How can one enable software engineers to realize software that cannot be attacked? Which tools can effectively support them? How can also AI applications be provably effectively secured? These are the primary research questions that drive me and that I also explore in collaboration with regional, national and international companies.

About Eric Bodden

Eric Bodden is one of the leading experts on secure software engineering, with a specialty in building highly precise tools for automated program analysis. He is Professor for Secure Software Engineering at Paderborn University and director for Software Engineering and IT-Security at Fraunhofer IEM, where he is collaborating with the leading national and international software development companies. Further, he is a member of the directorate of the Collaborative Research Center CROSSING at TU Darmstadt.

Prof. Bodden's research was awarded numerous times. 2019, Bodden was named ACM Distinguished Member. At the German IT-Security Price, his group scored 1st place in 2016 and 2nd place in 2014. In 2014, the DFG awarded Bodden the Heinz Maier-Leibnitz-Preis, Germany's highest honour for young scientists. Prof. Bodden's research has received six ACM Distinguished Paper Awards in different communities. Prof. Bodden is member of the editorial boards of ACM Transactions on Software Engineering and Methodology (TOSEM) , Springer Empirical Software Engineering (EMSE) and the IEEE Security and Privacy Magazine. In 2020, Bodden was elected into the Working Group 2.4 Software Implementation Technology of the International Federation for Information Processing (IFIP), a UNESCO organization. He is further a "Scout" within the Henriette Herz Scouting Program of the Alexander von Humboldt Foundation.

Research

Latest Projects

Show all projects

Publications

Selected Publications

Context-, Flow-, and Field-sensitive Data-flow Analysis Using Synchronized Pushdown Systems

J. Späth, K. Ali, E. Bodden, Proceedings of the ACM SIGPLAN Symposium on Principles of Programming Languages 3 (2019) 48:1-48:29.

DOI

PhASAR: An Inter-Procedural Static Analysis Framework for C/C++

P. Schubert, B. Hermann, E. Bodden, in: Proceedings of the 25th International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS 2019), Held as Part of the European Joint Conferences on Theory and Practice of Software (ETAPS 2019), 2019, pp. 393–410.

DOI

Do Android Taint Analysis Tools Keep their Promises?

F. Pauck, E. Bodden, H. Wehrheim, ArXiv:1804.02903 (2018).

Towards Ensuring Security by Design in Cyber-Physical Systems Engineering Processes

J. Geismann, C. Gerking, E. Bodden, in: International Conference on Software and System Processes (ICSSP), 2018.

http://bodden.de/pubs/ggb18towards.pdf

FlowDroid: Precise Context, Flow, Field, Object-sensitive and Lifecycle-aware Taint Analysis for Android Apps

S. Arzt, S. Rasthofer, C. Fritz, E. Bodden, A. Bartel, J. Klein, Y. Le Traon, D. Octeau, P. McDaniel, in: Proceedings of the 35th ACM SIGPLAN Conference on Programming Language Design and Implementation - PLDI ’14, ACM Press, 2014.

DOI

Show all publications

Teaching

Current Courses

Softwaretechnikpraktikum
Seminar: Secure Systems Engineering (in English)
Designing code analyses for large-scale software systems 1 (in English)

Outreach

Our research is always scientifically anchored, yet inspired by concrete applications. In my role as Director of Software Engineering and IT Security at Fraunhofer IEM, but also within the Software Innovation Campus Paderborn (SICP), I collaborate with regional, national, and international companies on the concrete question of how to make the engineering of attack-proof software more effective.