All Stories

  1. Multidimensional Research Software Categorization

    Article • Computing in Science & Engineering, April 2025, Institute of Electrical & Electronics Engineers (IEEE)

    Ben Hermann

  2. Total Recall? How Good Are Static Call Graphs Really?

    Article • September 2024, ACM (Association for Computing Machinery)

    Ben Hermann

  3. Exploring Loose Coupling of Slicing with Dynamic Symbolic Execution on the JVM

    Article • September 2024, Springer Science + Business Media

    Ben Hermann

  4. Persisting and Reusing Results of Static Program Analyses on a Large Scale

    Article • September 2023, Institute of Electrical & Electronics Engineers (IEEE)

    Ben Hermann

  5. UPCY: Safely Updating Outdated Dependencies

    Article • May 2023, Institute of Electrical & Electronics Engineers (IEEE)

    Eric Bodden, Ben Hermann

  6. DGMF: Fast Generation of Comparable, Updatable Dependency Graphs for Software Repositories

    Article • May 2023, Institute of Electrical & Electronics Engineers (IEEE)

    Ben Hermann

  7. (Re)Use of Research Results (Is Rampant)

    Article • Communications of the ACM, January 2023, ACM (Association for Computing Machinery)

    Ben Hermann

  8. A retrospective study of one decade of artifact evaluations

    Article • November 2022, ACM (Association for Computing Machinery)

    Ben Hermann

  9. What Has Artifact Evaluation Ever Done for Us?

    Article • IEEE Security & Privacy, September 2022, Institute of Electrical & Electronics Engineers (IEEE)

    Ben Hermann

  10. Analyzing the Direct and Transitive Impact of Vulnerabilities onto Different Artifact Repositories

    Article • Digital Threats Research and Practice, February 2022, ACM (Association for Computing Machinery)

    Ben Hermann

  11. TaintBench: Automatic real-world malware benchmarking of Android taint analyses

    Article • Empirical Software Engineering, October 2021, Springer Science + Business Media

    Ben Hermann

  12. ModGuard : Identifying Integrity & Confidentiality Violations in Java Modules

    Article • IEEE Transactions on Software Engineering, August 2021, Institute of Electrical & Electronics Engineers (IEEE)

    Ben Hermann

  13. Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite

    Article • IEEE Transactions on Software Engineering, January 2021, Institute of Electrical & Electronics Engineers (IEEE)

    Ben Hermann

  14. Community expectations for research artifacts and evaluation processes

    Article • November 2020, ACM (Association for Computing Machinery)

    Ben Hermann

  15. TACAI: an intermediate representation based on abstract interpretation

    Article • June 2020, ACM (Association for Computing Machinery)

    Ben Hermann

  16. PhASAR: An Inter-procedural Static Analysis Framework for C/C++

    Article • January 2019, Springer Science + Business Media

    Ben Hermann

  17. CodeMatch: obfuscation won't conceal your repackaged app

    Article • August 2017, ACM (Association for Computing Machinery)

    Ben Hermann

  18. Hermes: assessment and creation of effective test corpora

    Article • June 2017, ACM (Association for Computing Machinery)

    Ben Hermann

  19. SootKeeper: runtime reusability for modular static analysis

    Article • June 2017, ACM (Association for Computing Machinery)

    Ben Hermann

  20. Hardening Java’s Access Control by Abolishing Implicit Privilege Elevation

    Article • May 2017, Institute of Electrical & Electronics Engineers (IEEE)

    Ben Hermann

  21. Call graph construction for Java libraries

    Article • November 2016, ACM (Association for Computing Machinery)

    Ben Hermann

  22. A vulnerability's lifetime

    Article • October 2015, ACM (Association for Computing Machinery)

    Ben Hermann

  23. Getting to know you: towards a capability model for Java

    Article • August 2015, ACM (Association for Computing Machinery)

    Ben Hermann

  24. Hidden truths in dead software paths

    Article • August 2015, ACM (Association for Computing Machinery)

    Ben Hermann

  25. Design your analysis: a case study on implementation reusability of data-flow functions

    Article • June 2015, ACM (Association for Computing Machinery)

    Ben Hermann

  26. FlowTwist: efficient context-sensitive inside-out taint analysis for large codebases

    Article • January 2014, ACM (Association for Computing Machinery)

    Ben Hermann

  27. A software product line for static analyses

    Article • January 2014, ACM (Association for Computing Machinery)

    Ben Hermann