DeepWukong

2021 ◽  
Vol 30 (3) ◽  
pp. 1-33
Author(s):  
Xiao Cheng ◽  
Haoyu Wang ◽  
Jiayi Hua ◽  
Guoai Xu ◽  
Yulei Sui
Keyword(s):  
Deep Learning ◽  
Program Analysis ◽  
Evaluation Studies ◽  
Software Systems ◽  
Bug Detection ◽  
C Programs ◽  
Static Code Analysis ◽  
Programming Logic ◽  
Low Dimensional ◽  
High Level

Static bug detection has shown its effectiveness in detecting well-defined memory errors, e.g., memory leaks, buffer overflows, and null dereference. However, modern software systems have a wide variety of vulnerabilities. These vulnerabilities are extremely complicated with sophisticated programming logic, and these bugs are often caused by different bad programming practices, challenging existing bug detection solutions. It is hard and labor-intensive to develop precise and efficient static analysis solutions for different types of vulnerabilities, particularly for those that may not have a clear specification as the traditional well-defined vulnerabilities. This article presents D eep W ukong , a new deep-learning-based embedding approach to static detection of software vulnerabilities for C/C++ programs. Our approach makes a new attempt by leveraging advanced recent graph neural networks to embed code fragments in a compact and low-dimensional representation, producing a new code representation that preserves high-level programming logic (in the form of control- and data-flows) together with the natural language information of a program. Our evaluation studies the top 10 most common C/C++ vulnerabilities during the past 3 years. We have conducted our experiments using 105,428 real-world programs by comparing our approach with four well-known traditional static vulnerability detectors and three state-of-the-art deep-learning-based approaches. The experimental results demonstrate the effectiveness of our research and have shed light on the promising direction of combining program analysis with deep learning techniques to address the general static code analysis challenges.

scholarly journals Transforming Event B Models into Verified C# Implementations

10.29007/9wm9 ◽  
2018 ◽  
Author(s):  
Dominique Mery ◽  
Rosemary Monahan
Keyword(s):  
Recursive Algorithm ◽  
Software Systems ◽  
Programming System ◽  
Modelling Language ◽  
C Programs ◽  
Final Code ◽  
High Level

The refinement-based approach to developing software is based on thecorrect-by-construction paradigm were software systems are constructed via the step-by-step refinement of an initial high-level specification into a final concrete specification. Proof obligations, generated during this process are discharged to ensure the consistency between refinement levels and hence the system's overall correctness.Here, we are concerned with the refinement of specifications using the Event B modelling language and its associated toolset, the Rodin platform. In particular, we focus on the final steps of the process where the final concrete specification is transformed into an executable algorithm. The transformations involved are (a) the transformation from an Event B specification into a concrete recursive algorithm and (b) the transformation from the recursive algorithm into its equivalent iterative version. We prove both transformations correct and verify the correctness of the final code in a static programme verification environment for C# programs, namely the Spec# programming system.

Problems and opportunities in training deep learning software systems

2020 ◽  
Author(s):  
Hung Viet Pham ◽  
Shangshu Qian ◽  
Jiannan Wang ◽  
Thibaud Lutellier ◽  
Jonathan Rosenthal ◽  
...  
Keyword(s):  
Deep Learning ◽  
Software Systems ◽  
Learning Software

scholarly journals Shape Neutral Analysis of Graph-based Data-structures

2018 ◽  
Vol 18 (3-4) ◽  
pp. 470-483 ◽  
Author(s):  
GREGORY J. DUCK ◽  
JOXAN JAFFAR ◽  
ROLAND H. C. YAP
Keyword(s):  
Data Structure ◽  
Data Structures ◽  
Program Analysis ◽  
Constraint Handling ◽  
C Programs ◽  
Wide Range ◽  
Target Program ◽  
Target Data ◽  
Structure Graph ◽  
Structure Properties

AbstractMalformed data-structures can lead to runtime errors such as arbitrary memory access or corruption. Despite this, reasoning over data-structure properties for low-level heap manipulating programs remains challenging. In this paper we present a constraint-based program analysis that checks data-structure integrity, w.r.t. given target data-structure properties, as the heap is manipulated by the program. Our approach is to automatically generate a solver for properties using the type definitions from the target program. The generated solver is implemented using a Constraint Handling Rules (CHR) extension of built-in heap, integer and equality solvers. A key property of our program analysis is that the target data-structure properties are shape neutral, i.e., the analysis does not check for properties relating to a given data-structure graph shape, such as doubly-linked-lists versus trees. Nevertheless, the analysis can detect errors in a wide range of data-structure manipulating programs, including those that use lists, trees, DAGs, graphs, etc. We present an implementation that uses the Satisfiability Modulo Constraint Handling Rules (SMCHR) system. Experimental results show that our approach works well for real-world C programs.

scholarly journals Deep-Framework: A Distributed, Scalable, and Edge-Oriented Framework for Real-Time Analysis of Video Streams

Sensors ◽  
2021 ◽  
Vol 21 (12) ◽  
pp. 4045
Author(s):  
Alessandro Sassu ◽  
Jose Francisco Saenz-Cogollo ◽  
Maurizio Agelli
Keyword(s):  
Deep Learning ◽  
Real Time ◽  
Video Data ◽  
Video Analytics ◽  
Web Based ◽  
Real Time Analysis ◽  
Open Source Framework ◽  
Cluster Configuration ◽  
Time Requirements ◽  
High Level

Edge computing is the best approach for meeting the exponential demand and the real-time requirements of many video analytics applications. Since most of the recent advances regarding the extraction of information from images and video rely on computation heavy deep learning algorithms, there is a growing need for solutions that allow the deployment and use of new models on scalable and flexible edge architectures. In this work, we present Deep-Framework, a novel open source framework for developing edge-oriented real-time video analytics applications based on deep learning. Deep-Framework has a scalable multi-stream architecture based on Docker and abstracts away from the user the complexity of cluster configuration, orchestration of services, and GPU resources allocation. It provides Python interfaces for integrating deep learning models developed with the most popular frameworks and also provides high-level APIs based on standard HTTP and WebRTC interfaces for consuming the extracted video data on clients running on browsers or any other web-based platform.

scholarly journals Automated Bug Detection for High-level Synthesis of Multi-threaded Irregular Applications

2020 ◽  
Vol 7 (4) ◽  
pp. 1-26
Author(s):  
Pietro Fezzardi ◽  
Fabrizio Ferrandi
Keyword(s):  
High Level Synthesis ◽  
Bug Detection ◽  
Irregular Applications ◽  
High Level

Automated Generation of a Single Shot Detector C Library from High Level Deep Learning Frameworks

2018 ◽  
Author(s):  
Luca Ranalli ◽  
Luigi Di Stefano ◽  
Emanuele Plebani ◽  
Mirko Falchetto ◽  
Danilo Pau ◽  
...  
Keyword(s):  
Deep Learning ◽  
Single Shot ◽  
Automated Generation ◽  
High Level ◽  
Learning Frameworks

Optimum Network/Framework Selection from High-Level Specifications in Embedded Deep Learning Vision Applications

2018 ◽  
pp. 369-379
Author(s):  
Delia Velasco-Montero ◽  
Jorge Fernández-Berni ◽  
Ricardo Carmona-Galán ◽  
Ángel Rodríguez-Vázquez
Keyword(s):  
Deep Learning ◽  
High Level
Sign in / Sign up

Export Citation Format

Share Document