:: Library Catalog

Cover Image

Saved in:

Bibliographic Details
Main Authors:	Joshi, Siddhant S., Mukherjee, Preeti, Davis, Kirsten A., Davis, James C.
Format:	Preprint
Published:	2024
Subjects:	Cryptography and Security Software Engineering
Online Access:	https://arxiv.org/abs/2404.16632
Tags:	Add Tag No Tags, Be the first to tag this record!

Similar Items

An Interview Study on Third-Party Cyber Threat Hunting Processes in the U.S. Department of Homeland Security
by: Maxam III, William P., et al.
Published: (2024)

Towards the Systematic Testing of Regular Expression Engines
by: Çakar, Berk, et al.
Published: (2026)

Towards a Benchmark for Dependency Decision-Making
by: Singla, Tanmay, et al.
Published: (2026)

DiVerify: Hardening Identity-Based Software Signing with Diverse-Context Scopes
by: Okafor, Chinenye, et al.
Published: (2024)

Asset-centric Threat Modeling for AI-based Systems
by: von der Assen, Jan, et al.
Published: (2024)

ConfuGuard: Using Metadata to Detect Active and Stealthy Package Confusion Attacks Accurately and at Scale
by: Jiang, Wenxin, et al.
Published: (2025)

A LINDDUN-based Privacy Threat Modeling Framework for GenAI
by: Liao, Qianying, et al.
Published: (2026)

ARMS: A Vision for Actor Reputation Metric Systems in the Open-Source Software Supply Chain
by: Kalu, Kelechi G., et al.
Published: (2025)

SoK: Analysis of Software Supply Chain Security by Establishing Secure Design Properties
by: Okafor, Chinenye, et al.
Published: (2024)

Reactive Bottom-Up Testing
by: Muralee, Siddharth, et al.
Published: (2025)

Finding 709 Defects in 258 Projects: An Experience Report on Applying CodeQL to Open-Source Embedded Software (Experience Paper) -- Extended Report
by: Shen, Mingjie, et al.
Published: (2023)

A Guide to Stakeholder Analysis for Cybersecurity Researchers
by: Davis, James C, et al.
Published: (2025)

An Industry Interview Study of Software Signing for Supply Chain Security
by: Kalu, Kelechi G., et al.
Published: (2024)

A Longitudinal Study of Usability in Identity-Based Software Signing
by: Kalu, Kelechi G., et al.
Published: (2026)

Establishing Provenance Before Coding: Traditional and Next-Gen Software Signing
by: Schorlemmer, Taylor R., et al.
Published: (2024)

SoK: A Literature and Engineering Review of Regular Expression Denial of Service (ReDoS)
by: Bhuiyan, Masudul Hasan Masud, et al.
Published: (2024)

Why Johnny Adopts Identity-Based Software Signing: A Usability Case Study of Sigstore
by: Kalu, Kelechi G., et al.
Published: (2025)

Operationalizing Research Software for Supply Chain Security
by: Kalu, Kelechi G., et al.
Published: (2026)

Publish Your Threat Models! The benefits far outweigh the dangers
by: Kohnfelder, Loren, et al.
Published: (2025)

Threat Modelling and Risk Analysis for Large Language Model (LLM)-Powered Applications
by: Tete, Stephen Burabari
Published: (2024)

ThreMoLIA: Threat Modeling of Large Language Model-Integrated Applications
by: Jedrzejewski, Felix Viktor, et al.
Published: (2025)

Model Context Protocol Threat Modeling and Analyzing Vulnerabilities to Prompt Injection with Tool Poisoning
by: Huang, Charoes, et al.
Published: (2026)

VulnRepairEval: An Exploit-Based Evaluation Framework for Assessing Large Language Model Vulnerability Repair Capabilities
by: Wang, Weizhe, et al.
Published: (2025)

Is GitHub's Copilot as Bad as Humans at Introducing Vulnerabilities in Code?
by: Asare, Owura, et al.
Published: (2022)

Signing in Four Public Software Package Registries: Quantity, Quality, and Influencing Factors
by: Schorlemmer, Taylor R, et al.
Published: (2024)

Think Broad, Act Narrow: CWE Identification with Multi-Agent Large Language Models
by: Sayagh, Mohammed, et al.
Published: (2025)

Exploring the Security Threats of Retriever Backdoors in Retrieval-Augmented Code Generation
by: Li, Tian, et al.
Published: (2025)

Concerned with Data Contamination? Assessing Countermeasures in Code Language Model
by: Cao, Jialun, et al.
Published: (2024)

Fine-Tuning LLMs for Code Mutation: A New Era of Cyber Threats
by: Setak, Mohammad, et al.
Published: (2024)

Exploring the Security Threats of Knowledge Base Poisoning in Retrieval-Augmented Code Generation
by: Lin, Bo, et al.
Published: (2025)

Assessing the Effectiveness of Binary-Level CFI Techniques
by: Vaidya, Ruturaj K., et al.
Published: (2024)

Mining the YARA Ecosystem: From Ad-Hoc Sharing to Data-Driven Threat Intelligence
by: Esteban, Dectot--Le Monnier de Gouville, et al.
Published: (2026)

SOSecure: Safer Code Generation with RAG and StackOverflow Discussions
by: Mukherjee, Manisha, et al.
Published: (2025)

Assessing and Enhancing Quantum Readiness in Mobile Apps
by: Strauss, Joseph, et al.
Published: (2025)

Deep Learning Model Security: Threats and Defenses
by: Wang, Tianyang, et al.
Published: (2024)

LLM-enabled Applications Require System-Level Threat Monitoring
by: Zhang, Yedi, et al.
Published: (2026)

Integrating APK Image and Text Data for Enhanced Threat Detection: A Multimodal Deep Learning Approach to Android Malware
by: Arifin, Md Mashrur, et al.
Published: (2026)

Extending the OWASP Multi-Agentic System Threat Modeling Guide: Insights from Multi-Agent Security Research
by: Krawiecka, Klaudia, et al.
Published: (2025)

On Training a Neural Network to Explain Binaries
by: Interrante-Grant, Alexander, et al.
Published: (2024)

Assessing Privacy Compliance of Android Third-Party SDKs
by: Meng, Mark Huasong, et al.
Published: (2024)