2022
Luca Olivieri, Fabio Tagliaferro, Vincenzo Arceri, Marco Ruaro, Luca Negrini, Agostino Cortesi, Pietro Ferrara, Fausto Spoto, Enrico Talin: “Ensuring determinism in blockchain software with GoLiSA: an industrial experience report.”, in Proceedings of SOAP@PLDI 2022 [LINK]
Vincenzo Arceri, Martina Olliaro, Agostino Cortesi, Pietro Ferrara: “Relational String Abstract Domains.”, in Proceedings of VMCAI 2022 [LINK]
2021
Pietro Ferrara, Luca Olivieri, Fausto Spoto: “Static Privacy Analysis by Flow Reconstruction of Tainted Data.”, in Int. J. Softw. Eng. Knowl. Eng., Vol. 31 [LINK]
Pietro Ferrara, Amit Kr Mandal 0001, Agostino Cortesi, Fausto Spoto: “Static analysis for discovering IoT vulnerabilities.”, in Int. J. Softw. Tools Technol. Transf., Vol. 23 [LINK]
Pietro Ferrara, Luca Negrini, Vincenzo Arceri, Agostino Cortesi: “Static analysis for dummies: experiencing LiSA.”, in Proceedings of SOAP@PLDI 2021 [LINK]
Luca Negrini, Vincenzo Arceri, Pietro Ferrara, Agostino Cortesi: “Twinning Automata and Regular Expressions for String Static Analysis.”, in Proceedings of VMCAI 2021 [LINK]
2020
Pietro Ferrara, Agostino Cortesi, Fausto Spoto: “From CIL to Java bytecode: Semantics-based translation for static analysis leveraging.”, in Sci. Comput. Program., Vol. 191 [LINK]
Rocco Salvia, Agostino Cortesi, Pietro Ferrara, Fausto Spoto: “Intents Analysis of Android Apps for Confidentiality Leakage Detection.”, in Proceedings of ACSS (1) 2020 [LINK]
Stefano Calzavara, Pietro Ferrara, Claudio Lucchese: “Certifying Decision Trees Against Evasion Attacks by Program Analysis.”, in Proceedings of ESORICS (2) 2020 [LINK]
Amit Kr Mandal 0001, Pietro Ferrara, Yuliy Khlyebnikov, Agostino Cortesi, Fausto Spoto: “Cross-program taint analysis for IoT systems.”, in Proceedings of SAC 2020 [LINK]
Pietro Ferrara, Luca Olivieri, Fausto Spoto: “BackFlow: Backward Context-Sensitive Flow Reconstruction of Taint Analysis Results.”, in Proceedings of VMCAI 2020 [LINK]
Pietro Ferrara, Luca Negrini: “SARL: OO Framework Specification for Static Analysis.”, in Proceedings of VSTTE 2020 [LINK]
Luca Negrini, Vincenzo Arceri, Pietro Ferrara, Agostino Cortesi: “Twinning automata and regular expressions for string static analysis.”, in CoRR, Vol. abs/2006.02715 [LINK]
Stefano Calzavara, Pietro Ferrara, Claudio Lucchese: “Certifying Decision Trees Against Evasion Attacks by Program Analysis.”, in CoRR, Vol. abs/2007.02771 [LINK]
2019
Fausto Spoto, Elisa Burato, Michael D. Ernst, Pietro Ferrara, Alberto Lovato, Damiano Macedonio, Ciprian Spiridon: “Static Identification of Injection Attacks in Java.”, in ACM Trans. Program. Lang. Syst., Vol. 41 [LINK]
Pietro Ferrara, Amit Kr Mandal 0001, Agostino Cortesi, Fausto Spoto: “Cross-Programming Language Taint Analysis for the IoT Ecosystem.”, in Electron. Commun. Eur. Assoc. Softw. Sci. Technol., Vol. 77 [LINK]
Amit Kr Mandal 0001, Federica Panarotto, Agostino Cortesi, Pietro Ferrara, Fausto Spoto: “Static analysis of Android Auto infotainment and on-board diagnostics II apps.”, in Softw. Pract. Exp., Vol. 49 [LINK]
2018
Agostino Cortesi, Pietro Ferrara, Raju Halder, Matteo Zanioli: “Combining Symbolic and Numerical Domains for Information Leakage Analysis.”, in Trans. Comput. Sci., Vol. 31 [LINK]
Pietro Ferrara, Luca Olivieri, Fausto Spoto: “Tailoring Taint Analysis to GDPR.”, in Proceedings of APF 2018 [LINK]
Amit Kr Mandal 0001, Agostino Cortesi, Pietro Ferrara, Federica Panarotto, Fausto Spoto: “Vulnerability analysis of Android auto infotainment apps.”, in Proceedings of CF 2018 [LINK]
Pietro Ferrara, Agostino Cortesi, Fausto Spoto: “CIL to Java-bytecode translation for static analysis leveraging.”, in Proceedings of FormaliSE@ICSE 2018 [LINK]
Pietro Ferrara, Fausto Spoto: “Static Analysis for GDPR Compliance.”, in Proceedings of ITASEC 2018 [LINK]
Federica Panarotto, Agostino Cortesi, Pietro Ferrara, Amit Kr Mandal 0001, Fausto Spoto: “Static Analysis of Android Apps Interaction with Automotive CAN.”, in Proceedings of SmartCom 2018 [LINK]
Rocco Salvia, Pietro Ferrara, Fausto Spoto, Agostino Cortesi: “SDLI: Static Detection of Leaks Across Intents.”, in Proceedings of TrustCom/BigDataSE 2018 [LINK]
2017
Abdulbaki Aydin, David Piorkowski, Omer Tripp, Pietro Ferrara, Marco Pistoia: “Visual Configuration of Mobile Privacy Policies.”, in Proceedings of FASE 2017 [LINK]
Pietro Ferrara, Elisa Burato, Fausto Spoto: “Security Analysis of the OWASP Benchmark with Julia.”, in Proceedings of ITASEC 2017 [LINK]
David Piorkowski, Sean Penney, Austin Z. Henley, Marco Pistoia, Margaret M. Burnett, Omer Tripp, Pietro Ferrara: “Foraging goes mobile: Foraging while debugging on mobile devices.”, in Proceedings of VL/HCC 2017 [LINK]
Pietro Ferrara, Omer Tripp, Peng Liu, Eric Koskinen: “Using Abstract Interpretation to Correct Synchronization Faults.”, in Proceedings of VMCAI 2017 [LINK]
2016
Omer Tripp, Marco Pistoia, Pietro Ferrara, Julia Rubin: “Pinpointing mobile malware using code analysis.”, in Proceedings of MOBILESoft 2016 [LINK]
Gianluca Barbon, Agostino Cortesi, Pietro Ferrara, Enrico Steffinlongo: “DAPA: Degradation-Aware Privacy Analysis of Android Apps.”, in Proceedings of STM 2016 [LINK]
Petar Tsankov, Marco Pistoia, Omer Tripp, Martin T. Vechev, Pietro Ferrara: “FASE: functionality-aware security enforcement.”, in Proceedings of ACSAC 2016 [LINK]
Pietro Ferrara: “A generic framework for heap and value analyses of object-oriented programming languages.”, in Theor. Comput. Sci., Vol. 631 [LINK]
2015
Giulia Costantini, Pietro Ferrara, Agostino Cortesi: “A suite of abstract domains for static analysis of string values.”, in Softw. Pract. Exp., Vol. 45 [LINK]
Pietro Ferrara, Omer Tripp, Marco Pistoia: “MorphDroid: Fine-grained Privacy Verification.”, in Proceedings of ACSAC 2015 [LINK]
Gianluca Barbon, Agostino Cortesi, Pietro Ferrara, Marco Pistoia, Omer Tripp: “Privacy Analysis of Android Apps: Implicit Flows and Quantitative Analysis.”, in Proceedings of CISIM 2015 [LINK]
Marco Pistoia, Omer Tripp, Pietro Ferrara, Paolina Centonze: “Automatic detection, correction, and visualization of security vulnerabilities in mobile apps.”, in Proceedings of MobileDeLi 2015 [LINK]
Lucas Brutschy, Pietro Ferrara, Omer Tripp, Marco Pistoia: “ShamDroid: gracefully degrading functionality in the presence of limited resource access.”, in Proceedings of OOPSLA 2015 [LINK]
Agostino Cortesi, Pietro Ferrara, Marco Pistoia, Omer Tripp: “Datacentric Semantics for Verification of Privacy Policy Compliance by Mobile Applications.”, in Proceedings of VMCAI 2015 [LINK]
Pietro Ferrara, Peter Müller, Milos Novácek: “Automatic Inference of Heap Properties Exploiting Value Domains.”, in Proceedings of VMCAI 2015 [LINK]
Agostino Cortesi, Giulia Costantini, Pietro Ferrara: “The abstract domain of Trapezoid Step Functions.”, in Comput. Lang. Syst. Struct., Vol. 43 [LINK]
2014
Pietro Ferrara, Daniel Schweizer, Lucas Brutschy: “TouchCost: Cost Analysis of TouchDevelop Scripts.”, in Proceedings of FASE 2014 [LINK]
Omer Tripp, Pietro Ferrara, Marco Pistoia: “Hybrid security analysis of web JavaScript code via dynamic partial evaluation.”, in Proceedings of ISSTA 2014 [LINK]
Lucas Brutschy, Pietro Ferrara, Peter Müller: “TouchGuru: Integrating Static Analysis with a Mobile Development Environment.”, in Proceedings of MobileDeLi 2014 [LINK]
Lucas Brutschy, Pietro Ferrara, Peter Müller: “Static analysis for independent app developers.”, in Proceedings of OOPSLA 2014 [LINK]
Pietro Ferrara: “Generic Combination of Heap and Value Analyses in Abstract Interpretation.”, in Proceedings of VMCAI 2014 [LINK]
2013
Agostino Cortesi, Pietro Ferrara, Nabendu Chaki: “Static analysis techniques for robotics software verification.”, in Proceedings of ISR 2013 [LINK]
Agostino Cortesi, Giulia Costantini, Pietro Ferrara: “A Survey on Product Operators in Abstract Interpretation.”, in Proceedings of Festschrift for Dave Schmidt 2013 [LINK]
Pietro Ferrara: “A generic static analyzer for multithreaded Java programs.”, in Softw. Pract. Exp., Vol. 43 [LINK]
Giulia Costantini, Pietro Ferrara, Giuseppe Maggiore, Agostino Cortesi: “The Domain of Parametric Hypercubes for Static Analysis of Computer Games Software.”, in Proceedings of ICFEM 2013 [LINK]
2012
Giulia Costantini, Pietro Ferrara, Agostino Cortesi: “Linear Approximation of Continuous Systems with Trapezoid Step Functions.”, in Proceedings of APLAS 2012 [LINK]
Matteo Zanioli, Pietro Ferrara, Agostino Cortesi: “SAILS: static analysis of information leakage with sample.”, in Proceedings of SAC 2012 [LINK]
Pietro Ferrara, Raphael Fuchs, Uri Juhasz: “TVAL+ : TVLA and Value Analyses Together.”, in Proceedings of SEFM 2012 [LINK]
Pietro Ferrara, Peter Müller: “Automatic Inference of Access Permissions.”, in Proceedings of VMCAI 2012 [LINK]
2011
Giulia Costantini, Pietro Ferrara, Agostino Cortesi: “Static Analysis of String Values.”, in Proceedings of ICFEM 2011 [LINK]
2010
Pietro Ferrara: “Static Type Analysis of Pattern Matching by Abstract Interpretation.”, in Proceedings of FMOODS/FORTE 2010 [LINK]
2009
Pietro Ferrara: “Checkmate: A Generic Static Analyzer of Java Multithreaded Programs.”, in Proceedings of SEFM 2009 [LINK]
2008
Pietro Ferrara, Francesco Logozzo, Manuel Fähndrich: “Safer unsafe code for .NET.”, in Proceedings of OOPSLA 2008 [LINK]
Pietro Ferrara: “Static Analysis of the Determinism of Multithreaded Programs.”, in Proceedings of SEFM 2008 [LINK]
Pietro Ferrara: “Static Analysis Via Abstract Interpretation of the Happens-Before Memory Model.”, in Proceedings of TAP 2008 [LINK]