Normalization of Java source codes - Archive ouverte HAL Access content directly
Conference Papers Year :

Normalization of Java source codes

Normalisation de code sources Java

(1) , (2, 3) , (1)
1
2
3

Abstract

Security issues can be leveraged when input parameters are not checked. These missing checks can lead an application to an unexpected state where an attacker can get access to assets. The tool Chucky-ng aims at detecting such missing checks in source code. Such source codes are the only input required for Chuck-yJava. Since it is sensible to the identifier names used in these source codes, we want to normalize them in order to improve its efficiency. To achieve this, we propose an algorithm which works in four steps. It renames constant, parameter , variable and method names. We evaluate the impact of this renaming on two different experiments. Since our results are concluding, we show the benefits of using our tool. Moreover, we suggest another new way to improve Chucky-ng
Fichier principal
Vignette du fichier
paper_32.pdf (217.73 Ko) Télécharger le fichier
Origin : Files produced by the author(s)
Loading...

Dates and versions

hal-01976747 , version 1 (10-01-2019)

Identifiers

Cite

Léopold Ouairy, Hélène Le Bouder, Jean-Louis Lanet. Normalization of Java source codes. SECITC 2018 : 11th International Conference on Security for Information Technology and Communications, Nov 2018, Bucarest, Romania. pp.29-40, ⟨10.1007/978-3-030-12942-2_4⟩. ⟨hal-01976747⟩
193 View
466 Download

Altmetric

Share

Gmail Facebook Twitter LinkedIn More