Skip to content

kruegers/cryptoapi-bench

 
 

Repository files navigation

Build Cryptoapi-bench

  1. Run cd /path/to/cryptoapi-bench
  2. Run gradle clean build

A Jar will be created in cd /path/to/cryptoapi-bench/build/libs/ folder. Use different Cryptographic vulnerability detection tools to analyze the Jar.

The CryptoAPI-Bench_details.xlsx contains the summary of secure and nonsecure code and pointed out the vulnerability.

A new version of CryptoAPI-Bench containing 171 test cases can be found in https://github.com/CryptoAPI-Bench/CryptoAPI-Bench/tree/master/src/main/java/org/cryptoapi/bench.

Paper

If you use this code or these benchmarks in your research, please cite the following publication.

@inproceedings{afrose2019cryptoapi,
  title={CryptoAPI-Bench: A Comprehensive Benchmark on Java Cryptographic API Misuses},
  author={Afrose, Sharmin and Rahaman, Sazzadur and Yao, Danfeng},
  booktitle={2019 IEEE Cybersecurity Development (SecDev)},
  pages={49--61},
  year={2019},
  organization={IEEE}
}

@inproceedings{rahaman2019cryptoguard,
  title={Cryptoguard: High precision detection of cryptographic vulnerabilities in massive-sized java projects},
  author={Rahaman, Sazzadur and Xiao, Ya and Afrose, Sharmin and Shaon, Fahad and Tian, Ke and Frantz, Miles and Kantarcioglu, Murat and Yao, Danfeng},
  booktitle={Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security},
  pages={2455--2472},
  year={2019}
}

Contact

If you have any questions or suggestions, please email to sharminafrose@vt.edu

About

No description, website, or topics provided.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Java 100.0%