Verification and Validation (ICST). Zhiyuan Wan et al. 2017. Mining Sandboxes for Linux Containers. In IEEE International Conference on Software Testing, Verification and Validation (ICST)."},{"key":"e_1_3_2_1_28_1","volume-title":"European Conference on Machine Learning and Principles and Practice of Knowledge Discovery in Databases (ECML-PKDD).","author":"Richard","unstructured":"Richard Wartell et al. 2011. Differentiating Code from Data in x86 Binaries . In European Conference on Machine Learning and Principles and Practice of Knowledge Discovery in Databases (ECML-PKDD). Richard Wartell et al. 2011. Differentiating Code from Data in x86 Binaries. In European Conference on Machine Learning and Principles and Practice of Knowledge Discovery in Databases (ECML-PKDD)."},{"key":"e_1_3_2_1_29_1","volume-title":"Egalito: Layout-Agnostic Binary Recompilation. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS).","author":"David","unstructured":"David Williams-King et al. 2020 . Egalito: Layout-Agnostic Binary Recompilation. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS). David Williams-King et al. 2020. Egalito: Layout-Agnostic Binary Recompilation. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)."}],"event":{"name":"SAC '23: 38th ACM\/SIGAPP Symposium on Applied Computing","location":"Tallinn Estonia","acronym":"SAC '23","sponsor":["SIGAPP ACM Special Interest Group on Applied Computing"]},"container-title":["Proceedings of the 38th ACM\/SIGAPP Symposium on Applied Computing"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3555776.3577593","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3555776.3577593","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T17:49:19Z","timestamp":1750182559000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3555776.3577593"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,3,27]]},"references-count":29,"alternative-id":["10.1145\/3555776.3577593","10.1145\/3555776"],"URL":"https:\/\/doi.org\/10.1145\/3555776.3577593","relation":{},"subject":[],"published":{"date-parts":[[2023,3,27]]},"assertion":[{"value":"2023-06-07","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}