Not registered as user yet
Name:Bernardo Ferreira
Country:Portugal
Affiliation:LASIGE, Faculdade de Ciências, Universidade de Lisboa, Portugal
Contributions
EASE 2023-profile
View general profile
View general profile
Not registered as user yet
Contributions
Short Papers and Posters
Wed 14 Jun 2023 10:00 - 10:30 at Aurora Hall - PosterWe propose a solution combining source code static analysis with searchable symmetric encryption to detect input validation vulnerabilities of web applications in encrypted PHP code, allowing developers to protect their codebase from malicious third parties while simultaneously discovering vulnerabilities in it. Results show that our solution is capable of identifying vulnerabilities with similar precision when compared with non-confidential tools and exhibits a moderate overhead increase of around 16,55%.