Publications Related to SecuriBench Micro

The following publications of the Stanford SUIF group are related to SecuriBench and SecuriBench Micro.

Defining a Set of Common Benchmarks for Web Application Security.
[PDF]

Benjamin Livshits
Position paper at the Workshop on Defining the State of the Art in Software Security Tools, Baltimore, August 2005.
Finding Application Errors and Security Flaws Using PQL: a Program Query Language.
[PDF ] [Abstract]

Michael Martin, V. Benjamin Livshits, and Monica S. Lam
To be presented at the 20th Annual ACM Conference on Object-Oriented Programming, Systems, Languages, and Applications, San Diego, California, October 2005.
Finding Security Vulnerabilities in Java Applications with Static Analysis.
[PDF ] [Abstract] [BibTeX]

V. Benjamin Livshits and Monica S. Lam
Presented at the Usenix Security Symposium, Baltimore, Maryland, August 2005.
Finding Security Vulnerabilities in Java Applications with Static Analysis.
[PDF ] [Abstract] [BibTeX]

V. Benjamin Livshits and Monica S. Lam
A technical report, which represents an extended version of the paper above.
Context-Sensitive Program Analysis as Database Queries.
[PDF ] [Abstract] [BibTeX]

Monica S. Lam, John Whaley, V. Benjamin Livshits, Michael Martin, Dzintars Avots, Michael Carbin, Christopher Unkel.
Presented at the Principles of Database Systems (PODS), Baltimore, Maryland, June 2005.
Findings Security Errors in Java Applications Using Lightweight Static Analysis.
[PDF] [Abstract] [BibTeX]

V.Benjamin Livshits.
In Annual Computer Security Applications Conference, Work-in-Progress Report, November 2004.