Write a Blog >>
Tue 11 Jul 2017 13:20 - 13:45 at Bren 1414 - Dynamic Analysis Chair(s): Tao Xie

While automatic online software anomaly detection is crucial for ensuring the quality of production software, current techniques are mostly inefficient and ineffective. For online software, its inputs are usually provided by the user at runtime and the validity of the outputs cannot be automatically verified without a predefined oracle. Furthermore, some online anomalous behavior may be caused by the anomalies in the execution context, rather than by any code defect, which are even more difficult to detect. Existing approaches tackle this problem by identifying certain properties observed from the executions of the software during a training process and using them to monitor software online anomalous behavior. However, the large execution overhead required for monitoring these properties limits their applicability at runtime. We present a model that applies effective algorithms to select a close to optimal set of anomaly-revealing invariants, which enables online anomaly detection with minimal execution overhead. Our empirical results show that an average of 75% of anomalies were detected by using at most 5% of execution overhead.

Tue 11 Jul

Displayed time zone: Tijuana, Baja California change

13:20 - 15:00
Dynamic AnalysisTechnical Papers at Bren 1414
Chair(s): Tao Xie University of Illinois at Urbana-Champaign
13:20
25m
Talk
Effective Online Software Anomaly Detection
Technical Papers
Yizhen Chen SUNY Albany, USA, Ming Ying SUNY Albany, USA, Daren Liu SUNY Albany, USA, Adil Alim SUNY Albany, USA, Feng Chen SUNY Albany, USA, Mei-Hwa Chen SUNY Albany, USA
DOI
13:45
25m
Talk
Semi-Automated Discovery of Server-Based Information Oversharing Vulnerabilities in Android Applications
Technical Papers
William Koch Boston University, USA, Abdelberi Chaabane Northeastern University, USA, Manuel Egele Boston University, USA, William Robertson Northeastern University, USA, Engin Kirda Northeastern University, USA
DOI
14:10
25m
Talk
CPR: Cross Platform Binary Code Reuse via Platform Independent Trace Program
Technical Papers
Yonghwi Kwon Purdue University, Weihang Wang Purdue University, Yunhui Zheng IBM Research, Xiangyu Zhang Purdue University, Dongyan Xu Purdue University, USA
DOI
14:35
25m
Talk
An Actionable Performance Profiler for Optimizing the Order of Evaluations
Technical Papers
Marija Selakovic TU Darmstadt, Germany, Thomas Glaser TU Darmstadt, Germany, Michael Pradel TU Darmstadt
DOI