{"id":"https://openalex.org/W2017035494","doi":"https://doi.org/10.1145/2491411.2491456","title":"Z3-str: a z3-based string solver for web application analysis","display_name":"Z3-str: a z3-based string solver for web application analysis","publication_year":2013,"publication_date":"2013-08-18","ids":{"openalex":"https://openalex.org/W2017035494","doi":"https://doi.org/10.1145/2491411.2491456","mag":"2017035494"},"language":"en","primary_location":{"id":"doi:10.1145/2491411.2491456","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2491411.2491456","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2013 9th Joint Meeting on Foundations of Software Engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5039824895","display_name":"Yunhui Zheng","orcid":"https://orcid.org/0000-0002-6794-3199"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Yunhui Zheng","raw_affiliation_strings":["Purdue University, USA","Purdue University , USA"],"affiliations":[{"raw_affiliation_string":"Purdue University, USA","institution_ids":["https://openalex.org/I219193219"]},{"raw_affiliation_string":"Purdue University , USA","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5107249133","display_name":"Xiangyu Zhang","orcid":"https://orcid.org/0000-0002-9544-2500"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Xiangyu Zhang","raw_affiliation_strings":["Purdue University, USA","Purdue University , USA"],"affiliations":[{"raw_affiliation_string":"Purdue University, USA","institution_ids":["https://openalex.org/I219193219"]},{"raw_affiliation_string":"Purdue University , USA","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5052292970","display_name":"Vijay Ganesh","orcid":"https://orcid.org/0000-0002-6029-2047"},"institutions":[{"id":"https://openalex.org/I151746483","display_name":"University of Waterloo","ror":"https://ror.org/01aff2v68","country_code":"CA","type":"education","lineage":["https://openalex.org/I151746483"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Vijay Ganesh","raw_affiliation_strings":["University of Waterloo, Canada"],"affiliations":[{"raw_affiliation_string":"University of Waterloo, Canada","institution_ids":["https://openalex.org/I151746483"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5039824895"],"corresponding_institution_ids":["https://openalex.org/I219193219"],"apc_list":null,"apc_paid":null,"fwci":55.1467,"has_fulltext":false,"cited_by_count":194,"citation_normalized_percentile":{"value":0.9985621,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"114","last_page":"124"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9955999851226807,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9945999979972839,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/string","display_name":"String (physics)","score":0.7782655954360962},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6862386465072632},{"id":"https://openalex.org/keywords/string-metric","display_name":"String metric","score":0.6357899308204651},{"id":"https://openalex.org/keywords/solver","display_name":"Solver","score":0.6039997935295105},{"id":"https://openalex.org/keywords/string-searching-algorithm","display_name":"String searching algorithm","score":0.520389199256897},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.4910414218902588},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.47831371426582336},{"id":"https://openalex.org/keywords/symbolic-execution","display_name":"Symbolic execution","score":0.4735623598098755},{"id":"https://openalex.org/keywords/concatenation","display_name":"Concatenation (mathematics)","score":0.4700062870979309},{"id":"https://openalex.org/keywords/plug-in","display_name":"Plug-in","score":0.44101181626319885},{"id":"https://openalex.org/keywords/approximate-string-matching","display_name":"Approximate string matching","score":0.41464051604270935},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.21469688415527344},{"id":"https://openalex.org/keywords/data-structure","display_name":"Data structure","score":0.18293559551239014},{"id":"https://openalex.org/keywords/physics","display_name":"Physics","score":0.1726362407207489},{"id":"https://openalex.org/keywords/combinatorics","display_name":"Combinatorics","score":0.1239025890827179},{"id":"https://openalex.org/keywords/theoretical-physics","display_name":"Theoretical physics","score":0.10921323299407959},{"id":"https://openalex.org/keywords/pattern-matching","display_name":"Pattern matching","score":0.09995996952056885}],"concepts":[{"id":"https://openalex.org/C157486923","wikidata":"https://www.wikidata.org/wiki/Q1376436","display_name":"String (physics)","level":2,"score":0.7782655954360962},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6862386465072632},{"id":"https://openalex.org/C22820288","wikidata":"https://www.wikidata.org/wiki/Q9050568","display_name":"String metric","level":4,"score":0.6357899308204651},{"id":"https://openalex.org/C2778770139","wikidata":"https://www.wikidata.org/wiki/Q1966904","display_name":"Solver","level":2,"score":0.6039997935295105},{"id":"https://openalex.org/C7757238","wikidata":"https://www.wikidata.org/wiki/Q374040","display_name":"String searching algorithm","level":3,"score":0.520389199256897},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.4910414218902588},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.47831371426582336},{"id":"https://openalex.org/C2779639559","wikidata":"https://www.wikidata.org/wiki/Q7661178","display_name":"Symbolic execution","level":3,"score":0.4735623598098755},{"id":"https://openalex.org/C87619178","wikidata":"https://www.wikidata.org/wiki/Q126002","display_name":"Concatenation (mathematics)","level":2,"score":0.4700062870979309},{"id":"https://openalex.org/C4924752","wikidata":"https://www.wikidata.org/wiki/Q184148","display_name":"Plug-in","level":2,"score":0.44101181626319885},{"id":"https://openalex.org/C32610155","wikidata":"https://www.wikidata.org/wiki/Q1798621","display_name":"Approximate string matching","level":3,"score":0.41464051604270935},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.21469688415527344},{"id":"https://openalex.org/C162319229","wikidata":"https://www.wikidata.org/wiki/Q175263","display_name":"Data structure","level":2,"score":0.18293559551239014},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.1726362407207489},{"id":"https://openalex.org/C114614502","wikidata":"https://www.wikidata.org/wiki/Q76592","display_name":"Combinatorics","level":1,"score":0.1239025890827179},{"id":"https://openalex.org/C33332235","wikidata":"https://www.wikidata.org/wiki/Q18362","display_name":"Theoretical physics","level":1,"score":0.10921323299407959},{"id":"https://openalex.org/C68859911","wikidata":"https://www.wikidata.org/wiki/Q1503724","display_name":"Pattern matching","level":2,"score":0.09995996952056885},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/2491411.2491456","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2491411.2491456","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2013 9th Joint Meeting on Foundations of Software Engineering","raw_type":"proceedings-article"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.363.6491","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.363.6491","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://www.cs.purdue.edu/homes/zheng16/files/fse13.pdf","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.6100000143051147,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":31,"referenced_works":["https://openalex.org/W8218418","https://openalex.org/W1480909796","https://openalex.org/W1528783527","https://openalex.org/W1530609294","https://openalex.org/W1553543780","https://openalex.org/W1555798330","https://openalex.org/W1583295953","https://openalex.org/W1809751277","https://openalex.org/W1952344271","https://openalex.org/W1993370765","https://openalex.org/W2007842496","https://openalex.org/W2035096212","https://openalex.org/W2037286444","https://openalex.org/W2039468209","https://openalex.org/W2058247506","https://openalex.org/W2069915937","https://openalex.org/W2070791239","https://openalex.org/W2094568767","https://openalex.org/W2098697136","https://openalex.org/W2110318050","https://openalex.org/W2117402063","https://openalex.org/W2123995178","https://openalex.org/W2129487583","https://openalex.org/W2136579066","https://openalex.org/W2147656091","https://openalex.org/W2147874879","https://openalex.org/W2157260510","https://openalex.org/W2162720432","https://openalex.org/W2164622707","https://openalex.org/W2344937935","https://openalex.org/W2404990348"],"related_works":["https://openalex.org/W2187092961","https://openalex.org/W2519145296","https://openalex.org/W2054173104","https://openalex.org/W4294250279","https://openalex.org/W2074064717","https://openalex.org/W2051764263","https://openalex.org/W2257399947","https://openalex.org/W2069035364","https://openalex.org/W2599240737","https://openalex.org/W2187002734"],"abstract_inverted_index":{"Analyzing":[0],"web":[1],"applications":[2],"requires":[3],"reasoning":[4],"about":[5],"strings":[6,51,68],"and":[7,85,93,104,129,147],"non-strings":[8],"cohesively.":[9],"Existing":[10],"string":[11,23,33,91,119,127,179],"solvers":[12,65,157],"either":[13],"ignore":[14],"non-string":[15],"program":[16,144],"behavior":[17],"or":[18],"support":[19,173],"limited":[20],"set":[21],"of":[22,40,71,76,95,114,163,174,178],"operations.":[24],"In":[25],"this":[26],"paper,":[27],"we":[28],"develop":[29],"a":[30,53,175],"general":[31],"purpose":[32],"solver,":[34],"called":[35],"Z3-str,":[36],"as":[37,52,101],"an":[38],"extension":[39],"the":[41,58,77,112,115],"Z3":[42],"SMT":[43],"solver":[44,138],"through":[45],"its":[46,172],"plug-in":[47,78],"interface.":[48],"Z3-str":[49,164],"treats":[50],"primitive":[54],"type,":[55],"thus":[56],"avoiding":[57],"inherent":[59],"limitations":[60],"observed":[61],"in":[62,69,158,165],"many":[63],"existing":[64],"that":[66,141,171],"encode":[67],"terms":[70,89,108],"other":[72,156],"primitives.":[73],"The":[74,87,106,121,161],"logic":[75],"has":[79],"three":[80],"sorts,":[81],"namely,":[82],"bool,":[83],"int":[84],"string.":[86],"string-sorted":[88],"include":[90],"constants":[92],"variables":[94],"arbitrary":[96],"length,":[97],"with":[98,111],"functions":[99],"such":[100],"concatenation,":[102],"sub-string,":[103],"replace.":[105],"int-sorted":[107],"are":[109,124],"standard,":[110],"exception":[113],"length":[116],"function":[117],"over":[118,126,131],"terms.":[120,133],"atomic":[122],"formulas":[123],"equations":[125],"terms,":[128],"(in)-equalities":[130],"integer":[132],"Not":[134],"only":[135],"does":[136],"our":[137,159],"have":[139],"features":[140],"enable":[142],"whole":[143],"symbolic,":[145],"static":[146],"dynamic":[148],"analysis,":[149],"but":[150],"also":[151],"it":[152],"performs":[153],"better":[154],"than":[155],"experiments.":[160],"application":[162],"remote":[166],"code":[167],"execution":[168],"detection":[169],"shows":[170],"wide":[176],"spectrum":[177],"operations":[180],"is":[181],"key":[182],"to":[183],"reducing":[184],"false":[185],"positives.":[186]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":5},{"year":2024,"cited_by_count":4},{"year":2023,"cited_by_count":6},{"year":2022,"cited_by_count":7},{"year":2021,"cited_by_count":14},{"year":2020,"cited_by_count":22},{"year":2019,"cited_by_count":18},{"year":2018,"cited_by_count":23},{"year":2017,"cited_by_count":28},{"year":2016,"cited_by_count":21},{"year":2015,"cited_by_count":30},{"year":2014,"cited_by_count":15}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}