| The AVANTSSAR platform for the automated validation of trust and security of service-oriented architectures A Armando, W Arsac, T Avanesov, M Barletta, A Calvi, A Cappai, ... International Conference on Tools and Algorithms for the Construction and …, 2012 | 128 | 2012 |
| Impact assessment for vulnerabilities in open-source software libraries H Plate, SE Ponta, A Sabetta 2015 IEEE International Conference on Software Maintenance and Evolution …, 2015 | 71 | 2015 |
| Security validation of business processes via model-checking W Arsac, L Compagna, G Pellegrino, SE Ponta International Symposium on Engineering Secure Software and Systems, 29-42, 2011 | 62 | 2011 |
| Model checking of security-sensitive business processes A Armando, SE Ponta International Workshop on Formal Aspects in Security and Trust, 66-80, 2009 | 62 | 2009 |
| Vulnerable open source dependencies: Counting those that matter I Pashchenko, H Plate, SE Ponta, A Sabetta, F Massacci Proceedings of the 12th ACM/IEEE International Symposium on Empirical …, 2018 | 56 | 2018 |
| Beyond Metadata: Code-centric and Usage-based Analysis of Known Vulnerabilities in Open-source Software SE Ponta, H Plate, A Sabetta | 55 | 2018 |
| A manually-curated dataset of fixes to vulnerabilities of open-source software SE Ponta, H Plate, A Sabetta, M Bezzi, C Dangremont 2019 IEEE/ACM 16th International Conference on Mining Software Repositories …, 2019 | 49 | 2019 |
| Detection, assessment and mitigation of vulnerabilities in open source dependencies SE Ponta, H Plate, A Sabetta Empirical Software Engineering 25 (5), 3175-3215, 2020 | 30 | 2020 |
| Assessing vulnerability impact using call graphs H Plate, S Ponta, A Sabetta US Patent 9,792,200, 2017 | 20 | 2017 |
| Model checking authorization requirements in business processes A Armando, SE Ponta Computers & Security 40, 1-22, 2014 | 20 | 2014 |
| Vuln4real: A methodology for counting actually vulnerable dependencies I Pashchenko, H Plate, SE Ponta, A Sabetta, F Massacci IEEE Transactions on Software Engineering, 2020 | 17 | 2020 |
| Code-based vulnerability detection in node. js applications: How far are we? B Chinthanet, SE Ponta, H Plate, A Sabetta, RG Kula, T Ishio, ... Proceedings of the 35th IEEE/ACM International Conference on Automated …, 2020 | 16 | 2020 |
| Multi-context exploit test management A Sabetta, L Compagna, S Ponta, S Dashevskyi, D Dos Santos, ... US Patent 9,811,668, 2017 | 16 | 2017 |
| Cerberus: Automated synthesis of enforcement mechanisms for security-sensitive business processes L Compagna, DR Dos Santos, SE Ponta, S Ranise International Conference on Tools and Algorithms for the Construction and …, 2016 | 15 | 2016 |
| Prioritization of software patches H Plate, S Ponta, A Sabetta US Patent 9,959,111, 2018 | 14 | 2018 |
| Aegis: automatic enforcement of security policies in workflow-driven web applications L Compagna, DR dos Santos, SE Ponta, S Ranise Proceedings of the Seventh ACM on Conference on Data and Application …, 2017 | 14 | 2017 |
| An action-based approach to the formal specification and automatic analysis of business processes under authorization constraints A Armando, E Giunchiglia, M Maratea, SE Ponta Journal of Computer and System Sciences 78 (1), 119-141, 2012 | 13 | 2012 |
| Software patch evaluator H Plate, S Ponta, A Sabetta US Patent 9,880,832, 2018 | 12 | 2018 |
| Formal specification and automatic analysis of business processes under authorization constraints: an action-based approach A Armando, E Giunchiglia, SE Ponta International Conference on Trust, Privacy and Security in Digital Business …, 2009 | 12 | 2009 |
| Security validation tool for business processes W Arsac, L Compagna, SP Kaluvuri, SE Ponta Proceedings of the 16th ACM symposium on Access control models and …, 2011 | 11 | 2011 |
Henrik PlateSenior Researcher, SAPVerified email at sap.com
