{"id":"https://openalex.org/W4313563662","doi":"https://doi.org/10.1145/3551349.3559522","title":"Augur: Dynamic Taint Analysis for Asynchronous JavaScript","display_name":"Augur: Dynamic Taint Analysis for Asynchronous JavaScript","publication_year":2022,"publication_date":"2022-10-10","ids":{"openalex":"https://openalex.org/W4313563662","doi":"https://doi.org/10.1145/3551349.3559522"},"language":"en","primary_location":{"id":"doi:10.1145/3551349.3559522","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3551349.3559522","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3551349.3559522","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 37th IEEE/ACM International Conference on Automated Software Engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3551349.3559522","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5075313631","display_name":"Mark W. Aldrich","orcid":"https://orcid.org/0000-0001-5269-7063"},"institutions":[{"id":"https://openalex.org/I121934306","display_name":"Tufts University","ror":"https://ror.org/05wvpxv85","country_code":"US","type":"education","lineage":["https://openalex.org/I121934306"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Mark W. Aldrich","raw_affiliation_strings":["Tufts University, USA"],"raw_orcid":"https://orcid.org/0000-0001-5269-7063","affiliations":[{"raw_affiliation_string":"Tufts University, USA","institution_ids":["https://openalex.org/I121934306"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5024866221","display_name":"Alexi Turcotte","orcid":"https://orcid.org/0000-0002-0381-0477"},"institutions":[{"id":"https://openalex.org/I12912129","display_name":"Northeastern University","ror":"https://ror.org/04t5xt781","country_code":"US","type":"education","lineage":["https://openalex.org/I12912129"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Alexi Turcotte","raw_affiliation_strings":["Northeastern University, USA"],"raw_orcid":"https://orcid.org/0000-0002-0381-0477","affiliations":[{"raw_affiliation_string":"Northeastern University, USA","institution_ids":["https://openalex.org/I12912129"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5112889243","display_name":"Matthew Blanco","orcid":null},"institutions":[{"id":"https://openalex.org/I12912129","display_name":"Northeastern University","ror":"https://ror.org/04t5xt781","country_code":"US","type":"education","lineage":["https://openalex.org/I12912129"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Matthew Blanco","raw_affiliation_strings":["Northeastern University, USA"],"raw_orcid":"https://orcid.org/0000-0002-1862-3498","affiliations":[{"raw_affiliation_string":"Northeastern University, USA","institution_ids":["https://openalex.org/I12912129"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5087594876","display_name":"Frank Tip","orcid":"https://orcid.org/0000-0002-1862-3498"},"institutions":[{"id":"https://openalex.org/I12912129","display_name":"Northeastern University","ror":"https://ror.org/04t5xt781","country_code":"US","type":"education","lineage":["https://openalex.org/I12912129"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Frank Tip","raw_affiliation_strings":["Northeastern University, United States of America"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Northeastern University, United States of America","institution_ids":["https://openalex.org/I12912129"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.9714,"has_fulltext":true,"cited_by_count":8,"citation_normalized_percentile":{"value":0.80426718,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"4"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/javascript","display_name":"JavaScript","score":0.9359173774719238},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8130207061767578},{"id":"https://openalex.org/keywords/asynchronous-communication","display_name":"Asynchronous communication","score":0.6802371144294739},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.6079955101013184},{"id":"https://openalex.org/keywords/instrumentation","display_name":"Instrumentation (computer programming)","score":0.5901309251785278},{"id":"https://openalex.org/keywords/unobtrusive-javascript","display_name":"Unobtrusive JavaScript","score":0.5757697224617004},{"id":"https://openalex.org/keywords/taint-checking","display_name":"Taint checking","score":0.5724179744720459},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.5642260313034058},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.3812524080276489},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.33630508184432983},{"id":"https://openalex.org/keywords/rich-internet-application","display_name":"Rich Internet application","score":0.15400078892707825},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.09408298134803772},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.0823802649974823}],"concepts":[{"id":"https://openalex.org/C544833334","wikidata":"https://www.wikidata.org/wiki/Q2005","display_name":"JavaScript","level":2,"score":0.9359173774719238},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8130207061767578},{"id":"https://openalex.org/C151319957","wikidata":"https://www.wikidata.org/wiki/Q752739","display_name":"Asynchronous communication","level":2,"score":0.6802371144294739},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.6079955101013184},{"id":"https://openalex.org/C118530786","wikidata":"https://www.wikidata.org/wiki/Q1134732","display_name":"Instrumentation (computer programming)","level":2,"score":0.5901309251785278},{"id":"https://openalex.org/C198240166","wikidata":"https://www.wikidata.org/wiki/Q2298909","display_name":"Unobtrusive JavaScript","level":4,"score":0.5757697224617004},{"id":"https://openalex.org/C63116202","wikidata":"https://www.wikidata.org/wiki/Q7676227","display_name":"Taint checking","level":3,"score":0.5724179744720459},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.5642260313034058},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.3812524080276489},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.33630508184432983},{"id":"https://openalex.org/C103048170","wikidata":"https://www.wikidata.org/wiki/Q725485","display_name":"Rich Internet application","level":3,"score":0.15400078892707825},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.09408298134803772},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.0823802649974823}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3551349.3559522","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3551349.3559522","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3551349.3559522","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 37th IEEE/ACM International Conference on Automated Software Engineering","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3551349.3559522","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3551349.3559522","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3551349.3559522","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 37th IEEE/ACM International Conference on Automated Software Engineering","raw_type":"proceedings-article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.75}],"awards":[{"id":"https://openalex.org/G2618591894","display_name":null,"funder_award_id":"CCF-1715153,CCF-1907727","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G4016053512","display_name":"SHF: Small: Testing and Profiling Asynchronous Software","funder_award_id":"1907727","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G7726608270","display_name":"SHF: Small: Automated Detection and Repair of Errors in Event-Driven Applications","funder_award_id":"1715153","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G8948499598","display_name":null,"funder_award_id":"CCF-1907727","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4313563662.pdf","grobid_xml":"https://content.openalex.org/works/W4313563662.grobid-xml"},"referenced_works_count":8,"referenced_works":["https://openalex.org/W1969883639","https://openalex.org/W1987647365","https://openalex.org/W2089745089","https://openalex.org/W2094269821","https://openalex.org/W2146717998","https://openalex.org/W2788565238","https://openalex.org/W2898614297","https://openalex.org/W3095615032"],"related_works":["https://openalex.org/W4244528768","https://openalex.org/W2348410391","https://openalex.org/W2594818804","https://openalex.org/W4386444043","https://openalex.org/W2912621863","https://openalex.org/W3122277321","https://openalex.org/W2105982807","https://openalex.org/W4229928981","https://openalex.org/W2888529970","https://openalex.org/W2349820628"],"abstract_inverted_index":{"Dynamic":[0],"taint":[1,51,120],"analysis":[2,52],"(DTA)":[3],"is":[4,112],"a":[5,48,63,134,141,149],"popular":[6],"approach":[7,90],"to":[8,72,83,91,93,100,115,156],"help":[9],"protect":[10],"JavaScript":[11,21,34,55],"applications":[12],"against":[13],"injection":[14,108],"vulnerabilities.":[15],"In":[16,98],"2016,":[17],"the":[18,39,70,78,88,102,127,157],"ECMAScript":[19],"7":[20],"language":[22,26,84],"standard":[23],"introduced":[24],"many":[25],"features":[27],"that":[28,56],"most":[29],"existing":[30],"DTA":[31,92,104],"tools":[32],"for":[33,42,53],"do":[35],"not":[36],"support,":[37],"e.g.,":[38],"async/await":[40],"keywords":[41],"asynchronous":[43,95],"programming.":[44],"We":[45,86,130],"present":[46],"Augur,":[47],"high-performance":[49],"dynamic":[50],"ES7":[54],"leverages":[57],"VM-supported":[58],"instrumentation.":[59],"Integrating":[60],"directly":[61],"with":[62,74],"public,":[64],"stable":[65],"instrumentation":[66],"API":[67],"gives":[68],"Augur":[69,111,132],"ability":[71],"run":[73],"high":[75],"performance":[76,151],"inside":[77],"VM":[79],"and":[80,139],"remain":[81],"resilient":[82],"revisions.":[85],"extend":[87],"abstract-machine":[89],"handle":[94],"function":[96],"calls.":[97],"addition":[99],"providing":[101],"classic":[103],"use":[105],"case":[106],"of":[107,119,126,136,145,153],"vulnerability":[109],"detection,":[110],"highly":[113],"configurable":[114],"support":[116],"any":[117],"type":[118],"analysis,":[121],"making":[122],"it":[123],"useful":[124],"outside":[125],"security":[128],"domain.":[129],"evaluated":[131],"on":[133],"set":[135],"20":[137],"benchmarks,":[138],"observed":[140],"median":[142,150],"runtime":[143],"overhead":[144],"only":[146],"1.77":[147],"\u00d7,":[148],"improvement":[152],"298%":[154],"compared":[155],"previous":[158],"state-of-the-art.":[159]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":2}],"updated_date":"2026-06-22T08:00:12.763002","created_date":"2025-10-10T00:00:00"}