JOURNAL BROWSE
Search
Advanced SearchSearch Tips
Tunable Static Analysis Framework for JavaScript Applications
facebook(new window)  Pirnt(new window) E-mail(new window) Excel Download
  • Journal title : Journal of KIISE
  • Volume 42, Issue 11,  2015, pp.1404-1409
  • Publisher : Korean Institute of Information Scientists and Engineers
  • DOI : 10.5626/JOK.2015.42.11.1404
 Title & Authors
Tunable Static Analysis Framework for JavaScript Applications
Ko, Yoonseok; Ryu, Sukyoung;
 
 Abstract
In this paper, we present a novel approach to analyzing large-scale JavaScript applications statically by tuning the analysis scalability, possibly sacrificing soundness. For a given sound static baseline analysis of JavaScript programs, our framework allows users to define a sound approximation of selected executions that they wish to analyze, and it derives a tuned static analysis that can analyze the selected executions practically. The selected executions serve as parameters of the framework by taking a trade-off between the scalability and the soundness of the derived analyses. We formally describe our framework in the abstract interpretation setting and present two instances of the framework.
 Keywords
JavaScript;static analysis;precision;scalability;
 Language
Korean
 Cited by
 References
1.
E. Andreasen and A. Moller, "Determinacy in static analysis for jQuery," Proc. of the ACM International Conference on Object Oriented Programming Systems Languages and Applications, 2014.

2.
C. Park and S. Ryu, "Scalable and precise static analysis of JavaScript applications via loop-sensitivity," Proc. of the European Conference on Object-Oriented Programming, 2015.

3.
M. Schafer, M. Sridharan, J. Dolby, and F. Tip, "Dynamic determinacy analysis," Proc. of the ACM SIGPLAN Conference on Programming Language Design and Implementation, 2013.

4.
M. Sridharan, J. Dolby, S. Chandra, M. Schafer, and F. Tip, "Correlation tracking for points-to analysis of JavaScript," Proc. of the European Conference on Object-Oriented Programming, 2012.

5.
W3Techs. [Online]. Available: http://w3techs.com

6.
JQuery. [Online]. Available: http://jquery.com

7.
A. Feldthaus, M. Schafer, M. Sridharan, J. Dolby, and F. Tip, "Efficient construction of approximate call graphs for JavaScript IDE services," Proc. of the International Conference on Software Engineering, 2013.

8.
S. Wei and B. G. Ryder, "Practical blended taint analysis for JavaScript," Proc. of the International Symposium on Software Testing and Analysis, 2013.

9.
P. Cousot and R. Cousot, "Abstract interpretation: A unified lattice model for static analysis of programs by construction or approximation of fixpoints," Proc. of the 4th ACM SIGACT-SIGPLAN Symposium on Principles of Programming Languages, 1977.

10.
P. Cousot and R. Cousot, "Systematic design of program analysis frameworks," Proc. of the 6th ACM SIGACT-SIGPLAN Symposium on Principles of Programming Languages, 1979.

11.
SAFE. [Online]. Available: http://safe.kaist.ac.kr

12.
TAJS. [Online]. Available: https://github.com/csau-dk/TAJS

13.
WALA. [Online]. Available: http://wala.sourceforge.net

14.
JSAI. [Online]. Available: http://www.cs.ucsb.edu/-benh/rsearch/downloads/jsai.zip