Ehsan Firouzi, Ammar Mansuri, Mohammad Ghafari, Maziar Kaveh
{"title":"使用实用安全的 Java 加密应用程序接口,从苦苦挣扎到化繁为简","authors":"Ehsan Firouzi, Ammar Mansuri, Mohammad Ghafari, Maziar Kaveh","doi":"arxiv-2409.05128","DOIUrl":null,"url":null,"abstract":"Cryptography misuses are prevalent in the wild. Crypto APIs are hard to use\nfor developers, and static analysis tools do not detect every misuse. We\ndeveloped SafEncrypt, an API that streamlines encryption tasks for Java\ndevelopers. It is built on top of the native Java Cryptography Architecture,\nand it shields developers from crypto complexities and erroneous low-level\ndetails. Experiments showed that SafEncrypt is suitable for developers with\nvarying levels of experience.","PeriodicalId":501278,"journal":{"name":"arXiv - CS - Software Engineering","volume":"20 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-09-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"From Struggle to Simplicity with a Usable and Secure API for Encryption in Java\",\"authors\":\"Ehsan Firouzi, Ammar Mansuri, Mohammad Ghafari, Maziar Kaveh\",\"doi\":\"arxiv-2409.05128\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Cryptography misuses are prevalent in the wild. Crypto APIs are hard to use\\nfor developers, and static analysis tools do not detect every misuse. We\\ndeveloped SafEncrypt, an API that streamlines encryption tasks for Java\\ndevelopers. It is built on top of the native Java Cryptography Architecture,\\nand it shields developers from crypto complexities and erroneous low-level\\ndetails. Experiments showed that SafEncrypt is suitable for developers with\\nvarying levels of experience.\",\"PeriodicalId\":501278,\"journal\":{\"name\":\"arXiv - CS - Software Engineering\",\"volume\":\"20 1\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-09-08\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"arXiv - CS - Software Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/arxiv-2409.05128\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"arXiv - CS - Software Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/arxiv-2409.05128","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
From Struggle to Simplicity with a Usable and Secure API for Encryption in Java
Cryptography misuses are prevalent in the wild. Crypto APIs are hard to use
for developers, and static analysis tools do not detect every misuse. We
developed SafEncrypt, an API that streamlines encryption tasks for Java
developers. It is built on top of the native Java Cryptography Architecture,
and it shields developers from crypto complexities and erroneous low-level
details. Experiments showed that SafEncrypt is suitable for developers with
varying levels of experience.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
