FUM - A Framework for API Usage constraint and Misuse Classification

Schlichtig, Michael; Sassalla, Steffen; Narasimhan, Krishna; Bodden, Eric

doi:10.1109/saner53432.2022.00085

Cited by 6 publications

(1 citation statement)

References 44 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Thus, a high-accuracy cryptographic API completion solution would be necessary. Such an effort is complementary to developing vulnerability screening tools [31], [32] and benchmarks [33], [34], [35].…”

Section: Introductionmentioning

confidence: 99%

Specializing Neural Networks for Cryptographic Code Completion Applications

Xiao

Song

et al. 2023

IIEEE Trans. Software Eng.

View full text Add to dashboard Cite

Similarities between natural languages and programming languages have prompted researchers to apply neural network models to software problems, such as code generation and repair. However, program-specific characteristics pose unique prediction challenges that require the design of new and specialized neural network solutions. In this work, we identify new prediction challenges in application programming interface (API) completion tasks and find that existing solutions are unable to capture complex program dependencies in program semantics and structures. We design a new neural network model Multi-HyLSTM to overcome the newly identified challenges and comprehend complex dependencies between API calls. Our neural network is empowered with a specialized dataflow analysis to extract multiple global API dependence paths for neural network predictions. We evaluate Multi-HyLSTM on 64,478 Android Apps and predict 774,460 Java cryptographic API calls that are usually challenging for developers to use correctly. Our Multi-HyLSTM achieves an excellent top-1 API completion accuracy at 98.99%. Moreover, we show the effectiveness of our design choices through an ablation study and have released our dataset.

show abstract