pith. sign in
Pith Number

pith:TNDNQ3HF

pith:2025:TNDNQ3HF2RCCSAXX6QOYLDPYW2
not attested not anchored not stored refs pending

Detecting Vulnerabilities in Encrypted Software Code while Ensuring Code Privacy

Bernardo Ferreira, David Dantas, Ib\'eria Medeiros, Jorge Martins, Rafael Ramires

Static analysis detects vulnerabilities in encrypted code by indexing its data and control flows without decryption.

arxiv:2501.09191 v2 · 2025-01-15 · cs.SE · cs.CR

Open paper page JSON Open Graph Bundle Merged state Verified badge What is a Pith Number?
Add to your LaTeX paper 
\usepackage{pith}
\pithnumber{TNDNQ3HF2RCCSAXX6QOYLDPYW2}

Prints a linked badge after your title and injects PDF metadata. Compiles on arXiv. Learn more · Embed verified badge

Record completeness

1 Bitcoin timestamp
2 Internet Archive
3 Author claim open · sign in to claim
4 Citations open
5 Replications open
Portable graph bundle live · download bundle · merged state
The bundle contains the canonical record plus signed events. A mirror can host it anywhere and recompute the same current state with the deterministic merge algorithm.

Claims

C1strongest claim

The approach combines Static Code Analysis and Searchable Symmetric Encryption to process source code and build an encrypted inverted index that represents its data and control flows, enabling vulnerability discovery in a confidential way with similar precision to standard tools.

C2weakest assumption

That an encrypted inverted index built from data and control flows is sufficient to support accurate static analysis tasks for vulnerability detection without introducing unacceptable false positives or negatives due to encryption.

C3one line summary

A system using searchable symmetric encryption on code flow indices to perform static vulnerability detection on encrypted PHP code, achieving similar precision to non-private tools with 42.7% average overhead.

Formal links

2 machine-checked theorem links

Receipt and verification
First computed 2026-05-26T01:02:25.813063Z
Builder pith-number-builder-2026-05-17-v1
Signature Pith Ed25519 (pith-v1-2026-05) · public key
Schema pith-number/v1.0

Canonical hash

9b46d86ce5d4442902f7f41d858df8b699dfd64682c229418e7646f4f96c3451

Aliases

arxiv: 2501.09191 · arxiv_version: 2501.09191v2 · doi: 10.48550/arxiv.2501.09191 · pith_short_12: TNDNQ3HF2RCC · pith_short_16: TNDNQ3HF2RCCSAXX · pith_short_8: TNDNQ3HF
Agent API
Resolver JSON Graph JSON Events JSON Schema Signing key
Verify this Pith Number yourself 
curl -sH 'Accept: application/ld+json' https://pith.science/pith/TNDNQ3HF2RCCSAXX6QOYLDPYW2 \
  | jq -c '.canonical_record' \
  | python3 -c "import sys,json,hashlib; b=json.dumps(json.loads(sys.stdin.read()), sort_keys=True, separators=(',',':'), ensure_ascii=False).encode(); print(hashlib.sha256(b).hexdigest())"
# expect: 9b46d86ce5d4442902f7f41d858df8b699dfd64682c229418e7646f4f96c3451
Canonical record JSON 
{
  "metadata": {
    "abstract_canon_sha256": "c365ef9954e5cdabf60baed246e9c3e84cfb6a03cd41bd8d4b0eb388181c5ef8",
    "cross_cats_sorted": [
      "cs.CR"
    ],
    "license": "http://creativecommons.org/licenses/by/4.0/",
    "primary_cat": "cs.SE",
    "submitted_at": "2025-01-15T22:39:50Z",
    "title_canon_sha256": "d773ed88598a4d2391ee3e867f5c7e5932254793eaf91f2199b941485dfadb65"
  },
  "schema_version": "1.0",
  "source": {
    "id": "2501.09191",
    "kind": "arxiv",
    "version": 2
  }
}