{"title":"基于程序崩溃状态核心行为提取的崩溃聚类技术","authors":"Hao Du, Chenyu Yan, Li Lu","doi":"10.1117/12.2680147","DOIUrl":null,"url":null,"abstract":"Crash report analysis is a necessary step for software maintainers before fixing software bugs. Fuzzing and symbolic execution tools are often used to automate the generation of crash reports, but there are a large number of duplicate crash reports. Although it uses heuristics such as stack hashing, crash points, etc. to reduce duplicate crash reports, the false alarm rate is high and still requires manual analysis to identify them, which requires considerable effort. In this paper, we propose a crash clustering method based on program crash state extraction, which mainly uses fuzzing techniques to explore the program state space, selectively performs path reduction to generate the core behavior of the crashed program runtime, collects the path information for core behavior and generates feature vectors. Then discriminates whether different crash samples are caused by the same root cause through similarity comparison. We evaluated our tool Diccriminate in real software with real vulnerabilities, and the experimental results show that it can perform crash clustering with 94.31% accuracy, which is more than 20% improvement over existing advanced crash clustering techniques, validating the feasibility and practicality of the method in this paper.","PeriodicalId":201466,"journal":{"name":"Symposium on Advances in Electrical, Electronics and Computer Engineering","volume":"12704 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-05-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Crash clustering technique based on core behavior extraction of program crash states\",\"authors\":\"Hao Du, Chenyu Yan, Li Lu\",\"doi\":\"10.1117/12.2680147\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Crash report analysis is a necessary step for software maintainers before fixing software bugs. Fuzzing and symbolic execution tools are often used to automate the generation of crash reports, but there are a large number of duplicate crash reports. Although it uses heuristics such as stack hashing, crash points, etc. to reduce duplicate crash reports, the false alarm rate is high and still requires manual analysis to identify them, which requires considerable effort. In this paper, we propose a crash clustering method based on program crash state extraction, which mainly uses fuzzing techniques to explore the program state space, selectively performs path reduction to generate the core behavior of the crashed program runtime, collects the path information for core behavior and generates feature vectors. Then discriminates whether different crash samples are caused by the same root cause through similarity comparison. We evaluated our tool Diccriminate in real software with real vulnerabilities, and the experimental results show that it can perform crash clustering with 94.31% accuracy, which is more than 20% improvement over existing advanced crash clustering techniques, validating the feasibility and practicality of the method in this paper.\",\"PeriodicalId\":201466,\"journal\":{\"name\":\"Symposium on Advances in Electrical, Electronics and Computer Engineering\",\"volume\":\"12704 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-05-31\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Symposium on Advances in Electrical, Electronics and Computer Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1117/12.2680147\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Symposium on Advances in Electrical, Electronics and Computer Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1117/12.2680147","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Crash clustering technique based on core behavior extraction of program crash states
Crash report analysis is a necessary step for software maintainers before fixing software bugs. Fuzzing and symbolic execution tools are often used to automate the generation of crash reports, but there are a large number of duplicate crash reports. Although it uses heuristics such as stack hashing, crash points, etc. to reduce duplicate crash reports, the false alarm rate is high and still requires manual analysis to identify them, which requires considerable effort. In this paper, we propose a crash clustering method based on program crash state extraction, which mainly uses fuzzing techniques to explore the program state space, selectively performs path reduction to generate the core behavior of the crashed program runtime, collects the path information for core behavior and generates feature vectors. Then discriminates whether different crash samples are caused by the same root cause through similarity comparison. We evaluated our tool Diccriminate in real software with real vulnerabilities, and the experimental results show that it can perform crash clustering with 94.31% accuracy, which is more than 20% improvement over existing advanced crash clustering techniques, validating the feasibility and practicality of the method in this paper.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
