Derailer

Near, Joseph P.; Jackson, Daniel

doi:10.1145/2642937.2643012

Cited by 17 publications

(5 citation statements)

References 23 publications

(21 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Of a different flavor is Derailer [32]: for security assessments of Web applications, it uses symbolic execution to identify when and how their data gets exposed. The user inspects and evaluates the identified conditions for security concerns, then Derailer points out missing security checks in sensitive areas.…”

Section: Related Workmentioning

confidence: 99%

“…The user inspects and evaluates the identified conditions for security concerns, then Derailer points out missing security checks in sensitive areas. [32] pursues different goals than ours: symbolic execution is the key to obtain exposure data involving specific APIs, but scalability and other concerns typical of a general usage are out of scope. Yet we mention it as one of the few cases where users deal with data (indirectly) derived from a symbolic exploration.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

SymNav: Visually Assisting Symbolic Execution

Angelini

Blasilli

Borzacchiello

et al. 2019

2019 IEEE Symposium on Visualization for Cyber Security (VizSec)

View full text Add to dashboard Cite

Modern software systems require the support of automatic program analyses to answer questions about their correctness, reliability, and safety. In recent years, symbolic execution techniques have played a pivotal role in this field, backing research in different domains such as software testing and software security. Like other powerful machine analyses, symbolic execution is often affected by efficiency and scalability issues that can be mitigated when a domain expert interacts with its working, steering the computation to achieve the desired goals faster. In this paper we explore how visual analytics techniques can help the user to grasp properties of the ongoing analysis and use such insights to refine the symbolic exploration process. To this end, we discuss two real-world usage scenarios from the malware analysis and the vulnerability detection domains, showing how our prototype system can help users make a wiser use of symbolic exploration techniques in the analysis of binary code.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

SymNav: Visually Assisting Symbolic Execution

Angelini

Blasilli

Borzacchiello

et al. 2019

2019 IEEE Symposium on Visualization for Cyber Security (VizSec)

View full text Add to dashboard Cite

show abstract

“…In general, static data flow analysis of a dynamic programming language is difficult to due to the dynamic behavior. Static analysis techniques have been applied to Rails to identify vulnerabilities by several researchers (Chaudhuri and Foster, 2010) (Doupé et al, 2011) (Near and Jackson, 2014).…”

Section: Security Assurance and Agile Developmentmentioning

confidence: 99%

“…Near and Jackson developed a tool called Derailer that performs symbolic execution of Rails by hijacking the existing Ruby runtime. It provides an interactive interface that enables a user to construct the specifications for the application security policy (Near and Jackson, 2014). Our approach also hides the detail of Rails frameworks by preparing a CALib.…”

Section: Security Testing Of Web Applicationmentioning

confidence: 99%

Method Using Command Abstraction Library for Iterative Testing Security of Web Applications

Munetoh

Yoshioka

2015

International Journal of Secure Software Engineering

View full text Add to dashboard Cite

A framework based on a scripting language is commonly used in Web application development, and high development efficiency is often achieved by applying several Agile development techniques. However, the adaptation of security assurance techniques to support Agile development is still underway, particularly from the developer's perspective. The authors have addressed this problem by developing an iterative security testing method that splits the security test target application into two parts on the basis of the code lifecycle, application logic (“active development code”) and framework (“used code”). For the former, detailed security testing is conducted using static analysis since it contains code that is changed during the iterative development process. For the latter, an abstraction library at the command granularity level is created and maintained. The library identifies the behavior of an application from the security assurance standpoint. This separation reduces the amount of code to be statically inspected and provides a mechanism for sharing security issues among application developers using the same Web application framework. Evaluation demonstrated that this method can detect various types of Web application vulnerabilities.

show abstract

“…Software verification provides the highest degree of software assurance, with its strengths residing in the mathematical concepts that can be leveraged to prove correctness with respect to specific properties. Most notably, bounded verification techniques, such as Alloy [28], have recently received a great deal of attention in the software engineering community (e.g., [8,9,11,13,14,16,20,26,34,35,38,43,46,48,52,54,55,61,63,66]), due to the strength of their automated, yet formally precise, analysis capabilities. The basic idea behind these techniques is to construct a formula that encodes the behavior of a system and examine it up to a user-specified bound.…”

Section: Introductionmentioning

confidence: 99%

Platinum: Reusing Constraint Solutions in Bounded Analysis of Relational Logic

Zheng

Bagheri

Rothermel

et al. 2020

Fundamental Approaches to Software Engineering

View full text Add to dashboard Cite

Alloy is a lightweight specification language based on relational logic, with an analysis engine that relies on SAT solvers to automate bounded verification of specifications. In spite of its strengths, the reliance of the Alloy Analyzer on computationally heavy solvers means that it can take a significant amount of time to verify software properties, even within limited bounds. This challenge is exacerbated by the ever-evolving nature of complex software systems. This paper presents PLATINUM, a technique for efficient analysis of evolving Alloy specifications, that recognizes opportunities for constraint reduction and reuse of previously identified constraint solutions. The insight behind PLATINUM is that formula constraints recur often during the analysis of a single specification and across its revisions, and constraint solutions can be reused over sequences of analyses performed on evolving specifications. Our empirical results show that PLATINUM substantially reduces (by 66.4% on average) the analysis time required on specifications extracted from real-world software systems.

show abstract

Derailer

Cited by 17 publications

References 23 publications

SymNav: Visually Assisting Symbolic Execution

SymNav: Visually Assisting Symbolic Execution

Method Using Command Abstraction Library for Iterative Testing Security of Web Applications

Platinum: Reusing Constraint Solutions in Bounded Analysis of Relational Logic

Contact Info

Product

Resources

About