{"id":"https://openalex.org/W2008106620","doi":"https://doi.org/10.1145/1882291.1882338","title":"Practical and effective symbolic analysis for buffer overflow detection","display_name":"Practical and effective symbolic analysis for buffer overflow detection","publication_year":2010,"publication_date":"2010-11-07","ids":{"openalex":"https://openalex.org/W2008106620","doi":"https://doi.org/10.1145/1882291.1882338","mag":"2008106620"},"language":"en","primary_location":{"id":"doi:10.1145/1882291.1882338","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1882291.1882338","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the eighteenth ACM SIGSOFT international symposium on Foundations of software engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100317802","display_name":"Lian Li","orcid":"https://orcid.org/0000-0002-4476-0541"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Lian Li","raw_affiliation_strings":["Oracle, Brisbane, Australia"],"affiliations":[{"raw_affiliation_string":"Oracle, Brisbane, Australia","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5110303479","display_name":"Cristina Cifuentes","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Cristina Cifuentes","raw_affiliation_strings":["Oracle, Brisbane, Australia"],"affiliations":[{"raw_affiliation_string":"Oracle, Brisbane, Australia","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5040463119","display_name":"Nathan Keynes","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Nathan Keynes","raw_affiliation_strings":["Oracle, Brisbane, Australia"],"affiliations":[{"raw_affiliation_string":"Oracle, Brisbane, Australia","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5100317802"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":3.1573,"has_fulltext":false,"cited_by_count":32,"citation_normalized_percentile":{"value":0.91855815,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"317","last_page":"326"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10054","display_name":"Parallel Computing and Optimization Techniques","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/buffer-overflow","display_name":"Buffer overflow","score":0.924693763256073},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8302558064460754},{"id":"https://openalex.org/keywords/symbolic-data-analysis","display_name":"Symbolic data analysis","score":0.6514492630958557},{"id":"https://openalex.org/keywords/symbolic-execution","display_name":"Symbolic execution","score":0.6494040489196777},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.623889684677124},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.5642285943031311},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.5124500393867493},{"id":"https://openalex.org/keywords/static-analysis","display_name":"Static analysis","score":0.49334779381752014},{"id":"https://openalex.org/keywords/source-code","display_name":"Source code","score":0.45499783754348755},{"id":"https://openalex.org/keywords/program-analysis","display_name":"Program analysis","score":0.4382559359073639},{"id":"https://openalex.org/keywords/simple","display_name":"Simple (philosophy)","score":0.41906440258026123},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.40480154752731323},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.3760404884815216},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.35705748200416565},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.28307676315307617},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.10829150676727295}],"concepts":[{"id":"https://openalex.org/C40842320","wikidata":"https://www.wikidata.org/wiki/Q19423","display_name":"Buffer overflow","level":2,"score":0.924693763256073},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8302558064460754},{"id":"https://openalex.org/C65620979","wikidata":"https://www.wikidata.org/wiki/Q7661176","display_name":"Symbolic data analysis","level":2,"score":0.6514492630958557},{"id":"https://openalex.org/C2779639559","wikidata":"https://www.wikidata.org/wiki/Q7661178","display_name":"Symbolic execution","level":3,"score":0.6494040489196777},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.623889684677124},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.5642285943031311},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.5124500393867493},{"id":"https://openalex.org/C97686452","wikidata":"https://www.wikidata.org/wiki/Q7604153","display_name":"Static analysis","level":2,"score":0.49334779381752014},{"id":"https://openalex.org/C43126263","wikidata":"https://www.wikidata.org/wiki/Q128751","display_name":"Source code","level":2,"score":0.45499783754348755},{"id":"https://openalex.org/C98183937","wikidata":"https://www.wikidata.org/wiki/Q2112188","display_name":"Program analysis","level":2,"score":0.4382559359073639},{"id":"https://openalex.org/C2780586882","wikidata":"https://www.wikidata.org/wiki/Q7520643","display_name":"Simple (philosophy)","level":2,"score":0.41906440258026123},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.40480154752731323},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.3760404884815216},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.35705748200416565},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.28307676315307617},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.10829150676727295},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C542102704","wikidata":"https://www.wikidata.org/wiki/Q183257","display_name":"Psychotherapist","level":1,"score":0.0},{"id":"https://openalex.org/C137176749","wikidata":"https://www.wikidata.org/wiki/Q4105337","display_name":"Psychological resilience","level":2,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/1882291.1882338","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1882291.1882338","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the eighteenth ACM SIGSOFT international symposium on Foundations of software engineering","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":32,"referenced_works":["https://openalex.org/W48568323","https://openalex.org/W145355838","https://openalex.org/W157156687","https://openalex.org/W1535713556","https://openalex.org/W1579850852","https://openalex.org/W1600776630","https://openalex.org/W1611084195","https://openalex.org/W1710734607","https://openalex.org/W1777881387","https://openalex.org/W1966634194","https://openalex.org/W1982205631","https://openalex.org/W1990087033","https://openalex.org/W1992105245","https://openalex.org/W1993836075","https://openalex.org/W2008298491","https://openalex.org/W2040384644","https://openalex.org/W2042612464","https://openalex.org/W2043100293","https://openalex.org/W2074847015","https://openalex.org/W2080970633","https://openalex.org/W2084974764","https://openalex.org/W2101512909","https://openalex.org/W2119029078","https://openalex.org/W2124377830","https://openalex.org/W2138538192","https://openalex.org/W2146455667","https://openalex.org/W2155851497","https://openalex.org/W2158798798","https://openalex.org/W2257191642","https://openalex.org/W2914563499","https://openalex.org/W6632050797","https://openalex.org/W6636078504"],"related_works":["https://openalex.org/W2755634893","https://openalex.org/W1970932400","https://openalex.org/W4285586714","https://openalex.org/W2514597554","https://openalex.org/W345638404","https://openalex.org/W4245197793","https://openalex.org/W1566618018","https://openalex.org/W1994915990","https://openalex.org/W2019299443","https://openalex.org/W2751940653"],"abstract_inverted_index":{"Although":[0],"buffer":[1],"overflow":[2],"detection":[3],"has":[4],"been":[5,31],"studied":[6],"for":[7],"more":[8],"than":[9],"20":[10],"years,":[11],"it":[12],"is":[13],"still":[14],"the":[15],"most":[16],"common":[17],"source":[18],"of":[19,50,52],"security":[20],"vulnerabilities":[21],"in":[22],"systems":[23],"code.":[24],"Different":[25],"approaches":[26],"using":[27],"symbolic":[28,39],"analysis":[29,40],"have":[30],"proposed":[32],"to":[33,46,48,58],"detect":[34],"this":[35],"vulnerability.":[36],"However,":[37],"existing":[38],"techniques":[41],"are":[42],"either":[43],"too":[44,56],"complex":[45,63],"scale":[47],"millions":[49],"lines":[51],"code":[53],"(MLOC),":[54],"or":[55],"simple":[57],"effectively":[59],"handle":[60],"loops":[61],"and":[62],"program":[64],"structures.":[65]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":2},{"year":2022,"cited_by_count":5},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":2},{"year":2019,"cited_by_count":4},{"year":2018,"cited_by_count":4},{"year":2017,"cited_by_count":3},{"year":2016,"cited_by_count":1},{"year":2014,"cited_by_count":2},{"year":2013,"cited_by_count":4},{"year":2012,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}