ICST 2024
Mon 27 - Fri 31 May 2024 Canada
Mon 27 May 2024 11:30 - 12:00 at Room 3 - Session 2

Rule-based systems such as Semgrep are important to detect security breaches by using static code analysis. Taking inspiration from research identifying relationships in energy consumption rules we present a tool (RIT) to enhance rule set development. Our tool allows Semgrep users to test rule bases, discern relationships, and mitigate redundancy within a rule set. It addresses the intricate interpretation of Semgrep-defined syntax to unveil diverse relationships like Equality, Inclusion, and Overlapping. Leveraging Semgrep’s pattern matching, the tool helps create patterns when forming rules. Experimental results show that the tool improves the relevance of rule sets and reduces execution time, offering substantial advantages in code security testing.

Mon 27 May

Displayed time zone: Eastern Time (US & Canada) change

11:00 - 12:30
Session 2NEXTA at Room 3
11:00
30m
Research paper
Automated Hybrid Fuzzing of Web APIs
NEXTA
Andrea Bogle The Aerospace Corporation, Tan Tran The Aerospace Corporation, Rafael Ceja The Aerospace Corporation, Joshua Sasaki The Aerospace Corporation, Riyadh Mahmood The Aerospace Corporation
11:30
30m
Short-paper
Improving security analysis rule set by relationship identification
NEXTA
Charles Lohest UCLouvain, Axel Legay Université Catholique de Louvain, Belgium
12:00
30m
Short-paper
TCPGraphix: A Visualization Tool for ML-Powered Test Case Prioritization Data Analysis
NEXTA
Yara Q Mahmoud Ontario Tech University, Akramul Azim Ontario Tech University, Md Asif Khan Ontario Tech University