Checking enforcement of integrity constraints in database applications based on code patterns

Compilers: principles, techniques, and tools

Compilers: principles, techniques, and tools

Efficient construction of program dependence graphs

ISSTA '93 Proceedings of the 1993 ACM SIGSOFT international symposium on Software testing and analysis

Database System Concepts

Database System Concepts

Modern Information Retrieval

Modern Information Retrieval

Improving Integrity Constraint Enforcement by Extended Rules and Dependency Graphs

DEXA '01 Proceedings of the 12th International Conference on Database and Expert Systems Applications

A Retrospective on Industrial Database Reverse Engineering Projects-Part 1

WCRE '01 Proceedings of the Eighth Working Conference on Reverse Engineering (WCRE'01)

Verifying Web Applications Using Bounded Model Checking

DSN '04 Proceedings of the 2004 International Conference on Dependable Systems and Networks

Finding bugs is easy

OOPSLA '04 Companion to the 19th annual ACM SIGPLAN conference on Object-oriented programming systems, languages, and applications

Static approximation of dynamically generated Web pages

WWW '05 Proceedings of the 14th international conference on World Wide Web

DynaMine: finding common error patterns by mining software revision histories

Proceedings of the 10th European software engineering conference held jointly with 13th ACM SIGSOFT international symposium on Foundations of software engineering

PR-Miner: automatically extracting implicit programming rules and detecting violations in large software code

Proceedings of the 10th European software engineering conference held jointly with 13th ACM SIGSOFT international symposium on Foundations of software engineering

Pixy: A Static Analysis Tool for Detecting Web Application Vulnerabilities (Short Paper)

SP '06 Proceedings of the 2006 IEEE Symposium on Security and Privacy

Precise alias analysis for static detection of web application vulnerabilities

Proceedings of the 2006 workshop on Programming languages and analysis for security

Wrapper-based evolution of legacy information systems

ACM Transactions on Software Engineering and Methodology (TOSEM)

Static detection of security vulnerabilities in scripting languages

USENIX-SS'06 Proceedings of the 15th conference on USENIX Security Symposium - Volume 15

Detecting large number of infeasible paths through recognizing their patterns

Proceedings of the the 6th joint meeting of the European software engineering conference and the ACM SIGSOFT symposium on The foundations of software engineering

A Complexity Measure

IEEE Transactions on Software Engineering

Testing input validation in Web applications through automated model recovery

Journal of Systems and Software

Automatic inference of stationary fields: a generalization of java's final fields

Proceedings of the 35th annual ACM SIGPLAN-SIGACT symposium on Principles of programming languages

Conditional functional dependencies for capturing data inconsistencies

ACM Transactions on Database Systems (TODS)

Static detection of cross-site scripting vulnerabilities

Proceedings of the 30th international conference on Software engineering

Impact analysis of database schema changes

Proceedings of the 30th international conference on Software engineering

Dependencies revisited for improving data quality

Proceedings of the twenty-seventh ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems

A Copper Bullet for Software Quality Improvement

Computer

Covering code behavior on input validation in functional testing

Information and Software Technology

A Static Analysis Framework for Database Applications

ICDE '09 Proceedings of the 2009 IEEE International Conference on Data Engineering

Discovering matching dependencies

Proceedings of the 18th ACM conference on Information and knowledge management

Precise analysis of string expressions

SAS'03 Proceedings of the 10th international conference on Static analysis