检索结果-内蒙古大学图书馆

Spotting silent buffer overflows in execution trace through graph neural network assisted data flow analysis

学校读者我要写书评

暂无评论

arXiv 2021年

作者： Wang, Zhilong Li, Yu Wang, Suhang Liu, Peng College of Information Sciences and Technology The Pennsylvania State University United States

A software vulnerability could be exploited without any visible symptoms. When no source code is available, although such silent program executions could cause very serious damage, the general problem of analyzing silent yet harmful executions is still an open problem. In this work, we propose a graph neural network (GNN) assisted data flow analysis method for spotting silent buffer overflows in execution traces. The new method combines a novel graph structure (denoted DFG+) beyond data-flow graphs, a tool to extract DFG+ from execution traces, and a modified Relational Graph Convolutional Network as the GNN model to be trained. The evaluation results show that a well-trained model can be used to analyze vulnerabilities in execution traces (of previously-unseen programs) without support of any source code. Our model achieves 94.39% accuracy on the test data, and successfully locates 29 out of 30 real-world silent buffer overflow vulnerabilities. Leveraging deep learning, the proposed method is, to our best knowledge, the first general-purpose analysis method for silent buffer overflows. It is also the first method to spot silent buffer overflows in global variables, stack variables, or heap variables without crossing the boundary of allocated chunks. Copyright © 2021, The Authors. All rights reserved.

关键词： data flow analysis

A type system for data flow and alias analysis in ReScript

学校读者我要写书评

暂无评论

arXiv 2024年

作者： Lund, Nicky Ask Hüttel, Hans Aalborg University Department of Computer Science Aalborg Denmark University of Copenhagen Department of Computer Science Copenhagen Denmark

ReScript is a strongly typed language that targets JavaScript, as an alternative to gradually typed languages, such as TypeScript. In this paper, we present a sound type system for data-flow analysis for a subset of the ReScript language, more specifically for a λ-calculus with mutability and pattern matching. The type system is a local analysis that collects information about variables are used at each program point as well as alias information. © 2024, CC BY-NC-ND.

关键词： data flow analysis

A Type System for data flow and Alias analysis in ReScript

学校读者我要写书评

暂无评论

arXiv 2024年

作者： Lund, Nicky Ask Hüttel, Hans Department of Computer Science Aalborg University Denmark Department of Computer Science University of Copenhagen Denmark

ReScript is a strongly typed language that targets JavaScript, as an alternative to gradually typed languages, such as TypeScript. In this paper, we present a sound type system for data-flow analysis for a subset of the ReScript language, more specifically for a λ -calculus with mutability and pattern matching. The type system is a local analysis that collects information about variables that are used at each program point as well as alias information. Copyright © 2024, The Authors. All rights reserved.

关键词： data flow analysis

XCFG Based data flow analysis of Business Processes 5

学校读者我要写书评

暂无评论

XCFG Based Data Flow Analysis of Business Processes

5th International Conference on Information Management (ICIM)

作者： Ji, Shunhui Li, Bixin Zhang, Pengcheng Hohai Univ Coll Comp & Informat Nanjing Jiangsu Peoples R China Southeast Univ Sch Comp Sci & Engn Nanjing Jiangsu Peoples R China

ISBN: (纸本)9781728134307

A lot of service-based business processes have been developed with the rapid growth of cloud computing. Ensuring the data flow correctness of business processes is very important, which needs capturing the data flow firstly. In this article, an XCFG(eXtended Control flow Graph) based approach is proposed for the data flow analysis of business processes defined in BPEL specification. With XCFG modeling BPEL process, the improved equations for reaching definitions are defined to take the new characters of XCFG into consideration. Then iterative algorithm is adopted to solve the equations so that the definitions that may reach each XCFG node are computed. Case study shows the effectiveness of the proposed approach.

关键词： Business process data flow analysis XCFG reaching definitions

Parameterized Algorithms for Scalable Interprocedural data-flow analysis

学校读者我要写书评

暂无评论

arXiv 2023年

作者： Zaher, Ahmed Khaled Abdelfattah Department of Computer Science and Engineering The Hong Kong University of Science and Technology Hong Kong

data-flow analysis is a general technique used to compute information of interest at different points of a program and is considered to be a cornerstone of static analysis. In this thesis, we consider interprocedural data-flow analysis as formalized by the standard IFDS framework, which can express many widely-used static analyses such as reaching definitions, live variables, and null-pointer. We focus on the well-studied on-demand setting in which queries arrive one-by-one in a stream and each query should be answered as fast as possible. While the classical IFDS algorithm provides a polynomial-time solution to this problem, it is not scalable in practice. Specifically, it either requires a quadratic-time preprocessing phase or takes linear time per query, both of which are untenable for modern huge codebases with hundreds of thousands of lines. Previous works have already shown that parameterizing the problem by the treewidth of the program's control-flow graph is promising and can lead to significant gains in efficiency. Unfortunately, these results were only applicable to the limited special case of same-context queries. In this work, we obtain significant speedups for the general case of on-demand IFDS with queries that are not necessarily same-context. This is achieved by exploiting a new graph sparsity parameter, namely the treedepth of the program's call graph. Our approach is the first to exploit the sparsity of control-flow graphs and call graphs at the same time and parameterize by both treewidth and treedepth. We obtain an algorithm with a linear preprocessing phase that can answer each query in constant time with respect to the input size. Finally, we show experimental results demonstrating that our approach significantly outperforms the classical IFDS and its on-demand variant. © 2023, CC BY.

关键词： data flow analysis

AndroEvolve: Automated android API update with data flow analysis and variable denormalization

学校读者我要写书评

暂无评论

arXiv 2020年

作者： Haryono, Stefanus Agus Thung, Ferdian Lo, David Jiang, Lingxiao Lawall, Julia Kang, Hong Jin Serrano, Lucas Muller, Gilles School of Information Systems Singapore Management University Singapore Sorbonne University/Inria/LIP6 France Inria France

The Android operating system is frequently updated, with each version bringing a new set of APIs. New versions may involve API deprecation;Android apps using deprecated APIs need to be updated to ensure the apps’ compatibility with old and new versions of Android. Updating deprecated APIs is a time-consuming endeavor. Hence, automating the updates of Android APIs can be beneficial for developers. CocciEvolve is the state-of-the-art approach for this automation. However, it has several limitations, including its inability to resolve out-of-method-boundary variables and the low code readability of its update due to the addition of temporary variables. In an attempt to further improve the performance of automated Android API update, we propose an approach named AndroEvolve, which addresses the limitations of CocciEvolve through the addition of data flow analysis and variable name denormalization. data flow analysis enables AndroEvolve to resolve the value of any variable within the file scope. Variable name denormalization replaces temporary variables that may present in the CocciEvolve update with appropriate values in the target file. We have evaluated the performance of AndroEvolve and the readability of its updates on 360 target files. AndroEvolve produces 26.90% more instances of correct updates compared to CocciEvolve. Moreover, our manual and automated evaluation shows that AndroEvolve updates are more readable than CocciEvolve updates. Copyright © 2020, The Authors. All rights reserved.

关键词： data flow analysis

ANOVUL: Detection of logic vulnerabilities in annotated programs via data and control flow analysis

学校读者我要写书评

暂无评论

IET INFORMATION SECURITY 2020年第3期14卷 352-364页

作者： Ghorbanzadeh, Mahmoud Reza Shahriari, Hamid Amirkabir Univ Technol Dept Comp Engn Tehran Iran

Logic vulnerabilities are largely dependent on the expected functions of web applications. Their appearance depends on both application logic and related security policy which may change based on modifications in business requirements. Accordingly, there are no specific and common patterns for logic vulnerabilities moreover, a security policy is required for their detection. In this study, a vulnerability detection method is proposed to detect logic vulnerabilities via analysing the program source code. Security checks enforce some constraints in the application so that the application behaves according to the logic intended by the programmer. The main goal is to find the vulnerabilities caused by bypassing some security checks. In this method, known as annotation-based vulnerability detection approach (ANOVUL), control and data flows are analysed to detect the application logic vulnerabilities. To analyse the flows of the program, access control and authenticity labelling are used. To evaluate ANOVUL, the authors have collected a data set. This comprises of PHP applications with reported logic vulnerabilities that have common vulnerabilities and exposures (CVE) identifiers. Based on the results, a 73% detection rate was achieved in the data set. The proposed method can detect logic vulnerabilities that are not detectable using conventional methods.

关键词： authorisation Internet data flow analysis ANOVUL control flow analysis related security policy vulnerability detection method security checks application logic vulnerabilities common vulnerabilities logic vulnerabilities detection annotation-based vulnerability detection approach

Deep data flow analysis

学校读者我要写书评

暂无评论

arXiv 2020年

作者： Cummins, Chris Leather, Hugh O’Boyle, Michael Fisches, Zacharias Ben-Nun, Tal Hoefler, Torsten Facebook AI Research Menlo ParkCA United States University of Edinburgh Old College South Bridge EdinburghEH8 9YL United Kingdom ETH Zürich Rämistrasse 101 Zürich8092 Switzerland

Compiler architects increasingly look to machine learning when building heuristics for compiler optimization. The promise of automatic heuristic design, freeing the compiler engineer from the complex interactions of program, architecture, and other optimizations, is alluring. However, most machine learning methods cannot replicate even the simplest of the abstract interpretations of data flow analysis that are critical to making good optimization decisions. This must change for machine learning to become the dominant technology in compiler heuristics. To this end, we propose PROGRAML – Program Graphs for Machine Learning – a language-independent, portable representation of whole-program semantics for deep learning. To benchmark current and future learning techniques for compiler analyses we introduce an open dataset of 461k Intermediate Representation (IR) files for LLVM, covering five source programming languages, and 15.4M corresponding data flow results. We formulate data flow analysis as an MPNN and show that, using PROGRAML, standard analyses can be learned, yielding improved performance on downstream compiler optimization tasks. © 2020, CC BY.

关键词： data flow analysis

Dominator tree data flow cognitive analysis for green public building design

学校读者我要写书评

暂无评论

Journal of Supercomputing 2020年第2期76卷 1268-1276页

作者： Wang, Mengrui School of Architecture South China University of Technology Guangzhou 510600 China

In accordance with Green Building Evaluation Standard and Green Building Technology Guidance, this paper selects the evaluation contents related to design scheme, establishes the evaluation index system optimizing the green building design scheme, based on this, introduces the improved data flow analysis method (three-demarcation method) to determine the weights of various evaluation indexes, adopts triangular classification building design examples to establish the data flow control flow graph for data test, establishes the data flow analysis of building design by aid of its dominator tree relation, and establishes the dominance relation set between building design variables thus to select the optimal scheme. Finally, it proves the effectiveness and practicality of the evaluation system based on live examples. © 2018, Springer Science+Business Media, LLC, part of Springer Nature.

关键词： data flow analysis