Publications

2020

Pietro Ferrara, Agostino Cortesi, Fausto Spoto: “From CIL to Java bytecode: Semantics-based translation for static analysis leveraging.”, in Sci. Comput. Program., Vol. 191 [LINK]

Pietro Ferrara, Luca Olivieri, Fausto Spoto: “BackFlow: Backward Context-Sensitive Flow Reconstruction of Taint Analysis Results.”, in Proceedings of VMCAI 2020 [LINK]

Amit Kr Mandal, Pietro Ferrara, Yuliy Khlyebnikov, Agostino Cortesi, Fausto Spoto: “Cross-program taint analysis for IoT systems.”, in Proceedings of SAC 2020 [LINK]

2019

Pietro Ferrara, Amit Kr Mandal, Agostino Cortesi, Fausto Spoto: “Cross-Programming Language Taint Analysis for the IoT Ecosystem.”, in ECEASST, Vol. 77 [LINK]

Fausto Spoto, Elisa Burato, Michael D. Ernst, Pietro Ferrara, Alberto Lovato, Damiano Macedonio, Ciprian Spiridon: “Static Identification of Injection Attacks in Java.”, in ACM Trans. Program. Lang. Syst., Vol. 41 [LINK]

Amit Kr Mandal, Federica Panarotto, Agostino Cortesi, Pietro Ferrara, Fausto Spoto: “Static analysis of Android Auto infotainment and on-board diagnostics II apps.”, in Softw. Pract. Exp., Vol. 49 [LINK]

2018

Pietro Ferrara, Agostino Cortesi, Fausto Spoto: “CIL to Java-bytecode translation for static analysis leveraging.”, in Proceedings of FormaliSE@ICSE 2018 [LINK]

Federica Panarotto, Agostino Cortesi, Pietro Ferrara, Amit Kr Mandal, Fausto Spoto: “Static Analysis of Android Apps Interaction with Automotive CAN.”, in Proceedings of SmartCom 2018 [LINK]

Pietro Ferrara, Fausto Spoto: “Static Analysis for GDPR Compliance.”, in Proceedings of ITASEC 2018 [LINK]

Rocco Salvia, Pietro Ferrara, Fausto Spoto, Agostino Cortesi: “SDLI: Static Detection of Leaks Across Intents.”, in Proceedings of TrustCom/BigDataSE 2018 [LINK]

Amit Kr Mandal, Agostino Cortesi, Pietro Ferrara, Federica Panarotto, Fausto Spoto: “Vulnerability analysis of Android auto infotainment apps.”, in Proceedings of CF 2018 [LINK]

Pietro Ferrara, Luca Olivieri, Fausto Spoto: “Tailoring Taint Analysis to GDPR.”, in Proceedings of APF 2018 [LINK]

Agostino Cortesi, Pietro Ferrara, Raju Halder, Matteo Zanioli: “Combining Symbolic and Numerical Domains for Information Leakage Analysis.”, in Trans. Comput. Sci., Vol. 31 [LINK]

2017

Abdulbaki Aydin, David Piorkowski, Omer Tripp, Pietro Ferrara, Marco Pistoia: “Visual Configuration of Mobile Privacy Policies.”, in Proceedings of FASE 2017 [LINK]

David Piorkowski, Sean Penney, Austin Z. Henley, Marco Pistoia, Margaret M. Burnett, Omer Tripp, Pietro Ferrara: “Foraging goes mobile: Foraging while debugging on mobile devices.”, in Proceedings of VL/HCC 2017 [LINK]

Pietro Ferrara, Omer Tripp, Peng Liu, Eric Koskinen: “Using Abstract Interpretation to Correct Synchronization Faults.”, in Proceedings of VMCAI 2017 [LINK]

Pietro Ferrara, Elisa Burato, Fausto Spoto: “Security Analysis of the OWASP Benchmark with Julia.”, in Proceedings of ITASEC 2017 [LINK]

2016

Pietro Ferrara: “A generic framework for heap and value analyses of object-oriented programming languages.”, in Theor. Comput. Sci., Vol. 631 [LINK]

Petar Tsankov, Marco Pistoia, Omer Tripp, Martin T. Vechev, Pietro Ferrara: “FASE: functionality-aware security enforcement.”, in Proceedings of ACSAC 2016 [LINK]

Omer Tripp, Marco Pistoia, Pietro Ferrara, Julia Rubin: “Pinpointing mobile malware using code analysis.”, in Proceedings of MOBILESoft 2016 [LINK]

Gianluca Barbon, Agostino Cortesi, Pietro Ferrara, Enrico Steffinlongo: “DAPA: Degradation-Aware Privacy Analysis of Android Apps.”, in Proceedings of STM 2016 [LINK]

2015

Marco Pistoia, Omer Tripp, Pietro Ferrara, Paolina Centonze: “Automatic detection, correction, and visualization of security vulnerabilities in mobile apps.”, in Proceedings of MobileDeLi 2015 [LINK]

Pietro Ferrara, Peter Müller, Milos Novácek: “Automatic Inference of Heap Properties Exploiting Value Domains.”, in Proceedings of VMCAI 2015 [LINK]

Agostino Cortesi, Pietro Ferrara, Marco Pistoia, Omer Tripp: “Datacentric Semantics for Verification of Privacy Policy Compliance by Mobile Applications.”, in Proceedings of VMCAI 2015 [LINK]

Lucas Brutschy, Pietro Ferrara, Omer Tripp, Marco Pistoia: “ShamDroid: gracefully degrading functionality in the presence of limited resource access.”, in Proceedings of OOPSLA 2015 [LINK]

Gianluca Barbon, Agostino Cortesi, Pietro Ferrara, Marco Pistoia, Omer Tripp: “Privacy Analysis of Android Apps: Implicit Flows and Quantitative Analysis.”, in Proceedings of CISIM 2015 [LINK]

Pietro Ferrara, Omer Tripp, Marco Pistoia: “MorphDroid: Fine-grained Privacy Verification.”, in Proceedings of ACSAC 2015 [LINK]

Agostino Cortesi, Giulia Costantini, Pietro Ferrara: “The abstract domain of Trapezoid Step Functions.”, in Comput. Lang. Syst. Struct., Vol. 43 [LINK]

Giulia Costantini, Pietro Ferrara, Agostino Cortesi: “A suite of abstract domains for static analysis of string values.”, in Softw. Pract. Exp., Vol. 45 [LINK]

2014

Pietro Ferrara, Daniel Schweizer, Lucas Brutschy: “TouchCost: Cost Analysis of TouchDevelop Scripts.”, in Proceedings of FASE 2014 [LINK]

Omer Tripp, Pietro Ferrara, Marco Pistoia: “Hybrid security analysis of web JavaScript code via dynamic partial evaluation.”, in Proceedings of ISSTA 2014 [LINK]

Lucas Brutschy, Pietro Ferrara, Peter Müller: “TouchGuru: Integrating Static Analysis with a Mobile Development Environment.”, in Proceedings of MobileDeLi 2014 [LINK]

Lucas Brutschy, Pietro Ferrara, Peter Müller: “Static analysis for independent app developers.”, in Proceedings of OOPSLA 2014 [LINK]

Pietro Ferrara: “Generic Combination of Heap and Value Analyses in Abstract Interpretation.”, in Proceedings of VMCAI 2014 [LINK]

2013

Agostino Cortesi, Pietro Ferrara, Nabendu Chaki: “Static analysis techniques for robotics software verification.”, in Proceedings of ISR 2013 [LINK]

Agostino Cortesi, Giulia Costantini, Pietro Ferrara: “A Survey on Product Operators in Abstract Interpretation.”, in Proceedings of Festschrift for Dave Schmidt 2013 [LINK]

Giulia Costantini, Pietro Ferrara, Giuseppe Maggiore, Agostino Cortesi: “The Domain of Parametric Hypercubes for Static Analysis of Computer Games Software.”, in Proceedings of ICFEM 2013 [LINK]

Pietro Ferrara: “A generic static analyzer for multithreaded Java programs.”, in Softw. Pract. Exp., Vol. 43 [LINK]

2012

Giulia Costantini, Pietro Ferrara, Agostino Cortesi: “Linear Approximation of Continuous Systems with Trapezoid Step Functions.”, in Proceedings of APLAS 2012 [LINK]

Matteo Zanioli, Pietro Ferrara, Agostino Cortesi: “SAILS: static analysis of information leakage with sample.”, in Proceedings of SAC 2012 [LINK]

Pietro Ferrara, Raphael Fuchs, Uri Juhasz: “TVAL+ : TVLA and Value Analyses Together.”, in Proceedings of SEFM 2012 [LINK]

Pietro Ferrara, Peter Müller: “Automatic Inference of Access Permissions.”, in Proceedings of VMCAI 2012 [LINK]

2011

Giulia Costantini, Pietro Ferrara, Agostino Cortesi: “Static Analysis of String Values.”, in Proceedings of ICFEM 2011 [LINK]

2010

Pietro Ferrara: “Static Type Analysis of Pattern Matching by Abstract Interpretation.”, in Proceedings of FMOODS/FORTE 2010 [LINK]

2009

Pietro Ferrara: “Static analysis via abstract interpretation of multithreaded programs. (Analyse statique de logiciels MultitâCHES par InterpréTation abstraite).”, in Proceedings of FMOODS/FORTE 2010 [LINK]

Pietro Ferrara: “Checkmate: A Generic Static Analyzer of Java Multithreaded Programs.”, in Proceedings of SEFM 2009 [LINK]

2008

Pietro Ferrara, Francesco Logozzo, Manuel Fähndrich: “Safer unsafe code for .NET.”, in Proceedings of OOPSLA 2008 [LINK]

Pietro Ferrara: “Static Analysis of the Determinism of Multithreaded Programs.”, in Proceedings of SEFM 2008 [LINK]

Pietro Ferrara: “Static Analysis Via Abstract Interpretation of the Happens-Before Memory Model.”, in Proceedings of TAP 2008 [LINK]