-
Notifications
You must be signed in to change notification settings - Fork 37
/
Copy pathref.bib
210 lines (181 loc) · 6.76 KB
/
ref.bib
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
@String{ECOOP= "European Conference on Object-Oriented Programming"}
@String{OOPSLA= "Conference on Object-Oriented Programming, Systems, Languages, and Applications"}
@String{POPL = "Symposium on Principles of Programming Languages"}
@String{PLDI = "Conference on Programming Language Design and Implementation"}
@String{ICSE = "International Conference on Software Engineering"}
@String{ASE = "International Conference on Automated Software Engineering"}
@inproceedings{safeicfp16,
author = {Ryu, Sukyoung},
title = {Journey to Find Bugs in {JavaScript} Web Applications in the Wild},
booktitle = {ICFP 2016},
publisher = {ACM}
}
@inproceedings{jsai,
author = {Kashyap, Vineeth and Dewey, Kyle and Kuefner, Ethan A. and Wagner, John and Gibbons, Kevin and Sarracino, John and Wiedermann, Ben and Hardekopf, Ben},
title = {{JSAI}: A Static Analysis Platform for {JavaScript}},
booktitle = {FSE 2014},
pages = {121--132}
}
@inproceedings{kjs,
author = "Park, Daejun and \c{S}tef\u{a}nescu, Andrei and Ro\c{s}u, Grigore",
title = "{KJS}: A Complete Formal Semantics of {JavaScript}",
booktitle = "PLDI 2015",
pages = {428--438}
}
@article{emse16,
year={2016},
journal={Empirical Software Engineering},
title={Development nature matters: An empirical study of code clones in {JavaScript} applications},
author={Cheung, WaiTing and Ryu, Sukyoung and Kim, Sunghun},
volume=21,
number=2,
month=apr,
pages={517--564}
}
@misc{rosaec,
title = {Research On Software Analysis for Error-free Computing},
howpublished = {\url{http://rosaec.snu.ac.kr}}
}
@misc{oracle,
title = {Web-based Vulnerability Detection},
author = "Oracle Labs",
howpublished = {\url{https://labs.oracle.com}}
}
@misc{tizen,
title = "Tizen",
author = "Linux Foundation",
howpublished = {\url{https://www.tizen.org}}
}
@Misc{ecma5,
title = "{{ECMA-262: ECMAScript} Language Specification, Edition 5.1}",
howpublished = {\url{http://www.ecma-international.org/ecma-262/5.1}},
year = {2011},
}
@Misc{W3C,
author = "{W3C}",
title = "{Document Object Model Activity Statement}",
howpublished = "\url{http://www.w3.org/DOM/Activity}",
year = 1998
}
@inproceedings{dynamic,
author = {Richards, Gregor and Lebresne, Sylvain and Burg, Brian and Vitek, Jan},
title = {An Analysis of the Dynamic Behavior of JavaScript Programs},
booktitle = {PLDI 2010},
pages = {1--12}
}
@inproceedings{eval,
author = {Richards, Gregor and Hammer, Christian and Burg, Brian and Vitek, Jan},
title = {The Eval That Men Do: A Large-scale Study of the Use of Eval in {JavaScript} Applications},
booktitle = {ECOOP 2011},
pages = {52--78}
}
@inproceedings{fool12,
author = {Hongki Lee and Sooncheol Won and Joonho Jin and Junhee Cho and Sukyoung Ryu},
title = {\safe: Formal Specification and Implementation of a Scalable Analysis Framework for {ECMAScript}},
booktitle = {FOOL 2012}
}
@inproceedings{ai77,
author = {Cousot, Patrick and Cousot, Radhia},
title = {Abstract Interpretation: A Unified Lattice Model for Static Analysis of Programs by Construction or Approximation of Fixpoints},
booktitle = {POPL 1977},
pages = {238--252}
}
@inproceedings{dls13,
author = {Park, Changhee and Lee, Hongki and Ryu, Sukyoung},
title = {All about the \texttt{with} Statement in {JavaScript}: Removing \texttt{with} Statements in {JavaScript} Applications},
booktitle = {DLS 2013},
pages = {73--84}
}
@techreport{withtr,
author = {Park, Changhee and Lee, Hongki and Ryu, Sukyoung},
title = {All about the \texttt{with} Statement in {JavaScript}: Removing \texttt{with} Statements in {JavaScript} Applications (with Rewriting Rules)},
file = {\url{http://plrg.kaist.ac.kr/lib/exe/fetch.php?media=research:publications:with-tr.pdf}},
year = 2013
}
@inproceedings{oopsla12,
author = {Kang, Seonghoon and Ryu, Sukyoung},
title = {Formal Specification of a {JavaScript} Module System},
booktitle = {OOPSLA 2012},
pages = {621--638}
}
@inproceedings{modularity14,
author = {Cho, Junhee and Ryu, Sukyoung},
title = {{JavaScript} Module System: Exploring the Design Space},
booktitle = {Modularity 2014},
pages = {229--240}
}
@inproceedings{ase15a,
author = {Park, Changhee and Won, Sooncheol and Jin, Joonho and Ryu, Sukyoung},
title = {Static Analysis of {JavaScript} Web Applications in the Wild via Practical DOM Modeling},
booktitle = {ASE 2015},
pages ={552--562}
}
@inproceedings{fse14,
author = {Bae, SungGyeong and Cho, Hyunghun and Lim, Inho and Ryu, Sukyoung},
title = {{\sf SAFE$_{\mbox{\small WAPI}}$}: {Web API} Misuse Detector for Web Applications},
booktitle = {FSE 2014},
pages = {507--517}
}
@inproceedings{ase15b,
author = {Ko, Yoonseok and Lee, Hongki and Dolby, Julian and Ryu, Sukyoung},
title = {Practically Tunable Static Analysis Framework for Large-Scale {JavaScript} Applications},
booktitle = {ASE 2015},
pages = {541--551}
}
@inproceedings{ecoop15,
author = {Park, Changhee and Ryu, Sukyoung},
title = {Scalable and Precise Static Analysis of {JavaScript} Applications via Loop-Sensitivity},
booktitle = {ECOOP 2015},
pages = {735--756}
}
@inproceedings{safets,
author = {Jihyeok Park},
title = {JavaScript API Misuse Detection by Using TypeScript},
booktitle = {Modularity (SRC) 2014},
pages ={11--12}
}
@misc{ts,
author = {Microsoft},
title = {TypeScript},
howpublished = {\url{http://www.typescriptlang.org}},
year = 2012
}
@inproceedings{safehybrid,
author = {Joonyoung Park and Inho Lim and Sukyoung Ryu},
title = {Battles with False Positives in Static Analysis of {JavaScript} Web Applications in the Wild},
booktitle = {ICSE 2016},
pages = {61--70}
}
@inproceedings{hybridroid,
author = {Lee, Sungho and Dolby, Julian and Ryu, Sukyoung},
title = {{\sf HybriDroid}: Static Analysis Framework for {Android} Hybrid Applications},
booktitle = {Proceedings of the } #ASE,
publisher = {IEEE},
year = {2016}
}
@article{soundy,
author = {Livshits, Benjamin and Sridharan, Manu and Smaragdakis, Yannis and Lhot\'{a}k, Ond\v{r}ej and Amaral, J. Nelson and Chang, Bor-Yuh Evan and Guyer, Samuel Z. and Khedker, Uday P. and M{\o}ller, Anders and Vardoulakis, Dimitrios},
title = {In Defense of Soundiness: A Manifesto},
journal = {Communication of ACM},
volume = {58},
number = {2},
pages = {44--46},
year = {2015}
}
@Misc{wala,
title = "{T.J. Watson Libraries for Analysis (WALA)}",
author = "{IBM Research}",
howpublished = "\url{http://wala.sf.net}",
year = 2006
}
@inproceedings{icse13,
author = {Feldthaus, Asger and Sch\"{a}fer, Max and Sridharan, Manu and Dolby, Julian and Tip, Frank},
title = {Efficient Construction of Approximate Call Graphs for JavaScript IDE Services},
booktitle = {ICSE 2013},
pages = {752--761}
}
@misc{graphviz,
author = "AT\&T",
title = "Graphviz -- Graph Visualization Software",
howpublished = {\url{http://www.graphviz.org}}
}