Badger: Complexity Analysis with Fuzzing and Symbolic Execution
| dc.contributor.author | Noller, Yannic | |
| dc.contributor.author | Kersten, Rody | |
| dc.contributor.author | Pasareanu, Corina | |
| dc.contributor.editor | Becker, Steffen | |
| dc.contributor.editor | Bogicevic, Ivan | |
| dc.contributor.editor | Herzwurm, Georg | |
| dc.contributor.editor | Wagner, Stefan | |
| dc.date.accessioned | 2019-03-14T11:49:13Z | |
| dc.date.available | 2019-03-14T11:49:13Z | |
| dc.date.issued | 2019 | |
| dc.description.abstract | In this work, we report on our recent research results on “Badger: Complexity Analysis with Fuzzing and Symbolic Execution” which was published in the proceedings of the 27th ACM SIGSOFT International Symposium on Software Testing and Analysis [NKP18]. Badger employs a hybrid software analysis technique that combines fuzzing and symbolic execution for finding performance bottlenecks in software. Our primary goal is to use Badger to discover vulnerabilities which are related to worst-case time or space complexity of an application. To this end, we use a cost-guided fuzzing approach, which produces inputs to increase the code coverage, but also to maximize a resource-related cost function, such as execution time or memory usage. We combine this fuzzing technique with a customized symbolic execution, which is also guided by heuristics that aim to increase the same cost. Experimental evaluation shows that this hybrid approach enables us to use the strengths of both techniques and overcome their individual weaknesses. | en |
| dc.identifier.doi | 10.18420/se2019-16 | |
| dc.identifier.isbn | 978-3-88579-686-2 | |
| dc.identifier.pissn | 1617-5468 | |
| dc.identifier.uri | https://dl.gi.de/handle/20.500.12116/20874 | |
| dc.language.iso | en | |
| dc.publisher | Gesellschaft für Informatik e.V. | |
| dc.relation.ispartof | Software Engineering and Software Management 2019 | |
| dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings, Volume P-292 | |
| dc.subject | Software Testing | |
| dc.subject | Complexity Analysis | |
| dc.subject | Fuzzing | |
| dc.subject | Symbolic Execution | |
| dc.title | Badger: Complexity Analysis with Fuzzing and Symbolic Execution | en |
| dc.type | Text/Conference Paper | |
| gi.citation.endPage | 66 | |
| gi.citation.publisherPlace | Bonn | |
| gi.citation.startPage | 65 | |
| gi.conference.date | 18.-22. Februar 2019 | |
| gi.conference.location | Stuttgart, Germany | |
| gi.conference.sessiontitle | Session 4: Traceability, Performanz und Continuous SE |
Dateien
Originalbündel
1 - 1 von 1