{"record_type":"pith_number_record","schema_url":"https://pith.science/schemas/pith-number/v1.json","pith_number":"pith:2018:HJKVHDMISLMPI2IY6EZFXM2SNG","short_pith_number":"pith:HJKVHDMI","schema_version":"1.0","canonical_sha256":"3a55538d8892d8f46918f1325bb35269a9fb6fce226b9573833dae97d5ffd422","source":{"kind":"arxiv","id":"1806.06881","version":5},"attestation_state":"computed","paper":{"title":"CryptoGuard: High Precision Detection of Cryptographic Vulnerabilities in Massive-sized Java Projects","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Danfeng (Daphne) Yao, Fahad Shaon, Ke Tian, Miles Frantz, Murat Kantarcioglu, Sazzadur Rahaman, Sharmin Afrose, Ya Xiao","submitted_at":"2018-06-18T18:32:35Z","abstract_excerpt":"Cryptographic API misuses, such as exposed secrets, predictable random numbers, and vulnerable certificate verification, seriously threaten software security. The vision of automatically screening cryptographic API calls in massive-sized (e.g., millions of LoC) Java programs is not new. However, hindered by the practical difficulty of reducing false positives without compromising analysis quality, this goal has not been accomplished. State-of-the-art crypto API screening solutions are not designed to operate on a large scale.\n  Our technical innovation is a set of fast and highly accurate slic"},"verification_status":{"content_addressed":true,"pith_receipt":true,"author_attested":false,"weak_author_claims":0,"strong_author_claims":0,"externally_anchored":false,"storage_verified":false,"citation_signatures":0,"replication_records":0,"graph_snapshot":true,"references_resolved":false,"formal_links_present":false},"canonical_record":{"source":{"id":"1806.06881","kind":"arxiv","version":5},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2018-06-18T18:32:35Z","cross_cats_sorted":[],"title_canon_sha256":"c15408f93edab3a2c01143c4cb02a9fb4bbf7a1b59567ad4a1d6f6b508dc0528","abstract_canon_sha256":"bfe12bd63bc2436c809007c3491f3b0829ac049728d58b44751e6451c7820042"},"schema_version":"1.0"},"receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-17T23:50:07.212544Z","signature_b64":"rpq/phRmgLp31MHIRWWg1FPXzTcJxakIzpcH0fB5nJLp8wNlAn+x57aKcSEHVCdvCJ89knw37W9710/9cMx0Aw==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"3a55538d8892d8f46918f1325bb35269a9fb6fce226b9573833dae97d5ffd422","last_reissued_at":"2026-05-17T23:50:07.211905Z","signature_status":"signed_v1","first_computed_at":"2026-05-17T23:50:07.211905Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"graph_snapshot":{"paper":{"title":"CryptoGuard: High Precision Detection of Cryptographic Vulnerabilities in Massive-sized Java Projects","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Danfeng (Daphne) Yao, Fahad Shaon, Ke Tian, Miles Frantz, Murat Kantarcioglu, Sazzadur Rahaman, Sharmin Afrose, Ya Xiao","submitted_at":"2018-06-18T18:32:35Z","abstract_excerpt":"Cryptographic API misuses, such as exposed secrets, predictable random numbers, and vulnerable certificate verification, seriously threaten software security. The vision of automatically screening cryptographic API calls in massive-sized (e.g., millions of LoC) Java programs is not new. However, hindered by the practical difficulty of reducing false positives without compromising analysis quality, this goal has not been accomplished. State-of-the-art crypto API screening solutions are not designed to operate on a large scale.\n  Our technical innovation is a set of fast and highly accurate slic"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1806.06881","kind":"arxiv","version":5},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"aliases":[{"alias_kind":"arxiv","alias_value":"1806.06881","created_at":"2026-05-17T23:50:07.211989+00:00"},{"alias_kind":"arxiv_version","alias_value":"1806.06881v5","created_at":"2026-05-17T23:50:07.211989+00:00"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1806.06881","created_at":"2026-05-17T23:50:07.211989+00:00"},{"alias_kind":"pith_short_12","alias_value":"HJKVHDMISLMP","created_at":"2026-05-18T12:32:28.185984+00:00"},{"alias_kind":"pith_short_16","alias_value":"HJKVHDMISLMPI2IY","created_at":"2026-05-18T12:32:28.185984+00:00"},{"alias_kind":"pith_short_8","alias_value":"HJKVHDMI","created_at":"2026-05-18T12:32:28.185984+00:00"}],"events":[],"event_summary":{},"paper_claims":[],"inbound_citations":{"count":1,"internal_anchor_count":1,"sample":[{"citing_arxiv_id":"2604.00560","citing_title":"Quantum-Safe Code Auditing: LLM-Assisted Static Analysis and Quantum-Aware Risk Scoring for Post-Quantum Cryptography Migration","ref_index":12,"is_internal_anchor":true}]},"formal_canon":{"evidence_count":0,"sample":[],"anchors":[]},"links":{"html":"https://pith.science/pith/HJKVHDMISLMPI2IY6EZFXM2SNG","json":"https://pith.science/pith/HJKVHDMISLMPI2IY6EZFXM2SNG.json","graph_json":"https://pith.science/api/pith-number/HJKVHDMISLMPI2IY6EZFXM2SNG/graph.json","events_json":"https://pith.science/api/pith-number/HJKVHDMISLMPI2IY6EZFXM2SNG/events.json","paper":"https://pith.science/paper/HJKVHDMI"},"agent_actions":{"view_html":"https://pith.science/pith/HJKVHDMISLMPI2IY6EZFXM2SNG","download_json":"https://pith.science/pith/HJKVHDMISLMPI2IY6EZFXM2SNG.json","view_paper":"https://pith.science/paper/HJKVHDMI","resolve_alias":"https://pith.science/api/pith-number/resolve?arxiv=1806.06881&json=true","fetch_graph":"https://pith.science/api/pith-number/HJKVHDMISLMPI2IY6EZFXM2SNG/graph.json","fetch_events":"https://pith.science/api/pith-number/HJKVHDMISLMPI2IY6EZFXM2SNG/events.json","actions":{"anchor_timestamp":"https://pith.science/pith/HJKVHDMISLMPI2IY6EZFXM2SNG/action/timestamp_anchor","attest_storage":"https://pith.science/pith/HJKVHDMISLMPI2IY6EZFXM2SNG/action/storage_attestation","attest_author":"https://pith.science/pith/HJKVHDMISLMPI2IY6EZFXM2SNG/action/author_attestation","sign_citation":"https://pith.science/pith/HJKVHDMISLMPI2IY6EZFXM2SNG/action/citation_signature","submit_replication":"https://pith.science/pith/HJKVHDMISLMPI2IY6EZFXM2SNG/action/replication_record"}},"created_at":"2026-05-17T23:50:07.211989+00:00","updated_at":"2026-05-17T23:50:07.211989+00:00"}