[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Preston Moore 1 ; Thomas Wies 1 ; Marc Waldman 2 ; Phyllis Frankl 1 and Justin Cappos 1

Affiliations: 1 New York University, U.S.A. ; 2 Manhattan College, U.S.A.

Keyword(s): Domain Specific Languages, Event Processing, Environmental Bugs.

Abstract: Earlier work has proven that information extracted from recordings of an application’s activity can be tremendously valuable. However, given the many requests that pass between applications and external entities, it has been difficult to isolate the handful of patterns that indicate the potential for failure. In this paper, we propose a method that harnesses proven event processing techniques to find those problematic patterns. The key addition is PORT, a new domain specific language which, when combined with its event stream recognition and transformation engine, enables users to extract patterns in system call recordings and other streams, and then rewrite input activity on the fly. The former task can spot activity that indicates a bug, while the latter produces a modified stream for use in more active testing. We evaluated PORT’s capabilities in several ways, starting with recreating the mutators and checkers utilized by an earlier work called SEA to modify and replay the results of system calls. Our re-implementations achieved the same efficacy using fewer lines of code. We also illustrated PORT’s extensibility by adding support for detecting malicious USB commands within recorded traffic. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 79.170.44.78

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Moore, P. ; Wies, T. ; Waldman, M. ; Frankl, P. and Cappos, J. (2022). Needles in a Haystack: Using PORT to Catch Bad Behaviors within Application Recordings. In Proceedings of the 17th International Conference on Software Technologies - ICSOFT; ISBN 978-989-758-588-3; ISSN 2184-2833, SciTePress, pages 137-145. DOI: 10.5220/0011142300003266

@conference{icsoft22,
author={Preston Moore and Thomas Wies and Marc Waldman and Phyllis Frankl and Justin Cappos},
title={Needles in a Haystack: Using PORT to Catch Bad Behaviors within Application Recordings},
booktitle={Proceedings of the 17th International Conference on Software Technologies - ICSOFT},
year={2022},
pages={137-145},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011142300003266},
isbn={978-989-758-588-3},
issn={2184-2833},
}

TY - CONF

JO - Proceedings of the 17th International Conference on Software Technologies - ICSOFT
TI - Needles in a Haystack: Using PORT to Catch Bad Behaviors within Application Recordings
SN - 978-989-758-588-3
IS - 2184-2833
AU - Moore, P.
AU - Wies, T.
AU - Waldman, M.
AU - Frankl, P.
AU - Cappos, J.
PY - 2022
SP - 137
EP - 145
DO - 10.5220/0011142300003266
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic

<style> #socialicons>a span { top: 0px; left: -100%; -webkit-transition: all 0.3s ease; -moz-transition: all 0.3s ease-in-out; -o-transition: all 0.3s ease-in-out; -ms-transition: all 0.3s ease-in-out; transition: all 0.3s ease-in-out;} #socialicons>ahover div{left: 0px;} </style>