Taming the dynamic behavior of JavaScript
暂无分享,去创建一个
JavaScript is widely used in Web applications because of its flexibility and dynamic characteristics. However, the latter (e.g., runtime code generation and dynamic object behavior) pose challenges for program understanding, security, etc. We have designed the JavaScript Blended Analysis Framework, a program analysis framework that combines dynamic and static analyses. JSBAF expands the capability of static analysis for the dynamically generated code and variadic functions. We also present a novel context-sensitive points-to analysis that more precisely models JavaScript objects. Empirical results on popular JavaScript websites show that our analyses are substantially more accurate than existing approaches.
[1] Barbara G. Ryder,et al. Practical blended taint analysis for JavaScript , 2013, ISSTA.
[2] Barbara G. Ryder,et al. Parameterized object sensitivity for points-to analysis for Java , 2005, TSEM.
[3] Barbara G. Ryder,et al. State-Sensitive Points-to Analysis for the Dynamic Behavior of JavaScript Objects , 2014, ECOOP.
[4] Frank Tip,et al. Correlation Tracking for Points-To Analysis of JavaScript , 2012, ECOOP.