Auflistung nach Schlagwort "code analysis"
1 - 3 von 3
Treffer pro Seite
Sortieroptionen
- ZeitschriftenartikelAnalyzing Code Corpora to Improve the Correctness and Reliability of Programs(Softwaretechnik-Trends Band 42, Heft 2, 2022) Patra, JibeshThe goal of the dissertation summarized here is to use program analysis and novel learning-based techniques to alleviate some of the challenges faced by developers while ensuring the correctness and reliability of programs. We focus on dynamically typed languages such as JavaScript and Python for their popularity and present six approaches that leverages analysis of code corpora in aiding to solve software engineering problems. We use static analysis to generate new programs, to seed bugs in programs, and to obtain data for training neural models. We present an effective technique called Generalized Tree Reduction algorithm (GTR), to reduce arbitrary test inputs that can be represented as a tree, such as program code, PDF files, and XML documents. The efficiency of input reduction is increased by learning transformations from a corpus of example data.
- KonferenzbeitragCodeMatch(Software Engineering und Software Management 2018, 2018) Glanz, Leonid; Amann, Sven; Eichberg, Michael; Reif, Michael; Mezini, MiraESEC/FSE 2017 Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering. Popular mobile apps are regularly installed by millions of users. This fact attracts malicious actors to create altered, repackaged versions of those apps to steal the original owner’s revenue or to trick users to infect their devices with malware. Detecting such repackaged apps is, therefore, necessary for a secure and viable app market but is challenging due to the use of code obfuscation and the widespread usage of libraries. Due to the recent fact, non-repackaged, legitimate apps often share a majority of their code base and are classified as repackaged by state-of-the-art detectors. We, therefore, propose a new library filtering approach that relies on code representations at five different abstraction levels to achieve resilience against code obfuscation. Additionally, we propose to use the most abstract representation in combination with fuzzy-hashing to detect repackaged apps. Our evaluation shows that the overall approach leads to a better detection rate up to 50%.
- KonferenzbeitragLanguage Independent Abstract Metamodel for Quality Analysis and Improvement of OO Systems(Softwaretechnik-Trends Band 25, Heft 2, 2005) Trifu, Mircea; Szulman, PeterDuring the long life cycle of a software system, continuous changes often lead to the degradation of its structure. Our work within the QBench project aims to make a step forward from classical quality analyses and propose appropriate corrective measures in the form of source-code transformations which, if applied, would lead to a better software system. Simply put, while traditional quality analysis techniques try to find problems in source code, the QBench vision is to try and find solutions for these problems. This paper contains a brief introduction to the structure and the semantics of the QBench System-model as it is defined by its metamodel.