发布求助
文献互助 智能选刊 最新文献

2008 19th International Symposium on Software Reliability Engineering (ISSRE)最新文献

筛选
英文 中文
Automated Generation of Pointcut Mutants for Testing Pointcuts in AspectJ Programs 在AspectJ程序中测试切入点的切入点突变的自动生成
2008 19th International Symposium on Software Reliability Engineering (ISSRE) Pub Date : 2008-11-10 DOI: 10.1109/ISSRE.2008.58
P. Anbalagan, Tao Xie
{"title":"Automated Generation of Pointcut Mutants for Testing Pointcuts in AspectJ Programs","authors":"P. Anbalagan, Tao Xie","doi":"10.1109/ISSRE.2008.58","DOIUrl":"https://doi.org/10.1109/ISSRE.2008.58","url":null,"abstract":"Aspect-oriented programming (AOP) provides new modularization of software systems by encapsulating cross-cutting concerns. AspectJ, an AOP language, uses abstractions such as pointcuts, advice, and aspects to achieve AOPpsilas primary functionality. Faults in pointcuts can cause aspects to fail to satisfy their requirements. Hence, testing pointcuts is necessary in order to ensure correctness of aspects. In mutation testing of pointcuts (a type of fault-based pointcut testing), the number of mutants (i.e., variations) for pointcuts is usually large due to the usage of wildcards. It is tedious to manually identify effective mutants that are of appropriate strength and resemble closely the original pointcut expression, reflecting the kind of mistakes that developers may make. To reduce developerspsila effort in this process, we have developed a new framework that automatically identifies the strength of each pointcut and generates pointcut mutants with different strengths. Developers can inspect the pointcut mutants and their join points for pointcut correctness or choose the mutants for conducting mutation testing. We conducted an empirical study on applying our framework on pointcuts from existing AspectJ programs. The results show that our framework can provide valuable assistance in generating effective mutants that are close to the original pointcuts and are of appropriate strength.","PeriodicalId":448275,"journal":{"name":"2008 19th International Symposium on Software Reliability Engineering (ISSRE)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2008-11-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"134485101","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 42
Automated Fix Generator for SQL Injection Attacks SQL注入攻击的自动修复生成器
2008 19th International Symposium on Software Reliability Engineering (ISSRE) Pub Date : 2008-11-10 DOI: 10.1109/ISSRE.2008.44
Fred Dysart, Mark Sherriff
{"title":"Automated Fix Generator for SQL Injection Attacks","authors":"Fred Dysart, Mark Sherriff","doi":"10.1109/ISSRE.2008.44","DOIUrl":"https://doi.org/10.1109/ISSRE.2008.44","url":null,"abstract":"A critical problem facing todaypsilas Internet community is the increasing number of attacks exploiting flaws found in Web applications. This paper specifically targets input validation vulnerabilities found in SQL queries that may lead to SQL Injection Attacks (SQLIAs). We introduce a tool that automatically detects and suggests fixes to SQL queries that are found to contain SQL Injection Vulnerabilities (SQLIVs). Testing was performed against phpBB v2.0, an open source forum package, to determine the accuracy and efficacy of our software.","PeriodicalId":448275,"journal":{"name":"2008 19th International Symposium on Software Reliability Engineering (ISSRE)","volume":"27 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2008-11-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"133789571","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 22
Detection and Prediction of Resource-Exhaustion Vulnerabilities 资源耗尽漏洞的检测与预测
2008 19th International Symposium on Software Reliability Engineering (ISSRE) Pub Date : 2008-11-10 DOI: 10.1109/ISSRE.2008.47
João Antunes, N. Neves, P. Veríssimo
{"title":"Detection and Prediction of Resource-Exhaustion Vulnerabilities","authors":"João Antunes, N. Neves, P. Veríssimo","doi":"10.1109/ISSRE.2008.47","DOIUrl":"https://doi.org/10.1109/ISSRE.2008.47","url":null,"abstract":"Systems connected to the Internet are highly susceptible to denial-of-service attacks that can compromise service availability, causing damage to customers and providers. Due to errors in the design or coding phases, particular client-server interactions can be made to consume much more resources than necessary easing the success of this kind of attack.To address this issue we propose a new methodology for the detection and identification of local resource-exhaustion vulnerabilities. The methodology also gives a prediction on the necessary effort to exploit a specific vulnerability, useful to support decisions regarding the configuration of a system, in order to sustain a certain attack magnitude.The methodology was implemented in a tool called PREDATOR that is able to automatically generate malicious traffic and to perform post-processing analysis to build accurate resource usage projections on a given target server.The validity of the approach was demonstrated with several synthetic programs and well-known DNS servers.","PeriodicalId":448275,"journal":{"name":"2008 19th International Symposium on Software Reliability Engineering (ISSRE)","volume":"99 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2008-11-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"132264070","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 27
A QoS-Aware Middleware for Fault Tolerant Web Services 面向容错Web服务的qos感知中间件
2008 19th International Symposium on Software Reliability Engineering (ISSRE) Pub Date : 2008-11-01 DOI: 10.1109/ISSRE.2008.17
Zibin Zheng, Michael R. Lyu
{"title":"A QoS-Aware Middleware for Fault Tolerant Web Services","authors":"Zibin Zheng, Michael R. Lyu","doi":"10.1109/ISSRE.2008.17","DOIUrl":"https://doi.org/10.1109/ISSRE.2008.17","url":null,"abstract":"Reliability is a key issue of the service-oriented architecture (SOA) which is widely employed in critical domains such as e-commerce and e-government. Redundancy-based fault tolerance strategies are usually employed for building reliable SOA on top of unreliable remote Web services. Based on the idea of user-collaboration, this paper proposes a QoS-aware middleware for fault tolerant Web services. Based on this middleware, service-oriented applications can dynamically adjust their optimal fault tolerance strategy to achieve good service reliability as well as good overall performance. A dynamic fault tolerance replication strategy is designed and evaluated. Experiments are conducted to illustrate the advantage of the proposed middleware as well as the dynamic fault tolerance replication strategy. Comparison of the effectiveness of the proposed dynamic fault tolerance strategy and various traditional fault tolerance strategies are also provided.","PeriodicalId":448275,"journal":{"name":"2008 19th International Symposium on Software Reliability Engineering (ISSRE)","volume":"70 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2008-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"128573952","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 23
Anything You Want to Ask about Software Reliability Engineering 关于软件可靠性工程的任何问题
2008 19th International Symposium on Software Reliability Engineering (ISSRE) Pub Date : 2008-11-01 DOI: 10.1109/ISSRE.2008.67
M. Hinchey, K. Kanoun, M. Lindvall, Michael R. Lyu, T. Margaria, V. Mendiratta, P. Pettersson, N. Schneidewind, W. E. Wong
{"title":"Anything You Want to Ask about Software Reliability Engineering","authors":"M. Hinchey, K. Kanoun, M. Lindvall, Michael R. Lyu, T. Margaria, V. Mendiratta, P. Pettersson, N. Schneidewind, W. E. Wong","doi":"10.1109/ISSRE.2008.67","DOIUrl":"https://doi.org/10.1109/ISSRE.2008.67","url":null,"abstract":"The panel was a repeat of a panel we have had at every ISSRE since ISSRE97 (of course, the content was different). There were no presentations, only questions. The audience was invited to ask questions on anything: theory, details of application, research needed, solutions to problems on development projects, research issues.","PeriodicalId":448275,"journal":{"name":"2008 19th International Symposium on Software Reliability Engineering (ISSRE)","volume":"48 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2008-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"127511538","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 1
Cost Curve Evaluation of Fault Prediction Models 故障预测模型的成本曲线评估
2008 19th International Symposium on Software Reliability Engineering (ISSRE) Pub Date : 2008-11-01 DOI: 10.1109/ISSRE.2008.54
Yue Jiang, B. Cukic, T. Menzies
{"title":"Cost Curve Evaluation of Fault Prediction Models","authors":"Yue Jiang, B. Cukic, T. Menzies","doi":"10.1109/ISSRE.2008.54","DOIUrl":"https://doi.org/10.1109/ISSRE.2008.54","url":null,"abstract":"Prediction of fault prone software components is one of the most researched problems in software engineering. Many statistical techniques have been proposed but there is no consensus on the methodology to select the \"best model\" for the specific project. In this paper, we introduce and discuss the merits of cost curve analysis of fault prediction models. Cost curves allow software quality engineers to introduce project-specific cost of module misclassification into model evaluation. Classifying a software module as fault-prone implies the application of some verification activities, thus adding to the development cost. Misclassifying a module as fault free carries the risk of system failure, also associated with cost implications. Through the analysis of sixteen projects from public repositories, we observe that software quality does not necessarily benefit from the prediction of fault prone components. The inclusion of misclassification cost in model evaluation may indicate that even the \"best\" models achieve performance no better than trivial classification. Our results support a recommendation to adopt cost curves as one of the standard methods for software quality model performance evaluation.","PeriodicalId":448275,"journal":{"name":"2008 19th International Symposium on Software Reliability Engineering (ISSRE)","volume":"CE-31 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2008-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"126544318","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 63
An Algebra-Based Reliability Prediction Approach for Composite Web Services 基于代数的复合Web服务可靠性预测方法
2008 19th International Symposium on Software Reliability Engineering (ISSRE) Pub Date : 2008-11-01 DOI: 10.1109/ISSRE.2008.40
Ning Huang, Dong Wang, Xiaoguang Jia
{"title":"An Algebra-Based Reliability Prediction Approach for Composite Web Services","authors":"Ning Huang, Dong Wang, Xiaoguang Jia","doi":"10.1109/ISSRE.2008.40","DOIUrl":"https://doi.org/10.1109/ISSRE.2008.40","url":null,"abstract":"As the most attractive realization of component-based software, composite Web service asks a heavy demand for reliability prediction in the early stage for service discovery and service composition. Although it is believed that input should be one of the most important aspects affecting the reliability of a component-based system, research of both giving more details on an operational profile and considering software architecture to get more accurate reliability prediction is scant. This paper describes an algebra-based reliability prediction approach in three aspects: (i) a sub-set of OWL-S that provides reliability estimation information is discussed; (ii) a framework that describes syntax and reliability prediction semantics of the sub-set is explained and implemented in Maude; (iii) an example of how to use the framework to calculate reliability is studied.","PeriodicalId":448275,"journal":{"name":"2008 19th International Symposium on Software Reliability Engineering (ISSRE)","volume":"186 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2008-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"133730836","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 7
首页 上一页
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
请完成安全验证×
相关产品
×
本文献相关产品
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:604180095
Book学术官方微信