{"id":"https://openalex.org/W4300017037","doi":"https://doi.org/10.1109/compsac54236.2022.00123","title":"Synthesis of Java Deserialisation Filters from Examples","display_name":"Synthesis of Java Deserialisation Filters from Examples","publication_year":2022,"publication_date":"2022-06-01","ids":{"openalex":"https://openalex.org/W4300017037","doi":"https://doi.org/10.1109/compsac54236.2022.00123"},"language":"en","primary_location":{"id":"doi:10.1109/compsac54236.2022.00123","is_oa":false,"landing_page_url":"https://doi.org/10.1109/compsac54236.2022.00123","pdf_url":null,"source":{"id":"https://openalex.org/S4363607883","display_name":"2022 IEEE 46th Annual Computers, Software, and Applications Conference (COMPSAC)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE 46th Annual Computers, Software, and Applications Conference (COMPSAC)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5057593605","display_name":"Kostyantyn Vorobyov","orcid":"https://orcid.org/0000-0003-2443-4949"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Kostyantyn Vorobyov","raw_affiliation_strings":["Oracle Labs,Brisbane,Australia","Oracle Labs, Brisbane, Australia"],"affiliations":[{"raw_affiliation_string":"Oracle Labs,Brisbane,Australia","institution_ids":[]},{"raw_affiliation_string":"Oracle Labs, Brisbane, Australia","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5017955145","display_name":"Francois Gauthier","orcid":"https://orcid.org/0000-0001-7126-4394"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Francois Gauthier","raw_affiliation_strings":["Oracle Labs,Brisbane,Australia","Oracle Labs, Brisbane, Australia"],"affiliations":[{"raw_affiliation_string":"Oracle Labs,Brisbane,Australia","institution_ids":[]},{"raw_affiliation_string":"Oracle Labs, Brisbane, Australia","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5057021199","display_name":"Sora Bae","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Sora Bae","raw_affiliation_strings":["Oracle Labs,Brisbane,Australia","Oracle Labs, Brisbane, Australia"],"affiliations":[{"raw_affiliation_string":"Oracle Labs,Brisbane,Australia","institution_ids":[]},{"raw_affiliation_string":"Oracle Labs, Brisbane, Australia","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072509657","display_name":"Krishnan Padmanabhan","orcid":"https://orcid.org/0000-0002-3255-8346"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Padmanabhan Krishnan","raw_affiliation_strings":["Oracle Labs,Brisbane,Australia","Oracle Labs, Brisbane, Australia"],"affiliations":[{"raw_affiliation_string":"Oracle Labs,Brisbane,Australia","institution_ids":[]},{"raw_affiliation_string":"Oracle Labs, Brisbane, Australia","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5037516283","display_name":"Rebecca O'Donoghue","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Rebecca O'Donoghue","raw_affiliation_strings":["Oracle Labs,Brisbane,Australia","Oracle Labs, Brisbane, Australia"],"affiliations":[{"raw_affiliation_string":"Oracle Labs,Brisbane,Australia","institution_ids":[]},{"raw_affiliation_string":"Oracle Labs, Brisbane, Australia","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5057593605"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.2079,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.41774402,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":95},"biblio":{"volume":"1433","issue":null,"first_page":"736","last_page":"745"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9952999949455261,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8827323913574219},{"id":"https://openalex.org/keywords/java","display_name":"Java","score":0.8297896385192871},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.6468944549560547},{"id":"https://openalex.org/keywords/prefix","display_name":"Prefix","score":0.5403333902359009},{"id":"https://openalex.org/keywords/scala","display_name":"Scala","score":0.5386410355567932},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.4727507531642914},{"id":"https://openalex.org/keywords/focus","display_name":"Focus (optics)","score":0.458311527967453},{"id":"https://openalex.org/keywords/heuristics","display_name":"Heuristics","score":0.4286789894104004},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.2906268537044525},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.08920234441757202}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8827323913574219},{"id":"https://openalex.org/C548217200","wikidata":"https://www.wikidata.org/wiki/Q251","display_name":"Java","level":2,"score":0.8297896385192871},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.6468944549560547},{"id":"https://openalex.org/C141603448","wikidata":"https://www.wikidata.org/wiki/Q134830","display_name":"Prefix","level":2,"score":0.5403333902359009},{"id":"https://openalex.org/C109701466","wikidata":"https://www.wikidata.org/wiki/Q460584","display_name":"Scala","level":3,"score":0.5386410355567932},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.4727507531642914},{"id":"https://openalex.org/C192209626","wikidata":"https://www.wikidata.org/wiki/Q190909","display_name":"Focus (optics)","level":2,"score":0.458311527967453},{"id":"https://openalex.org/C127705205","wikidata":"https://www.wikidata.org/wiki/Q5748245","display_name":"Heuristics","level":2,"score":0.4286789894104004},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.2906268537044525},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.08920234441757202},{"id":"https://openalex.org/C120665830","wikidata":"https://www.wikidata.org/wiki/Q14620","display_name":"Optics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/compsac54236.2022.00123","is_oa":false,"landing_page_url":"https://doi.org/10.1109/compsac54236.2022.00123","pdf_url":null,"source":{"id":"https://openalex.org/S4363607883","display_name":"2022 IEEE 46th Annual Computers, Software, and Applications Conference (COMPSAC)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE 46th Annual Computers, Software, and Applications Conference (COMPSAC)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.75,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":22,"referenced_works":["https://openalex.org/W1528854217","https://openalex.org/W1538240903","https://openalex.org/W1545777539","https://openalex.org/W1559171143","https://openalex.org/W1771614261","https://openalex.org/W1984666354","https://openalex.org/W1987538593","https://openalex.org/W2059383863","https://openalex.org/W2076343783","https://openalex.org/W2117317564","https://openalex.org/W2141811956","https://openalex.org/W2160879187","https://openalex.org/W2167653948","https://openalex.org/W2275294428","https://openalex.org/W2283879387","https://openalex.org/W2494400401","https://openalex.org/W2890772103","https://openalex.org/W2914503505","https://openalex.org/W2951477402","https://openalex.org/W2970293835","https://openalex.org/W4302339081","https://openalex.org/W6633451914"],"related_works":["https://openalex.org/W2533631495","https://openalex.org/W2528467228","https://openalex.org/W4230932126","https://openalex.org/W1986663586","https://openalex.org/W2526471199","https://openalex.org/W2069676812","https://openalex.org/W4309685185","https://openalex.org/W4243252198","https://openalex.org/W1502256359","https://openalex.org/W2097171662"],"abstract_inverted_index":{"Java":[0,16,36,64],"natively":[1],"supports":[2],"serialisation":[3],"and":[4,128,146,179],"deserialisation,":[5],"features":[6],"that":[7,68,148,174],"are":[8],"necessary":[9],"to":[10,14,26],"enable":[11],"distributed":[12],"systems":[13,145],"exchange":[15],"objects.":[17],"Deserialisation":[18],"of":[19,45,72,98,110,120,132,160],"data":[20],"from":[21,104],"malicious":[22],"sources":[23],"can":[24,51,150],"lead":[25],"security":[27],"exploits":[28,62],"including":[29],"remote":[30],"code":[31],"execution":[32],"because":[33],"by":[34,139],"default":[35],"does":[37],"not":[38],"validate":[39],"deserialised":[40,81],"data.":[41],"In":[42,85],"the":[43,70,78],"absence":[44],"validation,":[46],"a":[47,90,117,157],"carefully":[48],"crafted":[49],"payload":[50],"trigger":[52],"arbitrary":[53],"functionality.":[54],"The":[55],"state-of-the-art":[56],"general":[57],"mitigation":[58],"strategy":[59],"for":[60,95],"deserialisation":[61,66,99,126,133],"in":[63],"is":[65,80,123],"filtering":[67],"validates":[69],"contents":[71],"an":[73],"object":[74,79],"input":[75],"stream":[76],"before":[77],"using":[82,156],"user-provided":[83],"filters.":[84],"this":[86],"paper":[87],"we":[88],"describe":[89],"novel":[91],"technique":[92],"called":[93],"ds-prefix":[94,122,141,149,175],"automatic":[96],"synthesis":[97,109,131,170],"filters":[100,152],"(as":[101],"regular":[102],"expressions)":[103],"examples.":[105,162],"We":[106,135,163],"focus":[107],"on":[108,125,142],"allowlists":[111],"(permitted":[112],"behaviours)":[113],"as":[114],"they":[115],"provide":[116],"better":[118,181],"level":[119],"security.":[121],"based":[124],"heuristics":[127],"specifically":[129],"targets":[130],"allowlists.":[134],"evaluate":[136],"our":[137,166],"approach":[138,167],"executing":[140],"popular":[143],"open-source":[144],"show":[147],"produce":[151],"preventing":[153],"real":[154],"CVEs":[155],"small":[158],"number":[159],"training":[161],"also":[164],"compare":[165],"with":[168],"other":[169],"tools":[171,178],"which":[172],"demonstrates":[173],"outperforms":[176],"existing":[177],"achieves":[180],"F1-score.":[182]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}