{"id":"https://openalex.org/W2985320478","doi":"https://doi.org/10.1145/3319535.3345659","title":"CryptoGuard","display_name":"CryptoGuard","publication_year":2019,"publication_date":"2019-11-06","ids":{"openalex":"https://openalex.org/W2985320478","doi":"https://doi.org/10.1145/3319535.3345659","mag":"2985320478"},"language":"en","primary_location":{"id":"doi:10.1145/3319535.3345659","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3319535.3345659","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3319535.3345659","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3319535.3345659","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5028738303","display_name":"Sazzadur Rahaman","orcid":"https://orcid.org/0000-0002-1258-6470"},"institutions":[{"id":"https://openalex.org/I859038795","display_name":"Virginia Tech","ror":"https://ror.org/02smfhw86","country_code":"US","type":"education","lineage":["https://openalex.org/I859038795"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Sazzadur Rahaman","raw_affiliation_strings":["Virginia Tech, Blacksburg, VA, USA"],"affiliations":[{"raw_affiliation_string":"Virginia Tech, Blacksburg, VA, USA","institution_ids":["https://openalex.org/I859038795"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100765378","display_name":"Ya Xiao","orcid":"https://orcid.org/0000-0002-4030-811X"},"institutions":[{"id":"https://openalex.org/I859038795","display_name":"Virginia Tech","ror":"https://ror.org/02smfhw86","country_code":"US","type":"education","lineage":["https://openalex.org/I859038795"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ya Xiao","raw_affiliation_strings":["Virginia Tech, Blacksburg, VA, USA"],"affiliations":[{"raw_affiliation_string":"Virginia Tech, Blacksburg, VA, USA","institution_ids":["https://openalex.org/I859038795"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5090273664","display_name":"Sharmin Afrose","orcid":"https://orcid.org/0000-0003-1835-773X"},"institutions":[{"id":"https://openalex.org/I859038795","display_name":"Virginia Tech","ror":"https://ror.org/02smfhw86","country_code":"US","type":"education","lineage":["https://openalex.org/I859038795"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Sharmin Afrose","raw_affiliation_strings":["Virginia Tech, Blacksburg, VA, USA"],"affiliations":[{"raw_affiliation_string":"Virginia Tech, Blacksburg, VA, USA","institution_ids":["https://openalex.org/I859038795"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5069613308","display_name":"Fahad Shaon","orcid":"https://orcid.org/0000-0001-8278-431X"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Fahad Shaon","raw_affiliation_strings":["University of Texas at Dallas, Dallas, TX, USA"],"affiliations":[{"raw_affiliation_string":"University of Texas at Dallas, Dallas, TX, USA","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5047718767","display_name":"Ke Tian","orcid":"https://orcid.org/0000-0002-6784-5820"},"institutions":[{"id":"https://openalex.org/I859038795","display_name":"Virginia Tech","ror":"https://ror.org/02smfhw86","country_code":"US","type":"education","lineage":["https://openalex.org/I859038795"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ke Tian","raw_affiliation_strings":["Virginia Tech, Blacksburg, VA, USA"],"affiliations":[{"raw_affiliation_string":"Virginia Tech, Blacksburg, VA, USA","institution_ids":["https://openalex.org/I859038795"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5047303372","display_name":"Miles Frantz","orcid":null},"institutions":[{"id":"https://openalex.org/I859038795","display_name":"Virginia Tech","ror":"https://ror.org/02smfhw86","country_code":"US","type":"education","lineage":["https://openalex.org/I859038795"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Miles Frantz","raw_affiliation_strings":["Virginia Tech, Blacksburg, VA, USA"],"affiliations":[{"raw_affiliation_string":"Virginia Tech, Blacksburg, VA, USA","institution_ids":["https://openalex.org/I859038795"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5087192873","display_name":"Murat Kantarc\u0131o\u011flu","orcid":"https://orcid.org/0000-0001-9795-9063"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Murat Kantarcioglu","raw_affiliation_strings":["University of Texas at Dallas, Dallas, TX, USA"],"affiliations":[{"raw_affiliation_string":"University of Texas at Dallas, Dallas, TX, USA","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5034366344","display_name":"Danfeng Yao","orcid":"https://orcid.org/0000-0001-8969-2792"},"institutions":[{"id":"https://openalex.org/I859038795","display_name":"Virginia Tech","ror":"https://ror.org/02smfhw86","country_code":"US","type":"education","lineage":["https://openalex.org/I859038795"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Danfeng (Daphne) Yao","raw_affiliation_strings":["Virginia Tech, Blacksburg, VA, USA"],"affiliations":[{"raw_affiliation_string":"Virginia Tech, Blacksburg, VA, USA","institution_ids":["https://openalex.org/I859038795"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":8,"corresponding_author_ids":["https://openalex.org/A5028738303"],"corresponding_institution_ids":["https://openalex.org/I859038795"],"apc_list":null,"apc_paid":null,"fwci":10.7807,"has_fulltext":true,"cited_by_count":121,"citation_normalized_percentile":{"value":0.98968946,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"2455","last_page":"2472"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9947999715805054,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9919999837875366,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8219783306121826},{"id":"https://openalex.org/keywords/false-positive-paradox","display_name":"False positive paradox","score":0.6760754585266113},{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.6015613079071045},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.5124731659889221},{"id":"https://openalex.org/keywords/certificate","display_name":"Certificate","score":0.48529571294784546},{"id":"https://openalex.org/keywords/nist","display_name":"NIST","score":0.4408209025859833},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4342691898345947},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.4175356328487396},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4078397750854492},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.29886555671691895},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.24890342354774475},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.19138965010643005},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.1417003870010376}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8219783306121826},{"id":"https://openalex.org/C64869954","wikidata":"https://www.wikidata.org/wiki/Q1859747","display_name":"False positive paradox","level":2,"score":0.6760754585266113},{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.6015613079071045},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.5124731659889221},{"id":"https://openalex.org/C96865113","wikidata":"https://www.wikidata.org/wiki/Q2946816","display_name":"Certificate","level":2,"score":0.48529571294784546},{"id":"https://openalex.org/C111219384","wikidata":"https://www.wikidata.org/wiki/Q6954384","display_name":"NIST","level":2,"score":0.4408209025859833},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4342691898345947},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.4175356328487396},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4078397750854492},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.29886555671691895},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.24890342354774475},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.19138965010643005},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.1417003870010376},{"id":"https://openalex.org/C204321447","wikidata":"https://www.wikidata.org/wiki/Q30642","display_name":"Natural language processing","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3319535.3345659","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3319535.3345659","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3319535.3345659","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3319535.3345659","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3319535.3345659","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3319535.3345659","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G3888902274","display_name":null,"funder_award_id":"ONR-N00014-17-1-2498","funder_id":"https://openalex.org/F4320338298","funder_display_name":"Office of Naval Research Global"},{"id":"https://openalex.org/G8514773271","display_name":null,"funder_award_id":"SBIR-1647681, SBIR-1758628","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320338298","display_name":"Office of Naval Research Global","ror":"https://ror.org/00rk2pe57"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2985320478.pdf","grobid_xml":"https://content.openalex.org/works/W2985320478.grobid-xml"},"referenced_works_count":69,"referenced_works":["https://openalex.org/W1479871422","https://openalex.org/W1517949462","https://openalex.org/W1526080054","https://openalex.org/W1541063262","https://openalex.org/W1558077212","https://openalex.org/W1769343819","https://openalex.org/W1857692135","https://openalex.org/W1971751469","https://openalex.org/W1986453394","https://openalex.org/W2008810193","https://openalex.org/W2042923641","https://openalex.org/W2045057497","https://openalex.org/W2048715902","https://openalex.org/W2078393527","https://openalex.org/W2087527532","https://openalex.org/W2092115639","https://openalex.org/W2103370348","https://openalex.org/W2121895731","https://openalex.org/W2124228276","https://openalex.org/W2134101189","https://openalex.org/W2138110817","https://openalex.org/W2145994642","https://openalex.org/W2146752727","https://openalex.org/W2154122606","https://openalex.org/W2166743230","https://openalex.org/W2293618135","https://openalex.org/W2357927175","https://openalex.org/W2400329213","https://openalex.org/W2506049781","https://openalex.org/W2511044583","https://openalex.org/W2532335977","https://openalex.org/W2532717356","https://openalex.org/W2532945044","https://openalex.org/W2536707834","https://openalex.org/W2537014044","https://openalex.org/W2538893033","https://openalex.org/W2561521908","https://openalex.org/W2600871181","https://openalex.org/W2604331051","https://openalex.org/W2604745103","https://openalex.org/W2612529343","https://openalex.org/W2613948935","https://openalex.org/W2672575173","https://openalex.org/W2698406033","https://openalex.org/W2740330300","https://openalex.org/W2745087117","https://openalex.org/W2759023773","https://openalex.org/W2765671202","https://openalex.org/W2766217896","https://openalex.org/W2766347289","https://openalex.org/W2766542353","https://openalex.org/W2767943400","https://openalex.org/W2793024489","https://openalex.org/W2793937183","https://openalex.org/W2794992746","https://openalex.org/W2796472165","https://openalex.org/W2799489955","https://openalex.org/W2808620986","https://openalex.org/W2897859437","https://openalex.org/W2916399511","https://openalex.org/W2929275958","https://openalex.org/W2949256655","https://openalex.org/W2984297109","https://openalex.org/W3032745429","https://openalex.org/W4206319301","https://openalex.org/W4244726870","https://openalex.org/W6633485244","https://openalex.org/W6749612936","https://openalex.org/W6778845718"],"related_works":["https://openalex.org/W2158491338","https://openalex.org/W2807901368","https://openalex.org/W2133733652","https://openalex.org/W2072658171","https://openalex.org/W2606392311","https://openalex.org/W2320042380","https://openalex.org/W4385956668","https://openalex.org/W4318899699","https://openalex.org/W4387195303","https://openalex.org/W2400329213"],"abstract_inverted_index":{"Cryptographic":[0],"API":[1,24],"misuses,":[2],"such":[3],"as":[4],"exposed":[5],"secrets,":[6],"predictable":[7],"random":[8],"numbers,":[9],"and":[10,94,116,143,152],"vulnerable":[11],"certificate":[12],"verification,":[13],"seriously":[14],"threaten":[15],"software":[16],"security.":[17],"The":[18,72],"vision":[19],"of":[20,30,42,60,126],"automatically":[21],"screening":[22],"cryptographic":[23],"calls":[25],"in":[26,81,128],"massive-sized":[27],"(e.g.,":[28],"millions":[29],"LoC)":[31],"programs":[32],"is":[33,57],"not":[34,53],"new.":[35],"However,":[36],"hindered":[37],"by":[38,67,77],"the":[39,124],"practical":[40],"difficulty":[41],"reducing":[43],"false":[44,75],"positives":[45,140],"without":[46],"compromising":[47],"analysis":[48,127],"quality,":[49],"this":[50,129],"goal":[51],"has":[52],"been":[54],"accomplished.":[55],"CryptoGuard":[56],"a":[58],"set":[59],"detection":[61],"algorithms":[62],"that":[63],"refine":[64],"program":[65],"slices":[66],"identifying":[68],"language-specific":[69],"irrelevant":[70],"elements.":[71],"refinements":[73],"reduce":[74],"alerts":[76],"76%":[78],"to":[79,109],"80%":[80],"our":[82,85],"experiments.":[83],"Running":[84],"tool,":[86],"Cryp-toGuard,":[87],"on":[88],"46":[89],"high-impact":[90],"large-scale":[91],"Apache":[92,107,135],"projects":[93,108],"6,181":[95],"Android":[96],"apps":[97],"generated":[98],"many":[99],"security":[100],"insights.":[101],"Our":[102],"findings":[103],"helped":[104],"multiple":[105],"popular":[106],"harden":[110],"their":[111],"code,":[112],"including":[113,131,149],"Spark,":[114],"Ranger,":[115],"Ofbiz.":[117],"We":[118],"also":[119],"have":[120],"made":[121],"progress":[122],"towards":[123],"science":[125],"space,":[130],"manually":[132],"analyzing":[133],"1,295":[134],"alerts,":[136],"confirming":[137],"1,277":[138],"true":[139],"(98.61%":[141],"precision),":[142],"in-depth":[144],"comparison":[145],"with":[146],"leading":[147],"solutions":[148],"CrySL,":[150],"SpotBugs,":[151],"Coverity.":[153]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":15},{"year":2024,"cited_by_count":19},{"year":2023,"cited_by_count":21},{"year":2022,"cited_by_count":23},{"year":2021,"cited_by_count":23},{"year":2020,"cited_by_count":17},{"year":2019,"cited_by_count":2}],"updated_date":"2026-02-25T23:00:34.991745","created_date":"2019-11-22T00:00:00"}