Manar H. Alalfi scite author profile

Manar H. Alalfi

5Publications

174Citation Statements Received

65Citation Statements Given

How they've been cited

174

How they cite others

Affiliations

Toronto Metropolitan University, Queen's University, University of Alberta

Publications

Order By: Most citations

Models are code too: Near-miss clone detection for Simulink models

Alalfi

Cordy

Dean

et al. 2012

View full text Add to dashboard Cite

Abstract-While graph-based techniques show good results in finding exactly similar subgraphs in graphical models, they have great difficulty in finding near-miss matches. Text-based clone detectors, on the other hand, do very well with nearmiss matching in source code. In this paper we introduce SIMONE, an adaptation of the mature text-based code clone detector NICAD to the efficient identification of structurally meaningful near-miss subsystem clones in graphical models. By transforming graph-based models to normalized text form, SI-MONE extends NICAD to identify near-miss subsystem clones in Simulink models, uncovering important model similarities that are difficult to find in any other way.

show abstract

Security Analysis for SmartThings IoT Applications

Schmeidl

Nazzal

Alalfi

2019

View full text Add to dashboard Cite

Automated Reverse Engineering of UML Sequence Diagrams for Dynamic Web Applications

Alalfi

Cordy

Dean

2009

View full text Add to dashboard Cite

This paper presents an approach and tool to automatically instrument dynamic web applications using source transformation technology, and to reverse engineer a UML 2.1 sequence diagram from the execution traces generated by the resulting instrumentation. The result can be directly imported and visualized in a UML toolset such as Rational Software Architect. Our approach dynamically filters traces to reduce redundant information that may complicate program understanding. While our current implementation works on PHP-based applications, the framework is easily extended to other scripting languages in plug-andplay fashion. In addition to supporting web application understanding, our tool is being used to recover traces from dynamic web applications in support of web application security analysis and testing. We demonstrate our method on the analysis of the popular internet bulletin board system PhpBB 2.0.

show abstract

Detecting Android Malware Using Clone Detection

Chen

Alalfi

Dean

et al. 2015

J. Comput. Sci. Technol.

View full text Add to dashboard Cite

Android is currently one of the most popular smartphone operating systems. However, Android has the largest share of global mobile malware and significant public attention has been brought to the security issues of Android. In this paper, we investigate the use of a clone detector to identify known Android malware. We collect a set of Android applications known to contain malware and a set of benign applications. We extract the Java source code from the binary code of the applications and use NiCad, a near-miss clone detector, to find the classes of clones in a small subset of the malicious applications. We then use these clone classes as a signature to find similar source files in the rest of the malicious applications. The benign collection is used as a control group. In our evaluation, we successfully decompile more than 1 000 malicious apps in 19 malware families. Our results show that using a small portion of malicious applications as a training set can detect 95% of previously known malware with very low false positives and high accuracy at 96.88%. Our method can effectively and reliably pinpoint malicious applications that belong to certain malware families.

show abstract

Security Smells in Smart Contracts

Demir

Alalfi

Turetken

et al. 2019

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Manar H. Alalfi

Models are code too: Near-miss clone detection for Simulink models

Security Analysis for SmartThings IoT Applications

Automated Reverse Engineering of UML Sequence Diagrams for Dynamic Web Applications

Detecting Android Malware Using Clone Detection

Security Smells in Smart Contracts

Contact Info

Product

Resources

About