检索结果-内蒙古大学图书馆

2022 IEEE Biennial Congress of Argentina, ARGENCON 2022

作者： Lucas Gil Juan Rodriguez Hernan Vázquez Claudia Marcos Santiago Vidal Guillermo Rodriguez Unicen Facultad de Ciencias Exactas Tandil Argentina Isistan (UNICEN-CIC) Tandil Argentina Isistan (UNICEN-CONICET) Tandil Argentina

ISBN: (数字)9781665480147

ISBN: (纸本)9781665480154

When a web page is displayed in a web browser, several files belonging to the web page are downloaded into the client's device. The larger these files, the longer the browser will take to download and display the web pages. That is why optimizing the size of these files is important to improve the loading time of the web page and enhance user *** this work, we focus on the case of javascript, one of the most popular programming languages for building web pages. While the javascript files are getting larger, not all the downloaded code is necessary for the execution and display of a web page. In this context, we propose UFFServer, an online approach to optimize the size of the files required by a particular web application. UFFServer allows the identification and removal of functions based on monitoring web page usage. In this paper, we report on a controlled experiment that evaluates UFFServer. We evaluated UFFServer by analyzing the interaction of real users with 4 web pages for a time ranging between 2 to 10 months. We found that by using UFFServer the javascript files can be significant reduced. © 2022 IEEE.

关键词： bundle optimization javascript refactoring unused code

来源：评论

学校读者我要写书评

暂无评论

A Concurrency Model for javascript with Cooperative Cancellation 14

A Concurrency Model for JavaScript with Cooperative Cancella...

引用

14th International Conference on Software Language Engineering (SLE)

作者： Zhao, Tian Li, Yonglun Univ Wisconsin Milwaukee Milwaukee WI 53211 USA

ISBN: (纸本)9781450391115

This paper proposes a concurrency model for javascript with thread-like abstractions and cooperative cancellation. javascript uses an event-driven model, where an active computation runs until it completes or blocks for an event while concurrent computations wait for other events as callbacks. With the introduction of Promises, the control flow of callbacks can be written in a more direct style. However, the event-based model is still a source of confusion with regard to execution order, race conditions, and termination. The thread model is a familiar concept to programmers and can help reduce concurrency errors in javascript programs. This work is a library-based design, which uses an abstraction based on the reader monad to pass a thread ID through a thread's computation. A thread can be cancelled, paused, and resumed with its thread ID. This design allows hierarchical cancellation where a child thread is cancelled if its parent is cancelled. It also defines synchronization primitives to protect shared states. A formal semantics is included to give a precise definition of the proposed model.

关键词： asynchronous programming thread javascript

来源：评论

学校读者我要写书评

暂无评论

面向javascript引擎报错机制的类别导向模糊测试方法

引用

计算机科学 2023年第12期50卷 49-57页

作者：卢凌周志德任志磊江贺大连理工大学软件学院辽宁大连116620 南京航空航天大学高安全系统的软件开发与验证技术工业和信息化部重点实验室南京210016

报错机制是javascript引擎必不可少的一部分。面对错误的程序,javascript引擎报错机制应输出合理的错误信息,指出错误的原因和位置,帮助开发人员修复错误。然而,javascript引擎报错机制中存在会阻碍开发人员修复错误的缺陷。文中提出了... 详细信息

报错机制是javascript引擎必不可少的一部分。面对错误的程序,javascript引擎报错机制应输出合理的错误信息,指出错误的原因和位置,帮助开发人员修复错误。然而,javascript引擎报错机制中存在会阻碍开发人员修复错误的缺陷。文中提出了首个面向javascript引擎报错机制的类别导向模糊测试方法CAFJER。给定一个种子程序,CAFJER首先为其选择一个目标类别的错误信息,并进行动态分析得到其上下文信息。其次,CAFJER根据种子程序的上下文信息生成能触发目标类别错误信息的测试用例。然后,CAFJER将生成的测试用例输入不同javascript引擎中进行差分测试。若输出的错误信息间有所差异,则说明其中可能存在缺陷。最后,CAFJER自动过滤重复的和无效的测试用例,有效减少了人工的参与。为了验证CAFJER的有效性,将CAFJER与目前先进的相似方法JEST和DIPROM进行比较,实验结果表明,CAFJER在javascript引擎报错机制中发现的独特缺陷数分别是JEST和DIPROM的2.17倍和26倍。在为期3个月的实验中,CAFJER还向开发者提交了17个缺陷报告,其中7个已被确认。

关键词： javascript 报错机制错误信息差分测试程序变异

来源：评论

学校读者我要写书评

暂无评论

The Cost of Speculation: Revisiting Overheads in the V8 javascript Engine 17

The Cost of Speculation: Revisiting Overheads in the V8 Java...

引用

17th IEEE International Symposium on Workload Characterization (IISWC)

作者： Parravicini, Alberto Mueller, Rene Politecn Milan DEIB Milan Italy Huawei Technol Liebefeld Switzerland Huawei Technol Switzerland Zurich Res Ctr Comp Syst Lab Liebefeld Switzerland

ISBN: (纸本)9781665441735

javascript, while already widely used in web applications, is also gaining popularity beyond the web, such as on the server as part of *** or on the desktop with the Electron framework (e.g., in the Slack application). However, executing code written in this weakly and dynamically typed language efficiently, requires sophisticated Just-in-time (JIT) compilation. In this paper, we revisit the execution overheads of javascript. We perform a detailed analysis of the JetStream2 benchmark suite on Google's modern V8 javascript engine. We identify micro-architectural bottlenecks and runtime overheads that result from the speculations made by the JIT compiler when it generates machine code from javascript. We find that checks that verify assumptions made by the compiler have an average execution overhead of 8 %, 2-4x of what an earlier study reported on an older version of V8. For the check for Small Integers (SMI), we observe that the conditional branches are not the underlying cause but rather the computation of the condition itself. This indicates that these checks provide an attractive avenue for a HW/SW codesign solution. We present an extension for the ARMv8 instruction set that optimizes SMI load instructions and checks. We can improve execution time on SMI-heavy computations by up to 10 % ona prototype implementation of the new instructions in the gem5 simulator.

关键词： JIT Compilation javascript Performance Evaluation

来源：评论

学校读者我要写书评

暂无评论

SecureJS Compiler: Portable Memory Isolation in javascript 21

SecureJS Compiler: Portable Memory Isolation in JavaScript

引用

36th Annual ACM Symposium on Applied Computing (SAC)

作者： Ko, Yoonseok Rezk, Tamara Serrano, Manuel INRIA Sophia Antipolis France

ISBN: (纸本)9781450381048

The memory isolation mechanism plays an essential role to provide security enforcement in javascript programs. Existing secure interaction libraries such as Google Caja, SES, and VM2 rely on built-in memory isolation mechanisms provided by *** and browsers, yet most of the other engines such as JerryScript and Duktape, which are implementations for IoT devices, do not support such isolation mechanisms. In this paper, we report about the design and implementation of SecureJS, a portable javascript-to-javascript compiler that enforces memory isolation. As it only uses standard features, the compiled code it generates can be used by any javascript engine. We validated empirically the semantics preservation and memory isolation of SecureJS compiled programs by using 10,490 test programs of ECMAScript Test262 test suite. We also developed a novel experiment to evaluate memory isolation property of compiled code by instrumented javascript engines.

关键词： Compiler Memory Isolation javascript

来源：评论

学校读者我要写书评

暂无评论

HIJaX: Human Intent javascript XSS Generator 18

HIJaX: Human Intent JavaScript XSS Generator

引用

18th International Conference on Security and Cryptography (SECRYPT)

作者： Frempong, Yaw Snyder, Yates Al-Hossami, Erfan Sridhar, Meera Shaikh, Samira Univ North Carolina Charlotte 9201 Univ City Blvd Charlotte NC 28223 USA

ISBN: (纸本)9789897585241

Websites remain popular targets for web-based attacks such as Cross-Site Scripting (XSS). As a remedy, new research is needed to preemptively secure applications with the use of Automated Exploit Generation (AEG), whereby probing and patching of system vulnerabilities occurs autonomously. In this paper, we present HIJaX, a novel Natural Language-to-javascript generator prototype, that creates workable XSS exploit code from English sentences using neural machine translation. We train and test the HIJaX model with a variety of datasets containing benign and malicious intents along with differing numbers of baseline code entries to demonstrate how to best create datasets for XSS code generation. We also examine part-of-speech tagging algorithms and automated dataset expansion scripts to aid the dataset creation and code generation processes. Finally, we demonstrate the feasibility of deploying auto-generated XSS attacks against real-world websites.

关键词： javascript Cross-site Scripting Exploit Generation Natural Language Processing

来源：评论

学校读者我要写书评

暂无评论

Snapshot-Based Migration of ES6 javascript 21st

Snapshot-Based Migration of ES6 JavaScript

引用

21st International Conference on Web Engineering (ICWE)

作者： Yoo, Yong-Hwan Moon, Soo-Mook Seoul Natl Univ 1 Gwanak Ro Seoul South Korea

ISBN: (纸本)9783030742966;9783030742959

Recently, researches have proposed application (app) migration approaches for javascript programs to enable a non-breaking user experience across different devices. To migrate a stateful javascript app's runtime, past studies have proposed snapshot-based techniques in which the app's runtime state is profiled and serialized into a text form that can be restored back later. A common limitation of existing literature, however, is that they are based on old javascript specifications. Since major updates introduced by ECMASCript2015 (a.k.a. ES6), javascript supports various features that cannot be migrated correctly with existing methods. Some of these features are in fact heavily used in today's real-world apps and thus greatly reduces the scope of previous works. In this paper, we analyze ES6 features such as block scopes, modules, and class syntax that were previously uncovered in app migration. We present an algorithm that enables migration of apps implemented with these new features. Based on the standards adopted in modern javascript engines, our approach serializes a running program into a scope tree and reorganizes it for snapshot code generation. We implement our idea on the open source V8 engine and experiment with complex benchmark programs of modern javascript. Results show that our approach correctly migrates 5 target programs between mobile devices. Our framework could migrate the most complex app of source code size 213KB in less than 200 ms in a X86 laptop and 800 ms in an embedded ARM board.

关键词： javascript App migration Serialization Code generation

来源：评论

学校读者我要写书评

暂无评论

A Proposal of Code Modification Problem for Web Client Programming Using javascript 9

A Proposal of Code Modification Problem for Web Client Progr...

引用

9th International Symposium on Computing and Networking (CANDAR)

作者： Wai, Khaing Hsu Funabiki, Nobuo Mon, Khin Thet Shwe, San Hay Mar Kyaw, Htoo Htoo Sandi Lin, Khin Sandar Okayama Univ Dept Elect & Commun Engn Okayama Japan Pathein Univ Dept Phys Pathein Myanmar

ISBN: (纸本)9781665442466

Programming Learning Assistant System (PLAS) has been developed as a web-based self-learning platform for programming. PLAS offers several types of exercise problems for code reading and code writing skills, namely, grammar-concept understanding problem (GUP), value trace problem (VTP), element fill-in-blank problem (EFP), code completion problem (CCP), and code writing problem (CWP), to support studies at various levels for C, C++, Java, Python, and javascript programming and each problem has different targets for the students. javascript is commonly used together with HTML and CSS, to introduce dynamic behaviors of web pages in web application systems. Thus, javascript should be studied along with them for web client programming. In this paper, we propose a code modification problem (CMP) as a new type in PLAS, to study web client programming using javascript. Since a web page is made by using various functions together, reading and understanding sample source codes using them will be an effective way. Actually, students should have a lot of practices in code reading before implementing source codes from scratch. The CMP instance gives a source code using the functions to be studied and the screenshot of the web page generated by it. Then, it requests to modify the code to generate another web page given by the screenshot. The correctness of any answer is checked through string matching with the correct one. For the evaluation, we generated 25 CMP instances and assigned them to 23 students in Okayama University. Their solution results confirm the validity of the proposal.

关键词： web client programming javascript HTML CSS code modification coding reading

来源：评论

学校读者我要写书评

暂无评论

An Event Listener or an Event Handler? Students Explain Event-drivenness in javascript 21

An Event Listener or an Event Handler? Students Explain Even...

引用

21st Koli Calling Conference on Computing Education Research (Koli Calling)

作者： Lukkarinen, Aleksi Lehtinen, Teemu Haaranen, Lassi Malmi, Lauri Aalto Univ Espoo Finland

ISBN: (纸本)9781450384889

When students in programming courses are taught event-driven programming (EDP) for the first time, they face new terminology and concepts that they should internalize. Moreover, they learn a fully new approach for reasoning about program logic and execution order. However, there is a lack of research in students' understanding of these concepts. In this paper, we describe a study, in which we asked web development students to explain their conception of EDP: what are the main concepts involved and how they interact. Moreover, we asked them to explain the execution of a short piece of javascript code that focuses on basic usage of events and event listeners. The answers, which we requested as concept maps and text, were analyzed using inductive content analysis. Our results clearly demonstrate shortcomings in the students' learning and illustrate various misunderstandings that they may have regarding EDP. Based on the findings, we give suggestions for improving the teaching of EDP.

关键词： event-oriented event-based javascript concept map computer science education programming education

来源：评论

学校读者我要写书评

暂无评论

Generation of TypeScript Declaration Files from javascript Code 18

Generation of TypeScript Declaration Files from JavaScript C...

引用

18th ACM SIGPLAN International Conference on Managed Programming Languages and Runtimes (MPLR)

作者： Cristiani, Fernando Thiemann, Peter Hsch Karlsruhe Karlsruhe Germany Albert Ludwigs Univ Freiburg Freiburg Germany

ISBN: (纸本)9781450386753

Developers are starting to write large and complex applications in TypeScript, a typed dialect of javascript. TypeScript applications integrate javascript libraries via typed descriptions of their APIs called declaration files. DefinitelyTyped is the standard public repository for these files. The repository is populated and maintained manually by volunteers, which is error-prone and time consuming. Discrepancies between a declaration file and the javascript implementation lead to incorrect feedback from the TypeScript IDE and, thus, to incorrect uses of the underlying javascript library. This work presents dts-generate, a tool that generates TypeScript declaration files for javascript libraries uploaded to the NPM registry. It extracts code examples from the documentation written by the developer, executes the library driven by the examples, gathers run-time information, and generates a declaration file based on this information. To evaluate the tool, 249 declaration files were generated directly from an NPM module and 111 of these were compared with the corresponding declaration file provided on DefinitelyTyped. All these files either exhibited no differences at all or differences that can be resolved by extending the developer-provided examples.

关键词： javascript TypeScript Dynamic Analysis Declaration Files

来源：评论

学校读者我要写书评

暂无评论

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案：

请选择收藏分类：

通借通还

建议与咨询 留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案： 新增检索档案 确定 取消

请选择收藏分类： 新增自定义分类 确定 取消

通借通还

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

请选择保存的检索档案：

请选择收藏分类：