| The AVANTSSAR platform for the automated validation of trust and security of service-oriented architectures A Armando, W Arsac, T Avanesov, M Barletta, A Calvi, A Cappai, ... Tools and Algorithms for the Construction and Analysis of Systems: 18th …, 2012 | 132 | 2012 |
| Impact assessment for vulnerabilities in open-source software libraries H Plate, SE Ponta, A Sabetta 2015 IEEE International Conference on Software Maintenance and Evolution …, 2015 | 94 | 2015 |
| A manually-curated dataset of fixes to vulnerabilities of open-source software SE Ponta, H Plate, A Sabetta, M Bezzi, C Dangremont 2019 IEEE/ACM 16th International Conference on Mining Software Repositories …, 2019 | 85 | 2019 |
| Vulnerable open source dependencies: Counting those that matter I Pashchenko, H Plate, SE Ponta, A Sabetta, F Massacci Proceedings of the 12th ACM/IEEE International Symposium on Empirical …, 2018 | 79 | 2018 |
| Beyond Metadata: Code-centric and Usage-based Analysis of Known Vulnerabilities in Open-source Software SE Ponta, H Plate, A Sabetta | 73 | 2018 |
| Model checking of security-sensitive business processes A Armando, SE Ponta Formal Aspects in Security and Trust: 6th International Workshop, FAST 2009 …, 2010 | 65 | 2010 |
| Security validation of business processes via model-checking W Arsac, L Compagna, G Pellegrino, SE Ponta Engineering Secure Software and Systems: Third International Symposium …, 2011 | 62 | 2011 |
| Detection, assessment and mitigation of vulnerabilities in open source dependencies SE Ponta, H Plate, A Sabetta Empirical Software Engineering 25 (5), 3175-3215, 2020 | 51 | 2020 |
| Vuln4real: A methodology for counting actually vulnerable dependencies I Pashchenko, H Plate, SE Ponta, A Sabetta, F Massacci IEEE Transactions on Software Engineering 48 (5), 1592-1609, 2020 | 34 | 2020 |
| Assessing vulnerability impact using call graphs H Plate, S Ponta, A Sabetta US Patent 9,792,200, 2017 | 24 | 2017 |
| Model checking authorization requirements in business processes A Armando, SE Ponta Computers & Security 40, 1-22, 2014 | 24 | 2014 |
| Code-based vulnerability detection in node. js applications: How far are we? B Chinthanet, SE Ponta, H Plate, A Sabetta, RG Kula, T Ishio, ... Proceedings of the 35th IEEE/ACM International Conference on Automated …, 2020 | 23 | 2020 |
| Prioritization of software patches H Plate, S Ponta, A Sabetta US Patent 9,959,111, 2018 | 17 | 2018 |
| Multi-context exploit test management A Sabetta, L Compagna, S Ponta, S Dashevskyi, D Dos Santos, ... US Patent 9,811,668, 2017 | 17 | 2017 |
| Aegis: automatic enforcement of security policies in workflow-driven web applications L Compagna, DR dos Santos, SE Ponta, S Ranise Proceedings of the Seventh ACM on Conference on Data and Application …, 2017 | 15 | 2017 |
| Cerberus: Automated synthesis of enforcement mechanisms for security-sensitive business processes L Compagna, DR Dos Santos, SE Ponta, S Ranise Tools and Algorithms for the Construction and Analysis of Systems: 22nd …, 2016 | 15 | 2016 |
| An action-based approach to the formal specification and automatic analysis of business processes under authorization constraints A Armando, E Giunchiglia, M Maratea, SE Ponta Journal of Computer and System Sciences 78 (1), 119-141, 2012 | 13 | 2012 |
| Software patch evaluator H Plate, S Ponta, A Sabetta US Patent 9,880,832, 2018 | 12 | 2018 |
| Formal Specification and Automatic Analysis of Business Processes under Authorization Constraints: An Action-Based Approach. A Armando, E Giunchiglia, SE Ponta TrustBus 5695, 63-72, 2009 | 12 | 2009 |
| Secure and compliant execution of processes S Ponta, L Compagna, D Dos Santos, S Ranise US Patent App. 15/097,304, 2017 | 11 | 2017 |
Henrik PlateSecurity Researcher, Endor LabsVerified email at endor.ai
