All

What are you looking for?

All
Projects
Results
Organizations

Quick search

  • Projects supported by TA ČR
  • Excellent projects
  • Projects with the highest public support
  • Current projects

Smart search

  • That is how I find a specific +word
  • That is how I leave the -word out of the results
  • “That is how I can find the whole phrase”
EN
ČeštinaEnglish

WeVerca: Web Applications Verification for PHP

The result's identifiers

  • Result code in IS VaVaI

    <a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216208%3A11320%2F14%3A10290946" target="_blank" >RIV/00216208:11320/14:10290946 - isvavai.cz</a>

  • Result on the web

    <a href="http://link.springer.com/content/pdf/10.1007%2F978-3-319-10431-7_24.pdf" target="_blank" >http://link.springer.com/content/pdf/10.1007%2F978-3-319-10431-7_24.pdf</a>

  • DOI - Digital Object Identifier

    <a href="http://dx.doi.org/10.1007/978-3-319-10431-7_24" target="_blank" >10.1007/978-3-319-10431-7_24</a>

Alternative languages

  • Result language

    angličtina

  • Original language name

    WeVerca: Web Applications Verification for PHP

  • Original language description

    Static analysis of web applications developed in dynamic languages is a challenging yet very important task. In this paper, we present WeVerca, a framework that allows one to define static analyses of PHP applications. It supports dynamic type system, dynamic method calls, dynamic data structures, etc. These common features of dynamic languages cause implementation of static analyses to be either imprecise or overly complex. Our framework addresses this problem by defining end-user static analyses independently of value and heap analyses necessary just to resolve these features. As our results show, taint analysis defined using the framework found more real problems and reduced the number of false positives comparing to existing state-of-the-art analysis tools for PHP.

  • Czech name

  • Czech description

Classification

  • Type

    D - Article in proceedings

  • CEP classification

    IN - Informatics

  • OECD FORD branch

Result continuities

  • Project

    <a href="/en/project/GA14-11384S" target="_blank" >GA14-11384S: Automatic Formal Analysis and Verification of Programs with Complex Unbounded Data and Control Structures</a><br>

  • Continuities

    S - Specificky vyzkum na vysokych skolach

Others

  • Publication year

    2014

  • Confidentiality

    S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Data specific for result type

  • Article name in the collection

    Software Engineering and Formal Methods

  • ISBN

    978-3-319-10430-0

  • ISSN

    0302-9743

  • e-ISSN

  • Number of pages

    6

  • Pages from-to

    296-301

  • Publisher name

    Springer International Publishing

  • Place of publication

    Grenoble, France

  • Event location

    Grenoble

  • Event date

    Sep 1, 2014

  • Type of event by nationality

    WRD - Celosvětová akce

  • UT code for WoS article

Similar results(10)

Framework for Static Analysis of PHP ApplicationsFramework for Static Analysis of PHP Applications (Artifact)Phalanger Improvements