Zobrazeno 1 - 10
of 191
pro vyhledávání: '"Ghafari, Mohammad"'
The correct adoption of cryptography APIs is challenging for mainstream developers, often resulting in widespread API misuse. Meanwhile, cryptography misuse detectors have demonstrated inconsistent performance and remain largely inaccessible to most
Externí odkaz:
http://arxiv.org/abs/2409.06561
Cryptography misuses are prevalent in the wild. Crypto APIs are hard to use for developers, and static analysis tools do not detect every misuse. We developed SafEncrypt, an API that streamlines encryption tasks for Java developers. It is built on to
Externí odkaz:
http://arxiv.org/abs/2409.05128
Autor:
Firouzi, Ehsan, Ghafari, Mohammad
Cryptography is known as a challenging topic for developers. We studied StackOverflow posts to identify the problems that developers encounter when using Java Cryptography Architecture (JCA) for symmetric encryption. We investigated security risks th
Externí odkaz:
http://arxiv.org/abs/2406.06164
Cryptography has a pivotal role in securing our digital world. Nonetheless, it is a challenging topic to learn. In this paper, we show that despite its complex nature, dyslexia$-$a learning disorder that influences reading and writing skills$-$does n
Externí odkaz:
http://arxiv.org/abs/2406.06153
REST APIs have a pivotal role in accessing protected resources. Despite the availability of security testing tools, mass assignment vulnerabilities are common in REST APIs, leading to unauthorized manipulation of sensitive data. We propose a lightwei
Externí odkaz:
http://arxiv.org/abs/2405.01111
Autor:
Kavian, Arya, Kallehbasti, Mohammad Mehdi Pourhashem, Kazemi, Sajjad, Firouzi, Ehsan, Ghafari, Mohammad
Many developers rely on Large Language Models (LLMs) to facilitate software development. Nevertheless, these models have exhibited limited capabilities in the security domain. We introduce LLMSecGuard, a framework to offer enhanced code security thro
Externí odkaz:
http://arxiv.org/abs/2405.01103
We inspected 45 actively deployed Operational Technology (OT) product families from ten major vendors and found that every system suffers from at least one trivial vulnerability. We reported a total of 53 weaknesses, stemming from insecure by design
Externí odkaz:
http://arxiv.org/abs/2303.12340
WebAssembly has attracted great attention as a portable compilation target for programming languages. To facilitate in-depth studies about this technology, we have deployed Wasmizer, a tool that regularly mines GitHub projects and makes an up-to-date
Externí odkaz:
http://arxiv.org/abs/2303.09623
Static program analysis development is a non-trivial and time-consuming task. We present a framework through which developers can define static program analyses in natural language. We show the application of this framework to identify cryptography m
Externí odkaz:
http://arxiv.org/abs/2301.04862
Autor:
Šepelák, Vladimir, Myndyk, Maxym, Fabián, Martin, Da Silva, Klebson L., Feldhoff, Armin, Menzel, Dirk, Ghafari, Mohammad, Hahn, Horst, Heitjans, Paul, Becker, Klaus D.
Publikováno v:
Chemical communications 2012;48:11121-11123, ISSN: 1359-7345
Nanostructured fayalite (α-Fe2SiO4) with a large volume fraction of interfaces is synthesized for the first time via single-step mechanosynthesis, starting from a 2α-Fe2O3 + 2Fe + 3SiO2 mixture. The nonequilibrium state of the as-prepared silicate
Externí odkaz:
https://tud.qucosa.de/id/qucosa%3A27786
https://tud.qucosa.de/api/qucosa%3A27786/attachment/ATT-0/
https://tud.qucosa.de/api/qucosa%3A27786/attachment/ATT-0/