The behavior of software that uses the Java Reflection API is fundamentally hard to predict
by analyzing code. Only recent static analysis approaches can resolve reflection under …

In parallel with the meteoric rise of mobile software, we are witnessing an alarming
escalation in the number and sophistication of the security threats targeted at mobile …

Mainstream points-to analysis techniques for object-oriented languages rely predominantly
on the allocation-site abstraction to model heap objects. We present MAHJONG, a novel …

Mobile applications (apps) have long invaded the realm of desktop apps, and hybrid apps
become a promising solution for supporting multiple mobile platforms. Providing both …

Java reflection has been widely used in a variety of applications and frameworks. It allows a
software system to inspect and change the behaviour of its classes, interfaces, methods, and …

Static analyses aspire to explore all possible executions in order to achieve soundness. Yet,
in practice, they fail to capture common dynamic behavior. Enhancing static analyses with …

In Alibaba, we have seen a growing demand for tracing data flow for scenarios such as data
leak detection, change governance, and data consistency checking. Static taint analysis is a …

We present jumping, a form of selective control-flow abstraction useful for improving the
scalability of goal-directed static analyses. Jumping is useful for analyzing programs with …

Mobile phones have become important daily companions for millions of people which help
to organize both their private and their professional lives. Having access to data such as the …

Symbolic execution is a powerful program analysis technique, but it is difficult to apply to
programs built using frameworks such as Swing and Android, because the framework code …