A5052208015- Software Reliability and Analysis Research
- Software Engineering Research
- Software Testing and Debugging Techniques
- Advanced Malware Detection Techniques
- Scientific Computing and Data Management
- Radiation Effects in Electronics
- Advanced Data Processing Techniques
- Engineering Education and Technology
- Formal Methods in Verification
- Web Data Mining and Analysis
- Software System Performance and Reliability
- Web Application Security Vulnerabilities
Russian-Armenian University
2019-2025
Existed methods of code clones detection have some restrictions. Textual and lexical approaches cannot detect strongly modified fragments code. Syntactic metrics based strong modifications with low accuracy. On the contrary, semantic approach accurately detects cloned small changes as well ones. Methods on this are not scalable for analysis large projects. This paper describes LLVM-based clone framework, which uses program analysis. It has high accuracy is million lines source The tool...
Comparison of two binary files has many practical applications: the ability to detect programmatic changes between versions, find old versions statically linked libraries prevent use well-known bugs, malware analysis, etc. In this article, a framework for comparison is presented. Framework uses IdaPro [1] disassembler and Binnavi [2] platform recover structure target program represent it as call graph (CG). A dependence (PDG) corresponds each vertex CG. The proposed algorithm consists main...
During the software development developers often copy and paste fragments of code to achieve desired result. Copying can lead variety errors, as well increase size source binary code. The problem finding semantically similar pieces (clones) in becomes actual due unavailability many programs. first part article is dedicated analysis existing methods for clone In second we provide a newly developed tool clones work divided into three main stages. stage based on Binnavi [1] framework, which...
Software developers make mistakes that can lead to failures of a software product. One approach detect defects is static analysis: examine code without execution. Currently, various source analysis tools are widely used defects. However, not enough. The reason for this the use third-party binary libraries, unprovability correctness all compiler optimizations. This paper introduces BinSide : framework detection. It does interprocedural, context-sensitive and flow-sensitive analysis. uses...
This article presents novel method for efficient fuzzing of programs accepting complex structured data. It generates input data based on formal grammar description. Data generator is periodically autoconfigured target code coverage. means that the type generated dynamically changed to increase uses descriptions BNF (Backus-Naur Form) rules in ANTLR (ANother Tool Language Recognition) platform. More than 250 languages and formats are supported. Every rule designed as universal pushdown...
Software developers often copy and paste code within a project. Due to the possible existence of defects in initial fragment, this can lead propagation across changes new version (patches) usually contain bug fixes, which be used for detecting similar The purpose work is develop method analyzing nature patches between versions executables finding unpatched fragments. At first, two are compared common changed parts code. Then, determines that possibly fixes bugs. final step detection It based...
Binary code comparison tools are widely used to analyze vulnerabilities, search for malicious code, detect copyright violations, etc. The article discusses three - BCC, BinDiff, Diaphora. Those based on static analysis of programs. receive as input data two versions the program in binary form and match their functions. purpose is assess quality tools. We developed a testing system automatically determine precision recall each instrument. F <inf xmlns:mml="http://www.w3.org/1998/Math/MathML"...
Software developers often resort to borrowing code both within one project and from another. Due the possible content of errors in source snippet, this can lead error propagation across program. Libraries used without may also contain potential errors. The purpose work is developing methods for analyzing nature changes between versions software components which missing. And potentially related correction defects, search similar, but not fixed defects using clone methods. implementation...
Recently, more and software companies are interested in tools to improve the stability security of their product. The closed libraries third-party applications used by developers may contain defects, use which an attacker or a user lead violation application. In some cases, source code problem areas be missing. At moment, static methods for finding defects gaining popularity, allow that unattainable dynamic methods. Static algorithms studying model program, including call graph, control...
Code comparison methods and tools are widely spread. However, most of the approaches target either only source code or binary code, for matching to less investigated. In this article, we introduce Bin2Source: a tool code. It gets as input (without debug information) with its compilation commands. As result, returns matched functions instructions The major advantage Bin2Source compared existing is capacity perform instruction-to-instruction matching. can be used copyright infringements...