{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,2]],"date-time":"2026-07-02T16:06:12Z","timestamp":1783008372209,"version":"3.54.5"},"publisher-location":"New York, NY, USA","reference-count":89,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,11,15]],"date-time":"2023-11-15T00:00:00Z","timestamp":1700006400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/501100012166","name":"National Key Research and Development Program of China","doi-asserted-by":"publisher","award":["2021YFB3101402, 2020YFB2010900"],"award-info":[{"award-number":["2021YFB3101402, 2020YFB2010900"]}],"id":[{"id":"10.13039\/501100012166","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Provincial Key R&D Program of Zhejiang","award":["2020C01038, 2021C01032"],"award-info":[{"award-number":["2020C01038, 2021C01032"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,11,15]]},"DOI":"10.1145\/3576915.3616609","type":"proceedings-article","created":{"date-parts":[[2023,11,21]],"date-time":"2023-11-21T12:35:13Z","timestamp":1700570113000},"page":"2800-2814","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":5,"title":["HODOR: Shrinking Attack Surface on Node.js via System Call Limitation"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0004-4030-5535","authenticated-orcid":false,"given":"Wenya","family":"Wang","sequence":"first","affiliation":[{"name":"Shanghai Jiao Tong University, Hangzhou, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0005-5048-2516","authenticated-orcid":false,"given":"Xingwei","family":"Lin","sequence":"additional","affiliation":[{"name":"Ant Group, Hangzhou, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7113-7635","authenticated-orcid":false,"given":"Jingyi","family":"Wang","sequence":"additional","affiliation":[{"name":"Zhejiang University &amp; ZJU-Hangzhou Global Scientific and Technological Innovation Center, Hangzhou, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-6597-0577","authenticated-orcid":false,"given":"Wang","family":"Gao","sequence":"additional","affiliation":[{"name":"Shanghai Jiao Tong University, Shanghai, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0504-9538","authenticated-orcid":false,"given":"Dawu","family":"Gu","sequence":"additional","affiliation":[{"name":"Shanghai Jiao Tong University, Shanghai, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0005-5341-4519","authenticated-orcid":false,"given":"Wei","family":"Lv","sequence":"additional","affiliation":[{"name":"Ant Group, Hangzhou, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0005-3100-0534","authenticated-orcid":false,"given":"Jiashui","family":"Wang","sequence":"additional","affiliation":[{"name":"Zhejiang University &amp; Ant Group, Hangzhou, China"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2023,11,21]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"https:\/\/nodejs.org\/. Accessed","year":"2023","unstructured":"Node.js. Node.js. https:\/\/nodejs.org\/. Accessed: 2023."},{"key":"e_1_3_2_1_2_1","unstructured":"PayPal Tech Blog Admin Account. Paypal Engineering. Node.js at PayPal. https:\/\/medium.com\/paypal-engineering\/node-js-at-paypal-4e2d1d08ce4f."},{"key":"e_1_3_2_1_3_1","unstructured":"LinkedIn Moved From Rails To Node: 27 Servers Cut And Up To 20x Faster. http:\/\/highscalability.com\/blog\/2012\/10\/4\/linkedin-moved-from-rails-to-node-27-servers-cut-and-up-to-2.html."},{"key":"e_1_3_2_1_4_1","unstructured":"Matthew Baxter-Reynolds. Here's why you should be happy that microsoft is embracing node.js. https:\/\/www.theguardian.com\/technology\/blog\/2011\/nov\/09\/programming-microsoft."},{"key":"e_1_3_2_1_5_1","unstructured":"Netflix TechBlog. Nodejs. https:\/\/netflixtechblog.com\/tagged\/nodejs."},{"key":"e_1_3_2_1_6_1","unstructured":"npm. https:\/\/www.npmjs.com\/."},{"key":"e_1_3_2_1_7_1","volume-title":"https:\/\/libuv.org\/. Accessed","author":"Asynchronous","year":"2023","unstructured":"libuv. Asynchronous I\/O made simple. https:\/\/libuv.org\/. Accessed: 2023."},{"key":"e_1_3_2_1_8_1","volume-title":"V8 JavaScript engine. https:\/\/v8.dev\/. Accessed","year":"2023","unstructured":"V8. V8 JavaScript engine. https:\/\/v8.dev\/. Accessed: 2023."},{"key":"e_1_3_2_1_9_1","first-page":"995","volume-title":"28th USENIX Security Symposium (USENIX Security 19)","author":"Zimmermann Markus","year":"2019","unstructured":"Markus Zimmermann, Cristian-Alexandru Staicu, Cam Tenny, and Michael Pradel. Small world with high risks: A study of security threats in the npm ecosystem. In 28th USENIX Security Symposium (USENIX Security 19), pages 995--1010, 2019."},{"key":"e_1_3_2_1_10_1","volume-title":"Demystifying the vulnerability propagation and its evolution via dependency trees in the npm ecosystem. arXiv preprint arXiv:2201.03981","author":"Liu Chengwei","year":"2022","unstructured":"Chengwei Liu, Sen Chen, Lingling Fan, Bihuan Chen, Yang Liu, and Xin Peng. Demystifying the vulnerability propagation and its evolution via dependency trees in the npm ecosystem. arXiv preprint arXiv:2201.03981, 2022."},{"key":"e_1_3_2_1_11_1","first-page":"331","volume-title":"2022 IEEE\/ACM 44th International Conference on Software Engineering: Software Engineering in Practice (ICSE-SEIP)","author":"Zahan Nusrat","year":"2022","unstructured":"Nusrat Zahan, Thomas Zimmermann, Patrice Godefroid, Brendan Murphy, Chandra Maddila, and Laurie Williams. What are weak links in the npm supply chain? In 2022 IEEE\/ACM 44th International Conference on Software Engineering: Software Engineering in Practice (ICSE-SEIP), pages 331--340. IEEE, 2022."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-021-09951-x"},{"key":"e_1_3_2_1_13_1","volume-title":"USENIX Security Symposium 2023","author":"Shcherbakov Mikhail","year":"2023","unstructured":"Mikhail Shcherbakov, Musard Balliu, and Cristian-Alexandru Staicu. Silent spring: Prototype pollution leads to remote code execution in node. js. In USENIX Security Symposium 2023, 2023."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/3468264.3468542"},{"key":"e_1_3_2_1_15_1","volume-title":"NDSS","author":"Staicu Cristian-Alexandru","year":"2018","unstructured":"Cristian-Alexandru Staicu, Michael Pradel, and Benjamin Livshits. Synode: Understanding and automatically preventing injection attacks on node. js. In NDSS, 2018."},{"key":"e_1_3_2_1_16_1","unstructured":"Wikipedia. Arbitrary code execution. https:\/\/en.wikipedia.org\/wiki\/Arbitrary_code_execution."},{"key":"e_1_3_2_1_17_1","unstructured":"Prototype Pollution. https:\/\/security.snyk.io\/vuln\/SNYK-JS-LODASHMERGE-173732."},{"key":"e_1_3_2_1_18_1","first-page":"121","volume-title":"23rd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2020","author":"Koishybayev Igibek","year":"2020","unstructured":"Igibek Koishybayev and Alexandros Kapravelos. Mininode: Reducing the attack surface of node. js applications. In 23rd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2020), pages 121--134, 2020."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-022-10195-6"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484535"},{"key":"e_1_3_2_1_21_1","unstructured":"Sandboxing ChromeOS system services. https:\/\/chromium.googlesource.com\/chromiumos\/docs\/\/HEAD\/sandboxing.md."},{"key":"e_1_3_2_1_22_1","unstructured":"Seccomp security profiles for Docker. https:\/\/docs.docker.com\/engine\/security\/seccomp\/."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/3429885.3429966"},{"key":"e_1_3_2_1_24_1","first-page":"443","volume-title":"23rd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2020","author":"Ghavamnia Seyedhamed","year":"2020","unstructured":"Seyedhamed Ghavamnia, Tapti Palit, Azzedine Benameur, and Michalis Polychronakis. Confine: Automated system call policy generation for container attack surface reduction. In 23rd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2020), pages 443--458, 2020."},{"key":"e_1_3_2_1_25_1","first-page":"459","volume-title":"23rd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2020","author":"DeMarinis Nicholas","year":"2020","unstructured":"Nicholas DeMarinis, Kent Williams-King, Di Jin, Rodrigo Fonseca, and Vasileios P. Kemerlis. Sysfilter: Automated system call filtering for commodity software. In 23rd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2020), pages 459--474, 2020."},{"key":"e_1_3_2_1_26_1","volume-title":"Seccomp: Towards practically defending against component hijacking in android applications. arXiv preprint arXiv:1609.03322","author":"Wu Daoyuan","year":"2016","unstructured":"Daoyuan Wu, Debin Gao, Yingjiu Li, and Robert H Deng. Seccomp: Towards practically defending against component hijacking in android applications. arXiv preprint arXiv:1609.03322, 2016."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/3474123.3486762"},{"key":"e_1_3_2_1_28_1","first-page":"1749","volume-title":"29th USENIX Security Symposium (USENIX Security 20)","author":"Ghavamnia Seyedhamed","year":"2020","unstructured":"Seyedhamed Ghavamnia, Tapti Palit, Shachee Mishra, and Michalis Polychronakis. Temporal system call specialization for attack surface reduction. In 29th USENIX Security Symposium (USENIX Security 20), pages 1749--1766, 2020."},{"key":"e_1_3_2_1_29_1","first-page":"2881","volume-title":"30th USENIX Security Symposium (USENIX Security 21)","author":"Bulekov Alexander","year":"2021","unstructured":"Alexander Bulekov, Rasoul Jahanshahi, and Manuel Egele. Saphire: Sandboxing php applications with tailored system call allowlists. In 30th USENIX Security Symposium (USENIX Security 21), pages 2881--2898, 2021."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/3460319.3464836"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.5555\/2486788.2486887"},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/2892208.2892235"},{"key":"e_1_3_2_1_33_1","unstructured":"dns-sync. https:\/\/www.npmjs.com\/package\/dns-sync."},{"key":"e_1_3_2_1_34_1","unstructured":"Node.js. Node?js document. https:\/\/nodejs.org\/api."},{"key":"e_1_3_2_1_35_1","unstructured":"The Linux Kernel. Seccomp BPF (SECure COMPuting with filters). https:\/\/www.kernel.org\/doc\/html\/v4.16\/userspace-api\/seccomp_filter.html."},{"key":"e_1_3_2_1_36_1","unstructured":"Berkeley Packet Filter. https:\/\/en.wikipedia.org\/wiki\/Berkeley_Packet_Filter."},{"key":"e_1_3_2_1_37_1","unstructured":"Growl for nodejs. https:\/\/www.npmjs.com\/package\/growl."},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE43902.2021.00121"},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICST46399.2020.00022"},{"key":"e_1_3_2_1_40_1","first-page":"343","volume-title":"A sense of time for Javascript and node. js: First-class timeouts as a cure for event handler poisoning In 27th {USENIX} Security Symposium ({USENIX} Security 18)","author":"Davis James C","year":"2018","unstructured":"James C Davis, Eric R Williamson, and Dongyoon Lee. A sense of time for Javascript and node. js: First-class timeouts as a cure for event handler poisoning In 27th {USENIX} Security Symposium ({USENIX} Security 18), pages 343--359, 2018."},{"key":"e_1_3_2_1_41_1","first-page":"361","volume-title":"Staicu and Michael Pradel. Freezing the Web: A Study of ReDoS Vulnerabilities in JavaScript-based Web Servers. In USENIX Security Symposium","author":"Cristian-Alexandru","year":"2018","unstructured":"Cristian-Alexandru Staicu and Michael Pradel. Freezing the Web: A Study of ReDoS Vulnerabilities in JavaScript-based Web Servers. In USENIX Security Symposium, pages 361--376, 2018."},{"key":"e_1_3_2_1_42_1","first-page":"2951","volume-title":"30th USENIX Security Symposium (USENIX Security 21)","author":"Xiao Feng","year":"2021","unstructured":"Feng Xiao, Jianwei Huang, Yichang Xiong, Guangliang Yang, Hong Hu, Guofei Gu, and Wenke Lee. Abusing hidden properties to attack the node.js ecosystem. In 30th USENIX Security Symposium (USENIX Security 21), pages 2951--2968, 2021."},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1145\/3488932.3523262"},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00077"},{"key":"e_1_3_2_1_45_1","unstructured":"Standard built-in objects. https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/JavaScript\/Reference\/Global_Objects."},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1145\/3276532"},{"key":"e_1_3_2_1_47_1","unstructured":"NodeProf on GraalVM - Panathon 2018. https:\/\/github.com\/Haiyang-Sun\/nodeprof.js."},{"key":"e_1_3_2_1_48_1","unstructured":"Strace Utility. https:\/\/strace.io\/."},{"key":"e_1_3_2_1_49_1","unstructured":"fail0verflow. Clang. https:\/\/clang.llvm.org."},{"key":"e_1_3_2_1_50_1","unstructured":"Ian A Mason. Whole Program LLVM. https:\/\/github.com\/travitch\/whole-program-llvm."},{"key":"e_1_3_2_1_51_1","unstructured":"llvm-link. https:\/\/llvm.org\/docs\/CommandGuide\/llvm-link.html."},{"key":"e_1_3_2_1_52_1","unstructured":"The GNU C Library (glibc). https:\/\/www.gnu.org\/software\/libc\/."},{"key":"e_1_3_2_1_53_1","unstructured":"musl libc. https:\/\/www.musl-libc.org."},{"key":"e_1_3_2_1_54_1","unstructured":"node_buffer.cc. https:\/\/github.com\/nodejs\/node\/blob\/main\/src\/node_buffer.cc."},{"key":"e_1_3_2_1_55_1","volume-title":"Hodor: Shrinking attack surface on node. js via system call limitation. arXiv preprint arXiv:2306.13984","author":"Wang Wenya","year":"2023","unstructured":"Wenya Wang, Xingwei Lin, Jingyi Wang, Wang Gao, Dawu Gu, Wei Lv, and Jiashui Wang. Hodor: Shrinking attack surface on node. js via system call limitation. arXiv preprint arXiv:2306.13984, 2023."},{"key":"e_1_3_2_1_56_1","unstructured":"libseccomp. https:\/\/github.com\/seccomp\/libseccomp."},{"key":"e_1_3_2_1_57_1","unstructured":"node-seccomp. https:\/\/www.npmjs.com\/package\/node-seccomp."},{"key":"e_1_3_2_1_58_1","volume-title":"https:\/\/nodejs.org\/en\/docs\/guides\/security\/. Accessed","author":"Practices Security Best","year":"2022","unstructured":"Node.js. Node.js Security Best Practices. https:\/\/nodejs.org\/en\/docs\/guides\/security\/. Accessed: 2022."},{"key":"e_1_3_2_1_59_1","volume-title":"31st USENIX Security Symposium (USENIX Security 22)","author":"Mining","year":"2022","unstructured":"Mining node.js vulnerabilities via object dependence graph and query. In 31st USENIX Security Symposium (USENIX Security 22), Boston, MA, August 2022. USENIX Association."},{"key":"e_1_3_2_1_60_1","volume-title":"https:\/\/www.shiftleft.io\/blog\/node.js-vulnerability-cheatsheet\/. Accessed","author":"Cheatsheet Vulnerability","year":"2022","unstructured":"Node.js Vulnerability Cheatsheet. https:\/\/www.shiftleft.io\/blog\/node.js-vulnerability-cheatsheet\/. Accessed: 2022."},{"key":"e_1_3_2_1_61_1","unstructured":"GitHub Advisory Database. https:\/\/github.com\/advisories."},{"key":"e_1_3_2_1_62_1","volume-title":"International Conference on Software Engineering (ICSE)","author":"Masud Bhuiyan Masudul Hasan","year":"2023","unstructured":"Masudul Hasan Masud Bhuiyan, Adithya Srinivas Parthasarathy, Nikos Vasilakis, Michael Pradel, and Cristian-Alexandru Staicu. Secbench. js: An executable security benchmark suite for server-side javascript. In International Conference on Software Engineering (ICSE), 2023."},{"key":"e_1_3_2_1_63_1","unstructured":"koa. https:\/\/www.npmjs.com\/package\/koa."},{"key":"e_1_3_2_1_64_1","unstructured":"express. https:\/\/www.npmjs.com\/package\/express."},{"key":"e_1_3_2_1_65_1","unstructured":"JSON Server. https:\/\/github.com\/typicode\/json-server."},{"key":"e_1_3_2_1_66_1","unstructured":"Node.js Core Tests. https:\/\/github.com\/nodejs\/node\/tree\/main\/test."},{"key":"e_1_3_2_1_67_1","unstructured":"fastify. https:\/\/www.npmjs.com\/package\/fastify."},{"key":"e_1_3_2_1_68_1","unstructured":"connect. https:\/\/www.npmjs.com\/package\/connect."},{"key":"e_1_3_2_1_69_1","unstructured":"wolfram77. extra-asciinema. https:\/\/www.npmjs.com\/package\/extra-asciinema."},{"key":"e_1_3_2_1_70_1","first-page":"012138","volume-title":"Journal of Physics: Conference Series","volume":"1646","author":"Niu Yingjiao","unstructured":"Yingjiao Niu, Yuewu Wang, Shijie Jia, Quan Zhou, Lingguang Lei, Qionglu Zhang, and Xinyi Zhao. Enhancing the security of mobile device management with seccomp. In Journal of Physics: Conference Series, volume 1646, page 012138. IOP Publishing, 2020."},{"key":"e_1_3_2_1_71_1","volume-title":"Proceedings of the 31th USENIX Security Symposium","author":"Schrammel David","year":"2022","unstructured":"David Schrammel, Samuel Weiser, Richard Sadek, and Stefan Mangard. Jenny: Securing syscalls for pku-based memory isolation systems. In Proceedings of the 31th USENIX Security Symposium, 2022."},{"key":"e_1_3_2_1_72_1","first-page":"1697","volume-title":"28th USENIX Security Symposium (USENIX Security 19)","author":"Azad Babak Amin","year":"2019","unstructured":"Babak Amin Azad, Pierre Laperdrix, and Nick Nikiforakis. Less is more: quantifying the security benefits of debloating web applications. In 28th USENIX Security Symposium (USENIX Security 19), pages 1697--1714, 2019."},{"key":"e_1_3_2_1_73_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3133966"},{"key":"e_1_3_2_1_74_1","doi-asserted-by":"publisher","DOI":"10.1145\/3372297.3417866"},{"key":"e_1_3_2_1_75_1","volume-title":"Wedge: Splitting applications into reduced-privilege compartments","author":"Bittau Andrea","year":"2008","unstructured":"Andrea Bittau, Petr Marchenko, Mark Handley, and Brad Karp. Wedge: Splitting applications into reduced-privilege compartments. USENIX Association, 2008."},{"key":"e_1_3_2_1_76_1","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813611"},{"key":"e_1_3_2_1_77_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2018.23131"},{"key":"e_1_3_2_1_78_1","volume-title":"USENIX Security Symposium (USENIX Security 2021)","author":"Ahmadpanah Mohammad M","year":"2021","unstructured":"Mohammad M Ahmadpanah, Daniel Hedin, Musard Balliu, Lars Eric Olsson, and Andrei Sabelfeld. Sandtrap: Securing javascript-driven trigger-action platforms. In USENIX Security Symposium (USENIX Security 2021), 2021."},{"key":"e_1_3_2_1_79_1","doi-asserted-by":"publisher","DOI":"10.1145\/2635868.2635904"},{"key":"e_1_3_2_1_80_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-03237-0_17"},{"key":"e_1_3_2_1_81_1","unstructured":"Stephen Fink and Stephen Fink. WALA--The TJ Watson Libraries for Analysis. https:\/\/github.com\/wala\/WALA. Accessed:2012."},{"key":"e_1_3_2_1_82_1","first-page":"96","volume-title":"FOOL 2012:  19th International Workshop on Foundations of Object-Oriented Languages","author":"Lee Hongki","unstructured":"Hongki Lee, Sooncheol Won, Joonho Jin, Junhee Cho, and Sukyoung Ryu. Safe: Formal specification and implementation of a scalable analysis framework for ecmascript. In FOOL 2012: 19th International Workshop on Foundations of Object-Oriented Languages, page 96. Citeseer, 2012."},{"key":"e_1_3_2_1_83_1","doi-asserted-by":"publisher","DOI":"10.1145\/2491411.2491447"},{"key":"e_1_3_2_1_84_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660193.2660214"},{"key":"e_1_3_2_1_85_1","volume-title":"29th European Conference on Object-Oriented Programming (ECOOP 2015","author":"Park Changhee","year":"2015","unstructured":"Changhee Park and Sukyoung Ryu. Scalable and precise static analysis of javascript applications via loop-sensitivity. In 29th European Conference on Object-Oriented Programming (ECOOP 2015). Schloss Dagstuhl-Leibniz-Zentrum fuer Informatik, 2015."},{"key":"e_1_3_2_1_86_1","doi-asserted-by":"publisher","DOI":"10.1145\/3360566"},{"key":"e_1_3_2_1_87_1","doi-asserted-by":"publisher","DOI":"10.1145\/3468264.3468556"},{"key":"e_1_3_2_1_88_1","doi-asserted-by":"publisher","DOI":"10.1145\/3377811.3380390"},{"key":"e_1_3_2_1_89_1","volume-title":"Bilingual problems: Studying the security risks incurred by native extensions in scripting languages. arXiv preprint arXiv:2111.11169","author":"Staicu Cristian-Alexandru","year":"2021","unstructured":"Cristian-Alexandru Staicu, Sazzadur Rahaman, \u00c1gnes Kiss, and Michael Backes. Bilingual problems: Studying the security risks incurred by native extensions in scripting languages. arXiv preprint arXiv:2111.11169, 2021."}],"event":{"name":"CCS '23: ACM SIGSAC Conference on Computer and Communications Security","location":"Copenhagen Denmark","acronym":"CCS '23","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3576915.3616609","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3576915.3616609","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,21]],"date-time":"2025-08-21T01:45:55Z","timestamp":1755740755000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3576915.3616609"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,11,15]]},"references-count":89,"alternative-id":["10.1145\/3576915.3616609","10.1145\/3576915"],"URL":"https:\/\/doi.org\/10.1145\/3576915.3616609","relation":{},"subject":[],"published":{"date-parts":[[2023,11,15]]},"assertion":[{"value":"2023-11-21","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}