Seaver Wesley Thorn

College of Engineering

Works (2)

Updated: April 5th, 2024 17:55

2023 article

Finding Fixed Vulnerabilities with Off-the-Shelf Static Analysis

2023 IEEE 8TH EUROPEAN SYMPOSIUM ON SECURITY AND PRIVACY, EUROS&P, pp. 489–505.

By: T. Dunlap n, S. Thorn n, W. Enck n & B. Reaves n

Event: IEEE Computer Society

TL;DR: Differential Alert Analysis is introduced to discover vulnerability fixes in software projects and provides a powerful, accurate primitive for software projects, code analysis tools, vulnerability databases, and researchers to characterize and enhance the security of software supply chains. (via Semantic Scholar)
Sources: Web Of Science, NC State University Libraries, ORCID
Added: September 11, 2023

2022 article

Analysis of Payment Service Provider SDKs in Android

PROCEEDINGS OF THE 38TH ANNUAL COMPUTER SECURITY APPLICATIONS CONFERENCE, ACSAC 2022, pp. 576–590.

By: S. Mahmud n, K. English n, S. Thorn n, W. Enck n, A. Oest* & M. Saad*

TL;DR: The proposed AARDroid is proposed for statically assessing payment SDKs against OWASP’s MASVS industry standard for mobile application security, and the value of applying security analysis at the SDK granularity is demonstrated to prevent the widespread deployment of insecure code. (via Semantic Scholar)
Sources: Web Of Science, NC State University Libraries, ORCID
Added: October 16, 2023

Citation Index includes data from a number of different sources. If you have questions about the sources of data in the Citation Index or need a set of data which is free to re-distribute, please contact us.

Certain data included herein are derived from the Web of Science© and InCites© (2024) of Clarivate Analytics. All rights reserved. You may not copy or re-distribute this material in whole or in part without the prior written consent of Clarivate Analytics.