ISSTA 2022
Mon 18 - Fri 22 July 2022 Online
Thu 21 Jul 2022 10:32 - 10:38 at Tool demo - Tool Demonstrations

Automating the repair of vulnerabilities is emerging in the field of software security. Previous efforts have leveraged Automated Program Repair (APR) for the task. Reproducible pipelines of repair tools on vulnerability benchmarks can promote advances in the field, such as new repair techniques. We propose Maestro, a decentralized platform with RESTful APIs for performing automated software vulnerability repair. Our platform connects benchmarks of vulnerabilities with APR tools for performing controlled experiments. It also promotes fair comparisons among different APR tools. We compare the performance of Maestro with previous studies on four APR tools in finding repairs for ten projects. Our execution time results indicate an overhead of 23 seconds for projects in C and a reduction of 14 seconds for Java projects. We introduce an agnostic platform for vulnerability repair with preliminary tools/datasets for both C and Java. Maestro is modular and can accommodate tools, benchmarks, and repair workflows with dedicated plugins.

Thu 21 Jul

Displayed time zone: Seoul change

10:00 - 11:00
Tool DemonstrationsTool Demonstrations at Tool demo
10:00
5m
Talk
ATUA: an Update-driven App Testing Tool
Tool Demonstrations
Chanh-Duc Ngo University of Luxembourg, Fabrizio Pastore University of Luxembourg, Lionel Briand University of Luxembourg; University of Ottawa
DOI
10:05
5m
Talk
Automatic Generation of Smoke Test Suites for Kubernetes
Tool Demonstrations
Cecilio Cannavacciuolo , Leonardo Mariani University of Milano-Bicocca
DOI
10:10
5m
Talk
ESBMC-CHERI: Towards Verification of C Programs for CHERI Platforms with ESBMC
Tool Demonstrations
Franz Brausse The University of Manchester, Fedor Shmarov The University of Manchester, Rafael Menezes University of Manchester, Mikhail R. Gadelha Igalia, Konstantin Korovin University of Manchester, Giles Reger University of Manchester, Lucas C. Cordeiro University of Manchester
DOI
10:16
5m
Talk
ESBMC-Jimple: Verifying Kotlin Programs via Jimple Intermediate Representation
Tool Demonstrations
Rafael Menezes University of Manchester, Rosiane de Freitas Federal University of Amazonas, Daniel Moura Federal University of Amazonas, Helena Cavalcante Federal University of Amazonas, Lucas C. Cordeiro University of Manchester
DOI
10:21
5m
Talk
Faster Mutation Analysis with MeMu
Tool Demonstrations
Ali Ghanbari Iowa State University, Andrian Marcus University of Texas at Dallas
DOI
10:27
5m
Talk
iFixDataloss: A Tool for Detecting and Fixing Data Loss Issues in Android Apps
Tool Demonstrations
Wunan Guo Fudan University, Zhen Dong Fudan University, China, Liwei Shen Fudan University, Wei Tian Fudan University, Ting Su East China Normal University, Xin Peng Fudan University
DOI
10:32
5m
Talk
Maestro: A Platform for Benchmarking Automatic Program Repair Tools on Software Vulnerabilities
Tool Demonstrations
Eduard Costel Pinconschi Instituto Superior Técnico, University of Lisboa & INESC-ID, Quang-Cuong Bui Hamburg University of Technology, Rui Abreu Faculty of Engineering, University of Porto, Portugal, Pedro Adão IST-ULisboa and Instituto de Telecomunicações, Riccardo Scandariato Hamburg University of Technology
DOI
10:38
5m
Talk
Pytest-Smell: A smell detection tool for Python unit tests
Tool Demonstrations
Alexandru Bodea Student at Babes Bolay University - Faculty of Mathematics and Computer Science
DOI
10:43
5m
Talk
QMutPy: A Mutation Testing Tool for Quantum Algorithms & Applications in Qiskit
Tool Demonstrations
Daniel Fortunato INESC-ID, University of Porto, José Campos Faculty of Engineering of University of Porto & LASIGE, Portugal, Rui Abreu Faculty of Engineering, University of Porto, Portugal
DOI
10:49
5m
Talk
SpecChecker-ISA: A Data Sharing Analyzer for Interrupt-driven Embedded Software
Tool Demonstrations
Boxiang Wang Xidian University and Beijing Sunwise Information Technology Ltd, Rui Chen Beijing Institute of Control Engineering, Chao Li Beijing Institute of Control Engineering and Beijing Sunwise Information Technology Ltd, Tingting Yu Beijing Institute of Control Engineering and Beijing Sunwise Information Technology Ltd, Dongdong Gao Beijing Institute of Control Engineering and Beijing Sunwise Information Technology Ltd, Mengfei Yang China Academy of Space Technology, China
DOI
10:54
5m
Talk
UniRLTest: Universal Platform-Independent Testing with Reinforcement Learning via Image Understanding
Tool Demonstrations
Ziqian Zhang Nanjing University, Yulei Liu Nanjing University, Shengcheng Yu Nanjing University, Xin Li Nanjing University, Yexiao Yun Nanjing University, Chunrong Fang Nanjing University, Zhenyu Chen Nanjing University
DOI