Dipl.-Inform. Ben Hermann

Dipl.-Inform. Ben Hermann

I am a PhD candidate and researcher in the Software Technology Group at TU Darmstadt. You can find more information on my personal website. If you are interested in current information you can also consult my blog.

Research Interests

  • Vulnerability Detection using Static Analysis
  • Risk Assessment of Software Libraries
  • Security Guarantees in Type Systems
  • Language-based Security

Supervised Theses

Title Author Thesis type
Automated Analysis of Transitive Threat Propagation for Native Calls in the Java Runtime Environment Tim Kranz Bachelor thesis
Analysis of Safe Guard and Sanitizer Placements for Native Methods in the Java Class Library Henriette Röger Master thesis
Cross-language Static Analysis of Java and Native Code Dominik Helm & Florian Kübler Bachelor thesis
A Security Classification of the Java Class Library's Native Methods by a Static Analysis of Their Implementation Florian Wendel Master thesis
Modelling the Propagation of Threat from Native Methods in the Java Class Library Johann Wiedmeier Bachelor thesis

Publications

Group by: Date | Item type | No grouping
Jump to: 2015 | 2014 | 2013
Number of items: 7.

2015

Lerch, Johannes ; Hermann, Ben :
Design Your Analysis: A Case Study on Implementation Reusability of Data-flow Functions.
[Online-Edition: http://doi.acm.org/10.1145/2771284.2771289]
In: Proceedings of the 4th ACM SIGPLAN International Workshop on State Of the Art in Program Analysis, New York, NY, USA. In: SOAP 2015 . ACM , New York, NY, USA
[Conference or workshop item], (2015)

Eichberg, Michael ; Hermann, Ben ; Mezini, Mira ; Glanz, Leonid :
Hidden Truths in Dead Software Paths.
[Online-Edition: http://doi.acm.org/10.1145/2786805.2786865]
In: Proceedings of the 2015 10th Joint Meeting on Foundations of Software Engineering, New York, NY, USA. In: ESEC/FSE 2015 . ACM , New York, NY, USA
[Conference or workshop item], (2015)

Hermann, Ben ; Reif, Michael ; Eichberg, Michael ; Mezini, Mira :
Getting to Know You: Towards a Capability Model for Java.
[Online-Edition: http://doi.acm.org/10.1145/2786805.2786829]
In: Proceedings of the 2015 10th Joint Meeting on Foundations of Software Engineering, New York, NY, USA. In: ESEC/FSE 2015 . ACM , New York, NY, USA
[Conference or workshop item], (2015)

Glanz, Leonid ; Schmidt, Sebastian ; Wollny, Sebastian ; Hermann, Ben :
A Vulnerability's Lifetime: Enhancing Version Information in CVE Databases.
[Online-Edition: http://doi.acm.org/10.1145/2809563.2809612]
In: Proceedings of the 15th International Conference on Knowledge Technologies and Data-driven Business, New York, NY, USA. In: i-KNOW '15 . ACM , New York, NY, USA
[Conference or workshop item], (2015)

2014

Lerch, Johannes ; Hermann, Ben ; Bodden, Eric ; Mezini, Mira :
FlowTwist: Efficient Context-sensitive Inside-out Taint Analysis for Large Codebases.
[Online-Edition: http://doi.acm.org/10.1145/2635868.2635878]
In: Proceedings of the 22Nd ACM SIGSOFT International Symposium on Foundations of Software Engineering. In: FSE 2014 . ACM , New York, NY, USA
[Conference or workshop item], (2014)

Eichberg, Michael ; Hermann, Ben :
A Software Product Line for Static Analyses: The OPAL Framework.
[Online-Edition: http://doi.acm.org/10.1145/2614628.2614630]
In: Proceedings of the 3rd ACM SIGPLAN International Workshop on the State of the Art in Java Program Analysis, New York, NY, USA. In: SOAP '14 . ACM , New York, NY, USA
[Conference or workshop item], (2014)

2013

Bodden, Eric ; Hermann, Ben ; Lerch, Johannes ; Mezini, Mira :
Reducing human factors in software security architectures.
[Online-Edition: http://www.bodden.de/pubs/blh+13reducing.pdf]
In: Future Security Conference 2013.
[Conference or workshop item], (2013)

This list was generated on Sat Jun 25 21:28:30 2016 CEST.