{"id":"https://openalex.org/W3186215104","doi":"https://doi.org/10.4230/lipics.ecoop.2021.19","title":"Dealing with Variability in API Misuse Specification","display_name":"Dealing with Variability in API Misuse Specification","publication_year":2021,"publication_date":"2021-01-01","ids":{"openalex":"https://openalex.org/W3186215104","doi":"https://doi.org/10.4230/lipics.ecoop.2021.19","mag":"3186215104"},"language":"en","primary_location":{"id":"pmh:oai:drops-oai.dagstuhl.de:14062","is_oa":true,"landing_page_url":"https://drops.dagstuhl.de/entities/document/10.4230/LIPIcs.ECOOP.2021.19","pdf_url":null,"source":{"id":"https://openalex.org/S4377196569","display_name":"DROPS (Schloss Dagstuhl \u2013 Leibniz Center for Informatics)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I2799853480","host_organization_name":"Schloss Dagstuhl \u2013 Leibniz Center for Informatics","host_organization_lineage":["https://openalex.org/I2799853480"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"","raw_type":"InProceedings"},"type":"article","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://drops.dagstuhl.de/entities/document/10.4230/LIPIcs.ECOOP.2021.19","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5021715300","display_name":"Rodrigo Bonif\u00e1cio","orcid":"https://orcid.org/0000-0002-2380-2829"},"institutions":[{"id":"https://openalex.org/I150729083","display_name":"Universidade de Bras\u00edlia","ror":"https://ror.org/02xfp8v59","country_code":"BR","type":"education","lineage":["https://openalex.org/I150729083"]}],"countries":["BR"],"is_corresponding":true,"raw_author_name":"Bonif\u00e1cio, Rodrigo","raw_affiliation_strings":["Computer Science Department, University of Bras\u00edlia, Brazil","Universidade de Bras\u00edlia, Bras\u00edlia, Brazil"],"affiliations":[{"raw_affiliation_string":"Computer Science Department, University of Bras\u00edlia, Brazil","institution_ids":["https://openalex.org/I150729083"]},{"raw_affiliation_string":"Universidade de Bras\u00edlia, Bras\u00edlia, Brazil","institution_ids":["https://openalex.org/I150729083"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5090096940","display_name":"Krishna Narasimhan","orcid":"https://orcid.org/0000-0001-8004-3470"},"institutions":[{"id":"https://openalex.org/I31512782","display_name":"Technical University of Darmstadt","ror":"https://ror.org/05n911h24","country_code":"DE","type":"education","lineage":["https://openalex.org/I31512782"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Kr\u00fcger, Stefan","raw_affiliation_strings":["Independent Researcher, Munich, Germany","Technical University of Darmstadt, Darmstadt, Germany"],"affiliations":[{"raw_affiliation_string":"Independent Researcher, Munich, Germany","institution_ids":[]},{"raw_affiliation_string":"Technical University of Darmstadt, Darmstadt, Germany","institution_ids":["https://openalex.org/I31512782"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5076678278","display_name":"Eric Bodden","orcid":"https://orcid.org/0000-0003-3470-3647"},"institutions":[{"id":"https://openalex.org/I31512782","display_name":"Technical University of Darmstadt","ror":"https://ror.org/05n911h24","country_code":"DE","type":"education","lineage":["https://openalex.org/I31512782"]},{"id":"https://openalex.org/I206945453","display_name":"Paderborn University","ror":"https://ror.org/058kzsd48","country_code":"DE","type":"education","lineage":["https://openalex.org/I206945453"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Narasimhan, Krishna","raw_affiliation_strings":["Technical University of Darmstadt, Germany","Paderborn University, Paderborn, Germany"],"affiliations":[{"raw_affiliation_string":"Technical University of Darmstadt, Germany","institution_ids":["https://openalex.org/I31512782"]},{"raw_affiliation_string":"Paderborn University, Paderborn, Germany","institution_ids":["https://openalex.org/I206945453"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5078067853","display_name":"Mira Mezini","orcid":"https://orcid.org/0000-0001-6563-7537"},"institutions":[{"id":"https://openalex.org/I4210093498","display_name":"Fraunhofer Institute for Mechatronic Systems Design","ror":"https://ror.org/004nttc42","country_code":"DE","type":"facility","lineage":["https://openalex.org/I4210093498","https://openalex.org/I4923324"]},{"id":"https://openalex.org/I31512782","display_name":"Technical University of Darmstadt","ror":"https://ror.org/05n911h24","country_code":"DE","type":"education","lineage":["https://openalex.org/I31512782"]},{"id":"https://openalex.org/I206945453","display_name":"Paderborn University","ror":"https://ror.org/058kzsd48","country_code":"DE","type":"education","lineage":["https://openalex.org/I206945453"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Bodden, Eric","raw_affiliation_strings":["Paderborn University, Germany","Fraunhofer IEM, Paderborn, Germany","Technical University of Darmstadt, Darmstadt, Germany"],"affiliations":[{"raw_affiliation_string":"Paderborn University, Germany","institution_ids":["https://openalex.org/I206945453"]},{"raw_affiliation_string":"Fraunhofer IEM, Paderborn, Germany","institution_ids":["https://openalex.org/I4210093498"]},{"raw_affiliation_string":"Technical University of Darmstadt, Darmstadt, Germany","institution_ids":["https://openalex.org/I31512782"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5067921018","display_name":"Stefan Kr\u00fcger","orcid":"https://orcid.org/0000-0003-0895-8830"},"institutions":[{"id":"https://openalex.org/I31512782","display_name":"Technical University of Darmstadt","ror":"https://ror.org/05n911h24","country_code":"DE","type":"education","lineage":["https://openalex.org/I31512782"]},{"id":"https://openalex.org/I206945453","display_name":"Paderborn University","ror":"https://ror.org/058kzsd48","country_code":"DE","type":"education","lineage":["https://openalex.org/I206945453"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Mezini, Mira","raw_affiliation_strings":["Technical University of Darmstadt, Germany","Paderborn University, Paderborn, Germany"],"affiliations":[{"raw_affiliation_string":"Technical University of Darmstadt, Germany","institution_ids":["https://openalex.org/I31512782"]},{"raw_affiliation_string":"Paderborn University, Paderborn, Germany","institution_ids":["https://openalex.org/I206945453"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5021715300"],"corresponding_institution_ids":["https://openalex.org/I150729083"],"apc_list":null,"apc_paid":null,"fwci":0.2754,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.60979888,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":94},"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9897000193595886,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9897000193595886,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9800999760627747,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10679","display_name":"Service-Oriented Architecture and Web Services","score":0.9700000286102295,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6570591330528259},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.3822382986545563},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.3245127499103546}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6570591330528259},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.3822382986545563},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.3245127499103546}],"mesh":[],"locations_count":6,"locations":[{"id":"pmh:oai:drops-oai.dagstuhl.de:14062","is_oa":true,"landing_page_url":"https://drops.dagstuhl.de/entities/document/10.4230/LIPIcs.ECOOP.2021.19","pdf_url":null,"source":{"id":"https://openalex.org/S4377196569","display_name":"DROPS (Schloss Dagstuhl \u2013 Leibniz Center for Informatics)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I2799853480","host_organization_name":"Schloss Dagstuhl \u2013 Leibniz Center for Informatics","host_organization_lineage":["https://openalex.org/I2799853480"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"","raw_type":"InProceedings"},{"id":"pmh:oai:tubiblio.ulb.tu-darmstadt.de:128782","is_oa":false,"landing_page_url":null,"pdf_url":null,"source":{"id":"https://openalex.org/S4377196390","display_name":"TUbilio (Technical University of Darmstadt)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I31512782","host_organization_name":"Technische Universit\u00e4t Darmstadt","host_organization_lineage":["https://openalex.org/I31512782"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":"","raw_type":"Konferenzver\u00f6ffentlichung"},{"id":"pmh:oai:fraunhofer.de:N-641124","is_oa":false,"landing_page_url":"http://publica.fraunhofer.de/documents/N-641124.html","pdf_url":null,"source":{"id":"https://openalex.org/S4306400801","display_name":"Publikationsdatenbank der Fraunhofer-Gesellschaft (Fraunhofer-Gesellschaft)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4923324","host_organization_name":"Fraunhofer-Gesellschaft","host_organization_lineage":["https://openalex.org/I4923324"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Fraunhofer IEM","raw_type":"Conference Paper"},{"id":"pmh:oai:null:publica/412939","is_oa":false,"landing_page_url":"https://publica.fraunhofer.de/handle/publica/412939","pdf_url":null,"source":{"id":"https://openalex.org/S4306400318","display_name":"Fraunhofer-Publica (Fraunhofer-Gesellschaft)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4923324","host_organization_name":"Fraunhofer-Gesellschaft","host_organization_lineage":["https://openalex.org/I4923324"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"conference paper"},{"id":"mag:3186215104","is_oa":true,"landing_page_url":"https://arxiv.org/abs/2105.04950","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":"arXiv (Cornell University)","raw_type":null},{"id":"doi:10.4230/lipics.ecoop.2021.19","is_oa":true,"landing_page_url":"https://doi.org/10.4230/lipics.ecoop.2021.19","pdf_url":null,"source":{"id":"https://openalex.org/S7407052059","display_name":"Dagstuhl Research Online Publication Server","issn_l":null,"issn":[],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":""}],"best_oa_location":{"id":"pmh:oai:drops-oai.dagstuhl.de:14062","is_oa":true,"landing_page_url":"https://drops.dagstuhl.de/entities/document/10.4230/LIPIcs.ECOOP.2021.19","pdf_url":null,"source":{"id":"https://openalex.org/S4377196569","display_name":"DROPS (Schloss Dagstuhl \u2013 Leibniz Center for Informatics)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I2799853480","host_organization_name":"Schloss Dagstuhl \u2013 Leibniz Center for Informatics","host_organization_lineage":["https://openalex.org/I2799853480"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"","raw_type":"InProceedings"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W3160825067","https://openalex.org/W2839767346","https://openalex.org/W3175834762","https://openalex.org/W3169424470","https://openalex.org/W3089601380","https://openalex.org/W2914157947","https://openalex.org/W2809304708","https://openalex.org/W2614718149","https://openalex.org/W3139212877","https://openalex.org/W2083350976","https://openalex.org/W3128009513","https://openalex.org/W2796104318","https://openalex.org/W2039756785","https://openalex.org/W2982447849","https://openalex.org/W2559990171","https://openalex.org/W2617355407","https://openalex.org/W3092153088","https://openalex.org/W2888403005","https://openalex.org/W2896644753","https://openalex.org/W2287502887"],"abstract_inverted_index":{"APIs":[0,28],"are":[1],"the":[2,25,40,60,93,113,128,131,142,176,183,188,199,237,245],"primary":[3],"mechanism":[4],"for":[5,89,216,244],"developers":[6],"to":[7,10,29,51,72,81,194,198],"gain":[8],"access":[9],"externally":[11],"defined":[12],"services":[13],"and":[14,66,106,159,178,222,234],"tools.":[15],"However,":[16],"previous":[17],"research":[18],"has":[19],"revealed":[20],"API":[21,75,83,133,177],"misuses":[22,33],"that":[23,67,95,168,224],"violate":[24],"contract":[26],"of":[27,42,59,63,98,103,116,130,144,147,164,170,175,219,230,239,242,248],"be":[30],"prevalent.":[31],"Such":[32],"can":[34,226],"have":[35,48],"harmful":[36],"consequences,":[37],"especially":[38],"in":[39,112],"context":[41],"cryptographic":[43,74,153,249],"libraries.":[44],"Various":[45],"API-misuse":[46],"detectors":[47,65],"been":[49,87],"proposed":[50],"address":[52],"this":[53,138],"issue":[54],"-":[55],"including":[56],"CogniCrypt,":[57],"one":[58],"most":[61],"versatile":[62],"such":[64,125],"uses":[68],"a":[69,99,104,217,240],"language":[70,201],"(CrySL)":[71],"specify":[73],"usage":[76,115,214,247],"contracts.":[77],"Nonetheless,":[78],"existing":[79],"approaches":[80],"detect":[82],"misuse":[84],"had":[85],"not":[86],"designed":[88],"systematic":[90],"reuse,":[91],"ignoring":[92],"fact":[94],"different":[96,101,107],"versions":[97,102,174,221],"library,":[100],"platform,":[105],"recommendations/guidelines":[108],"might":[109],"introduce":[110],"variability":[111,126,148,171,231],"correct":[114,132,246],"an":[117,196],"API.":[118],"Yet,":[119],"little":[120],"is":[121],"known":[122],"about":[123],"how":[124],"impacts":[127],"specification":[129],"usage.":[134],"This":[135],"paper":[136],"investigates":[137],"question":[139],"by":[140,212],"analyzing":[141],"impact":[143,182],"various":[145],"sources":[146,169],"on":[149,206],"widely":[150],"used":[151],"Java":[152],"libraries":[154],"(including":[155],"JCA/JCE,":[156],"Bouncy":[157],"Castle,":[158],"Google":[160],"Tink).":[161],"The":[162],"results":[163],"our":[165,192],"investigation":[166,193],"show":[167],"like":[172],"new":[173],"security":[179],"standards":[180],"significantly":[181],"specifications.":[184],"We":[185,209],"then":[186],"use":[187],"insights":[189],"gained":[190],"from":[191],"motivate":[195],"extension":[197],"CrySL":[200],"(named":[202],"MetaCrySL),":[203],"which":[204],"builds":[205],"meta-programming":[207],"concepts.":[208],"evaluate":[210],"MetaCrySL":[211,225],"specifying":[213],"rules":[215],"family":[218,241],"Android":[220],"illustrate":[223],"model":[227],"all":[228],"forms":[229],"we":[232],"identified":[233],"drastically":[235],"reduce":[236],"size":[238],"specifications":[243],"APIs.":[250]},"counts_by_year":[{"year":2024,"cited_by_count":1}],"updated_date":"2026-02-26T08:16:20.718346","created_date":"2025-10-10T00:00:00"}