2014 Software Evolution Week --- IEEE Conference on Software Maintenance, Reengineering, and Reverse Engineering (CSMR-WCRE), February 3-6, 2014, Antwerp, Belgium

Desktop Layout

Tool Demonstrations 2
Tool Demonstrations
Willem Elsschotzaal, Chairs: Thomas Fritz and Jurgen Vinju
jModex: Model Extraction for Verifying Security Properties of Web Applications
Petru Florin Mihancea and Marius Minea
(Politehnica University of Timisoara, Romania; Institute e-Austria Timisoara, Romania)
Abstract: Detecting security vulnerabilities in web applications is an important task before taking them on-line. We present jModex, a tool that analyzes the code of web applications to extract behavioral models. The security properties of these models can then be verified with a model checker. An initial evaluation, in which a confirmed security flaw is identified using a model extracted by jModex, shows the tool potential.


Time stamp: 2019-09-16T08:42:01+02:00