Johannes Lerch, M.Sc.

Johannes Lerch, M.Sc.

My research is driven by the many exploits the Java world has been facing in recent years. Implementing a static analysis to detect vulnerabilities in the Java Class Library turned out to be more challenging than expected at first and requires to solve several research problems. While many challenges seem to be solved already in state-of-the-art approaches, they are in fact not. Existing analysis are usually applied to applications whereby the Java Class Library is excluded from the analysis scope. However, including the Java Class Library uncovers scalability issues for most approaches.

Teaching

Term Courses
Summer 2016
  • Co-Lecturer of 'Applied Static Analysis'
Winter 2014/15
  • Organizer of 'Bachelor-Praktikum'
  • Instructor for quality assurance in 'Software Engineering Project'
  • Advisor for the team RubberDuck in 'Software Engineering Project'
Summer 2014
  • Organizer of 'Bachelor-Praktikum'
  • Instructor for quality assurance in 'Software Engineering Project'
Winter 2013/14
  • Instructor for quality assurance in 'Software Engineering Project'
Summer 2013
  • Instructor for quality assurance in 'Software Engineering Project'
  • Advisor for the team CloudCamel during 'Software Engineering Project'
Winter 2012/13
  • Teaching Assistant of 'Grundlagen der Informatik 1'
  • Organizer of 'Bachelor-Praktikum'
  • Instructor for quality assurance in 'Software Engineering Project'
  • Advisor for the team CloudCamel during 'Software Engineering Project'
Summer 2012
  • Organizer of 'Bachelor-Praktikum'
  • Advisor for 'Plug-In Development in Eclipse', a hands-on training jointly offered by several members of the Software Technology Group
  • Instructor for quality assurance in 'Software Engineering Project'
  • Advisor for the team JetStream during 'Software Engineering Project'
Winter 2011/12
  • Teaching Assistant of 'Einführung in Software Engineering'
  • Organizer of 'Bachelor-Praktikum'
  • Advisor for 'Plug-In Development in Eclipse', a hands-on training jointly offered by several members of the Software Technology Group
  • Instructor for quality assurance in 'Software Engineering Project'
  • Advisor for the team JetStream during 'Software Engineering Project'
Summer 2011
  • Advisor for 'Plug-In Development in Eclipse', a hands-on training jointly offered by several members of the Software Technology Group.

Presentations

ASE 2015 [pptx][pdf]

SOAP 2015 [pptx] [pdf]

FSE 2014 [pptx] [pdf]

Publications

Group by: Date | Item type | No grouping
Jump to: 2017 | 2016 | 2015 | 2014 | 2013
Number of items: 9.

2017

Glanz, Leonid ; Amann, Sven ; Eichberg, Michael ; Reif, Michael ; Hermann, Ben ; Lerch, Johannes ; Mezini, Mira :
CodeMatch: Obfuscation Won’t Conceal Your Repackaged App.
[Online-Edition: http://dl.acm.org/citation.cfm?id=3106305]
In: Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering. Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering Paderborn, Germany
[Conference or workshop item], (2017)

2016

Lerch, Johannes :
On the Scalability of Static Program Analysis to Detect Vulnerabilities in the Java Platform.
[Online-Edition: http://tuprints.ulb.tu-darmstadt.de/5580]
Technische Universität Darmstadt , Darmstadt
[PhD thesis], (2016)

Reif, Michael ; Eichberg, Michael ; Hermann, Ben ; Lerch, Johannes ; Mezini, Mira :
Call graph construction for Java libraries.
In: Proceedings of the 2016 24th ACM SIGSOFT International Symposium on Foundations of Software Engineering.
[Conference or workshop item], (2016)

2015

Proksch, Sebastian ; Lerch, Johannes ; Mezini, Mira :
Intelligent Code Completion with Bayesian Networks.
[Online-Edition: http://doi.acm.org/10.1145/2744200]
In: ACM Transactions on Software Engineering and Methodology (TOSEM), 25 (1) 3:1-3:31.
[Article], (2015)

Lerch, Johannes ; Späth, Johannes ; Bodden, Eric ; Mezini, Mira :
Access-Path Abstraction: Scaling Field-Sensitive Data-Flow Analysis with Unbounded Access Paths.
In: Automated Software Engineering (ASE), 2015 30th IEEE/ACM International Conference on, Lincoln, Nebraska, USA.
[Conference or workshop item], (2015)

Lerch, Johannes ; Hermann, Ben :
Design Your Analysis: A Case Study on Implementation Reusability of Data-flow Functions.
[Online-Edition: http://doi.acm.org/10.1145/2771284.2771289]
In: Proceedings of the 4th ACM SIGPLAN International Workshop on State Of the Art in Program Analysis, New York, NY, USA. In: SOAP 2015 . ACM , New York, NY, USA
[Conference or workshop item], (2015)

2014

Lerch, Johannes ; Hermann, Ben ; Bodden, Eric ; Mezini, Mira :
FlowTwist: Efficient Context-sensitive Inside-out Taint Analysis for Large Codebases.
[Online-Edition: http://doi.acm.org/10.1145/2635868.2635878]
In: Proceedings of the 22Nd ACM SIGSOFT International Symposium on Foundations of Software Engineering. In: FSE 2014 . ACM , New York, NY, USA
[Conference or workshop item], (2014)

2013

Bodden, Eric ; Hermann, Ben ; Lerch, Johannes ; Mezini, Mira :
Reducing human factors in software security architectures.
[Online-Edition: http://www.bodden.de/pubs/blh+13reducing.pdf]
In: Future Security Conference 2013.
[Conference or workshop item], (2013)

Lerch, Johannes ; Mezini, Mira :
Finding Duplicates of Your Yet Unwritten Bug Report.
[Online-Edition: http://dx.doi.org/10.1109/CSMR.2013.17]
2013 17th European Conference on Software Maintenance and Reengineering
[Conference or workshop item], (2013)

This list was generated on Fri Sep 22 08:39:54 2017 CEST.