Stanislav Dashevskyi

PhD in Computer Science, Research Associate
at the SaToSS Research Group
of the University of Luxembourg

Email (work) :
Email (personal) :

University of Luxembourg (MNO, E03 0325-070)
Maison du Nombre
6, Avenue de la Fonte
L-4364 Esch-sur-Alzette

I received my Master's degree in Automation and Control Systems from the National Mining University of Ukraine (Dnipro), and my Ph.D. from the International Doctorate School in Information and Communication Technologies (ICT) at the University of Trento (Italy) under the supervision of Prof. Fabio Massacci. Before starting my Ph.D. studies, I worked as a software quality assurance engineer at Sitecore (Ukrainian office). I am currently working as a Research Associate at the SaToSS Research Group at the University of Luxembourg under the supervision of Prof. Sjouke Mauw. My main research interests include software security, vulnerability analysis, and security certification of software components.

  1. S. Dashevskyi, A. D. Brucker, and F. Massacci. "On the Effort for Security Maintenance of Free and Open Source Components". Presented at WEIS 2018, Innsbruck, AT. Preprint
  2. S. Dashevskyi, A. D. Brucker, and F. Massacci. "A Screening Test for Disclosed Vulnerabilities in FOSS Components". IEEE Transactions on Software Engineering (TSE), 2018. Prepub version
  3. I. Pashchenko, S. Dashevskyi, and F. Massacci. "DeltaBench: Differential Benchmark for Static Analysis Security Testing Tools". In Proceedings of the International Symposium on Empirical Software Engineering and Measurement (ESEM), 2017. Prepub version
  4. S. Dashevskyi, D. R. dos Santos, F. Massacci, and A. Sabetta. "TestREx: a Framework for Repeatable Exploits". International Journal of Software Tools for Technology Transfer (STTT), 2017. Prepub version
  5. S. Dashevskyi, A. D. Brucker, and F. Massacci. "On the Security Cost of Using a Free and Open Source Component in a Proprietary Product". In Proceedings of the Engineering Secure Software and Systems Conference (ESSoS), 2016. Prepub version
  6. V.H. Nguyen,S. Dashevskyi, and F. Massacci. "An Automatic Method for Assessing the Versions Affected by a Vulnerability". Empirical Software Engineering (ESE), 2016.
  7. S. Dashevskyi, D. R. Dos Santos, F. Massacci, and A. Sabetta. "TestREx: a Testbed for Repeatable Exploits". In Proceedings of the 7th USENIX Workshop on Cyber Security Experimentation and Test (USENIX CSET), 2014. Publisher's version
Book chapters
  1. L. ben Othmane, A. D. Brucker, S. Dashevskyi, and P. Tsalovski, "Empirical research for software security: foundations and experience". In, L. ben Othmane, M.G. Jaatun, and E. Weippl, Eds. CRC Press, 2017, ch. "An introduction to data analytics for software security". Prepub version
  1. S. Dashevskyi. "Security Assessment of Open Source Third-Parties Applications". PhD thesis, University of Trento, Italy, 2017.
  1. A. D. Brucker, S. Dashevskyi. "Vulnerability Analysis of Software Components", US Patent App. 14/965,449, 2017.
  2. A. Sabetta, L. Compagna, S. Ponta, S. Dashevskyi, D.R. Dos Santos, and F. Massacci. "Multi-Context Exploit Test Management". US Patent App. 14/692,203, 2016.
  1. COMMA: Combatting Context-Sensitive Mobile Malware
  2. SECENTIS: Security and Trust of Next Generation Enterprise Systems
  1. A. D. Brucker, S. Dashevskyi, and F. Massacci, "Using Third-party Components for Building an Application Might be More Dangerous than You Think!". OWASP AppSec Europe, 2016. (slides) (recording)