:: Library Catalog

Cover Image

Saved in:

Bibliographic Details
Main Authors:	Riom, Timothée, Houy, Sabine, Kreyssig, Bruno, Bartel, Alexandre
Format:	Preprint
Published:	2025
Subjects:	Software Engineering Cryptography and Security
Online Access:	https://arxiv.org/abs/2503.19909
Tags:	Add Tag No Tags, Be the first to tag this record!

Similar Items

Sleeping Giants -- Activating Dormant Java Deserialization Gadget Chains through Stealthy Code Changes
by: Kreyssig, Bruno, et al.
Published: (2025)

A Practical Guideline and Taxonomy to LLVM's Control Flow Integrity
by: Houy, Sabine, et al.
Published: (2025)

Deserialization Gadget Chains are not a Pathological Problem in Android:an In-Depth Study of Java Gadget Chains in AOSP
by: Kreyssig, Bruno, et al.
Published: (2025)

CFIghter: Automated Control-Flow Integrity Enablement and Evaluation for Legacy C/C++ Systems
by: Houy, Sabine, et al.
Published: (2025)

FLAMES: Fine-tuning LLMs to Synthesize Invariants for Smart Contract Security
by: Eshghie, Mojtaba, et al.
Published: (2025)

Impact assessment for vulnerabilities in open-source software libraries
by: Plate, Henrik, et al.
Published: (2015)

Bytecode-centric Detection of Known-to-be-vulnerable Dependencies in Java Projects
by: Schott, Stefan, et al.
Published: (2025)

State Machine Model for The Update Framework (TUF)
by: Romansky, Brian, et al.
Published: (2025)

A unit-based symbolic execution method for detecting memory corruption vulnerabilities in executable codes
by: Baradaran, Sara, et al.
Published: (2022)

Just another copy and paste? Comparing the security vulnerabilities of ChatGPT generated code and StackOverflow answers
by: Hamer, Sivana, et al.
Published: (2024)

Insecure Ingredients? Exploring Dependency Update Patterns of Bundled JavaScript Packages on the Web
by: Swierzy, Ben, et al.
Published: (2025)

TREBLE: Fast Software Updates by Creating an Equilibrium in an Active Software Ecosystem of Globally Distributed Stakeholders
by: Yim, Keun Soo, et al.
Published: (2024)

A Comparison of Vulnerability Feature Extraction Methods from Textual Attack Patterns
by: Othman, Refat, et al.
Published: (2024)

Cybersecurity Defenses: Exploration of CVE Types through Attack Descriptions
by: Othman, Refat, et al.
Published: (2024)

How to Compare the Security of Code Written by Humans to LLM-generated Code
by: Balebako, Rebecca, et al.
Published: (2026)

Exploring Security Practices in Infrastructure as Code: An Empirical Study
by: Verdet, Alexandre, et al.
Published: (2023)

Repairing vulnerabilities without invisible hands. A differentiated replication study on LLMs
by: Camporese, Maria, et al.
Published: (2025)

DogeFuzz: A Simple Yet Efficient Grey-box Fuzzer for Ethereum Smart Contracts
by: Medeiros, Ismael, et al.
Published: (2024)

Patch2QL: Discover Cognate Defects in Open Source Software Supply Chain With Auto-generated Static Analysis Rules
by: Wang, Fuwei, et al.
Published: (2024)

Using ML filters to help automated vulnerability repairs: when it helps and when it doesn't
by: Camporese, Maria, et al.
Published: (2025)

Llama-based source code vulnerability detection: Prompt engineering vs Fine tuning
by: Ouchebara, Dyna Soumhane, et al.
Published: (2025)

Security of LLM-generated Code: A Comparative Analysis
by: Morkonda, Srivathsan G, et al.
Published: (2026)

The potential of LLM-generated reports in DevSecOps
by: Lykousas, Nikolaos, et al.
Published: (2024)

"You still have to study" -- On the Security of LLM generated code
by: Goetz, Stefan, et al.
Published: (2024)

Poisoning Programs by Un-Repairing Code: Security Concerns of AI-generated Code
by: Improta, Cristina
Published: (2024)

AIBoMGen: Generating an AI Bill of Materials for Secure, Transparent, and Compliant Model Training
by: Vandendriessche, Wiebe, et al.
Published: (2026)

KEENHash: Hashing Programs into Function-Aware Embeddings for Large-Scale Binary Code Similarity Analysis
by: Liu, Zhijie, et al.
Published: (2025)

QUIC-Fuzz: An Effective Greybox Fuzzer For The QUIC Protocol
by: Ang, Kian Kai, et al.
Published: (2025)

Identity Control Plane: The Unifying Layer for Zero Trust Infrastructure
by: Avirneni, Surya Teja
Published: (2025)

Provenance of Adaptation in Scientific and Business Workflows -- Literature Review
by: Stage, Ludwig, et al.
Published: (2025)

Establishing Workload Identity for Zero Trust CI/CD: From Secrets to SPIFFE-Based Authentication
by: Avirneni, Surya Teja
Published: (2025)

DeCoMa: Detecting and Purifying Code Dataset Watermarks through Dual Channel Code Abstraction
by: Xiao, Yuan, et al.
Published: (2025)

TELSAFE: Security Gap Quantitative Risk Assessment Framework
by: Siddiqui, Sarah Ali, et al.
Published: (2025)

SafeToolBench: Pioneering a Prospective Benchmark to Evaluating Tool Utilization Safety in LLMs
by: Xia, Hongfei, et al.
Published: (2025)

A Holistic Approach to E-Commerce Innovation: Redefining Security and User Experience
by: Akash, Mohammad Olid Ali, et al.
Published: (2025)

Evaluating Software Supply Chain Security in Research Software
by: Hegewald, Richard, et al.
Published: (2025)

Smart Cuts: Enhance Active Learning for Vulnerability Detection by Pruning Hard-to-Learn Data
by: Lan, Xiang, et al.
Published: (2025)

Certifying optimal MEV strategies with Lean
by: Bartoletti, Massimo, et al.
Published: (2025)

PrediQL: Automated Testing of GraphQL APIs with LLMs
by: Liu, Shaolun, et al.
Published: (2025)

Towards Context-aware Mobile Privacy Notice: Implementation of A Deployable Contextual Privacy Policies Generator
by: Gong, Haochen, et al.
Published: (2025)