• repo
• code-analysis
• native.html

NativeMethodsRT

URL

• Data Link (DOI)
• Paper in ACM Digital Library

Change Log

Reference

Studies who have been using the data (in any form) are required to include the following reference:

@inproceedings{Hermann:2015:GKY:2786805.2786829,
 author = {Hermann, Ben and Reif, Michael and Eichberg, Michael and Mezini, Mira},
 title = {Getting to Know You: Towards a Capability Model for Java},
 booktitle = {Proceedings of the 2015 10th Joint Meeting on Foundations of Software Engineering},
 series = {ESEC/FSE 2015},
 year = {2015},
 isbn = {978-1-4503-3675-8},
 location = {Bergamo, Italy},
 pages = {758--769},
 numpages = {12},
 url = {http://doi.acm.org/10.1145/2786805.2786829},
 doi = {10.1145/2786805.2786829},
 acmid = {2786829},
 publisher = {ACM},
 address = {New York, NY, USA},
 keywords = {analysis, capability, library, reuse, security},
}

About the Data

Attribute Information

1) package 2) class 3) method name 4) capabilities

Paper Abstract

Developing software from reusable libraries lets developers face a security dilemma: Either be efficient and reuse libraries as they are or inspect them, know about their resource usage, but possibly miss deadlines as reviews are a time consuming process. In this paper, we propose a novel capability inference mechanism for libraries written in Java. It uses a coarse-grained capability model for system resources that can be presented to developers. We found that the capability inference agrees by 86.81% on expectations towards capabilities that can be derived from project documentation. Moreover, our approach can find capabilities that cannot be discovered using project documentation. It is thus a helpful tool for developers mitigating the aforementioned dilemma.