Project Areas
T – Transfer

T3 – Assuring Compliance through Static Application Security Testing

The transfer project T3 builds on the results of project E1 (CogniCrypt) to develop an open, multi-language toolchain for the static analysis of security-critical APIs in Java, .NET, and JavaScript. At the core of the project is the generalization of the CrySL domain-specific language (DSL) into a universal specification language from which precise and performant analyzers can be automatically generated. In collaboration with SonarSource, we address four key challenges:multi-language support, analysis precision and performance, comprehensible error messages, and ease of specification. The result will be a long-term maintainable, open-source solution that integrates seamlessly into CI pipelines.

Principal Investigators

  Name Working area(s) Contact
Prof. Eric Bodden
Secure Software Engineering
E1, T3
+49 5251 60-6563
F1. 125

Researchers

  Name Contact

Publications

Loading...
Loading data from TUbiblio…

Error on loading data

An error has occured when loading publications data from TUbiblio. Please try again later.

  • {{ year }}

    • ({{ publication.date.toString().substring(0,4) }}):
      {{ publication.title }}.
      In: {{ publication.series }}, {{ publication.volume }}, In: {{ publication.book_title }}, In: {{ publication.publication }}, {{ publication.journal_volume}} ({{ publication.number }}), ppp. {{ publication.pagerange }}, {{ publication.place_of_pub }}, {{ publication.publisher }}, {{ publication.institution }}, {{ publication.event_location }}, {{ publication.event_dates }}, ISSN {{ publication.issn }}, e-ISSN {{ publication.eissn }}, ISBN {{ publication.isbn }}, {{ labels[publication.type]?labels[publication.type]:publication.type }}
    • […]

Number of items in this list: {{ publicationsList.length }}
Only the {{publicationsList.length}} latest publications are displayed here.

View complete list at TUbiblio View this list at TUbiblio