自动程序修复中的安全隐患场景及解决方案

doi:10.19665/j.issn1001-2400.2019.06.021

西安电子科技大学学报 ›› 2019, Vol. 46 ›› Issue (6): 147-154.doi: 10.19665/j.issn1001-2400.2019.06.021

自动程序修复中的安全隐患场景及解决方案

黄昱铭¹,马建峰^1,²,刘志全¹(),魏凯敏¹,冯丙文^1,^3,^4,⁵

^1. 暨南大学信息科学技术学院,广东广州 510632
^2. 西安电子科技大学网络与信息安全学院,陕西西安 710071
^3. 中国科学院信息工程研究所信息安全国家重点实验室,北京 100093
^4. 广东省信息安全技术重点实验室,广东广州 520006
^5. 广东省智能信息处理重点实验室/深圳市媒体信息内容安全重点实验室,广东深圳 518060

收稿日期:2019-06-02 出版日期:2019-12-20 发布日期:2019-12-21
通讯作者: 刘志全
作者简介:黄昱铭(1995—),男,暨南大学硕士研究生,E-mail:406744068@qq.com
基金资助:
国家自然科学基金(61802146);国家自然科学基金(61802145);广东省自然科学基金(2018A030313813);广东省自然科学基金(2018A030313387);广东省自然科学基金(2019B010136003);广东省自然科学基金(2019B010137005);广东省自然科学基金(2017A030313390);广东省自然科学基金(2017A030313334);国家重点研发计划(2018YFB1402600);广州市科技计划(201804010428);广州市科技计划(201802010061);中央高校基本科研业务费专项资金(11618332);中央高校基本科研业务费专项资金(11617343);信息安全国家重点实验室开放课题;广东省信息安全技术重点实验室开放基金(2017B030314131);广东省智能信息处理重点实验室/深圳市媒体信息内容安全重点实验室开放基金

Security risk scenarios and solutions in automatic program repair

HUANG Yuming¹,MA Jianfeng^1,²,LIU Zhiquan¹(),WEI Kaimin¹,FENG Bingwen^1,^3,^4,⁵

^1. College of Information Science and Technology, Jinan Univ., Guangzhou 510632, China
^2. School of Cyber Engineering, Xidian Univ., Xi’an 710071, China
^3. State Key Lab. of Information Security, Institute of Information Engineering,Chinese Academy of Sciences, Beijing 100093, China
^4. Guangdong Provincial Key Lab. of Information Security Technology, Guangzhou 520006, China
^5. Guangdong Key Lab. of Intelligent Information Processing and Shenzhen Key Lab. of Media Security, Shenzhen 518060, China

Received:2019-06-02 Online:2019-12-20 Published:2019-12-21
Contact: Zhiquan LIU

摘要/Abstract

摘要：

为提高自动程序修复方法的修复质量,指出在自动程序修复方法修复程序缺陷过程中存在的两种安全隐患场景,即脏补丁源场景和脏测试集场景,并为两种安全隐患场景分别提出相应的解决方案,即补丁校验方案和测试集校验方案。实验结果表明, 所提出的补丁校验方案能够促使自动程序修复方法获取安全性更高的补丁,所提出的测试集校验方案能够准确地定位测试集中的脏测试用例,误报率为7.20%。

关键词: 自动程序修复, 静态分析, 测试集, 软件安全

Abstract:

To improve the quality of the Automatic Program Repair (APR) method, this research points out two scenarios, namely tainted patch sources and error test suites, which may lead to security risks in the APR-based software defect fix. Moreover, the research proposes the corresponding solutions, namely the patch verification schema and the test suite verification schema, respectively. Experimental results demonstrate that the patch verification schema can enable the APR to obtain a more secure patch, and that the test suite verification scheme can accurately locate the error test cases in the test suite with a false positive rate of 7.20%.

Key words: automatic program repair, static analysis, test suite, software security

中图分类号:

TP309

黄昱铭,马建峰,刘志全,魏凯敏,冯丙文. 自动程序修复中的安全隐患场景及解决方案[J]. 西安电子科技大学学报, 2019, 46(6): 147-154.

HUANG Yuming,MA Jianfeng,LIU Zhiquan,WEI Kaimin,FENG Bingwen. Security risk scenarios and solutions in automatic program repair[J]. Journal of Xidian University, 2019, 46(6): 147-154.

图/表 12

图1

图2

图3

图4

图5

表1

表2

图6

图7

表3

表4

图8

参考文献 16

[1]	李斌, 贺也平, 马恒太 . 程序自动修复: 关键问题及技术[J]. 软件学报, 2019,30(2):244-265.
	LI Bin, HE Yeping, MA Hengtai . Automatic Program Repair: Key Problems and Technologies[J]. Journal of Software, 2019,30(2):244-265.
[2]	MONPERRUS M . Automatic Software Repair: a Bibliography[J]. ACM Computing Surveys, 2018,51(1):17.
[3]	HARMAN M, MANSOURI S A, ZHANG Y . Search-based Software Engineering: Trends, Techniques and Applications[J]. ACM Computing Surveys, 2012,45(1):11.
[4]	LE GOUES C, NGUYEN T V, FORREST S , et al. GenProg: a Generic Method for Automatic Software Repair[J]. IEEE Transactions on Software Engineering, 2012,38(1):54-72. doi: 10.1109/TSE.2011.104
[5]	XIONG Y, WANG J, YAN R , et al. Precise Condition Synconfproc for Program Repair[C]//Proceedings of the 2017 IEEE/ACM 39th International Conference on Software Engineering. Piscataway: IEEE, 2017: 416-426.
[6]	GUPTA R, PAL S, KANADE A , et al. Deepfix: Fixing Common C Language Errors by Deep Learning[C]//Proceedings of the 2017 31st AAAI Conference on Artificial Intelligence Palo Alto: AAAI Press, 2017: 1345-1351.
[7]	KIM D, NAM J, SONG J , et al. Automatic Patch Generation Learned from Human-written Patches[C]//Proceedings of the 2013 International Conference on Software Engineering. Washington: IEEE Computer Society, 2013: 802-811.
[8]	LE X B D, THUNG F, LO D , et al. Overfitting in Semantics-based Automated Program Repair[J]. Empirical Software Engineering, 2018,23(5):3007-3033. doi: 10.1007/s10664-017-9577-2
[9]	XIN Q, REISS S P . Identifying Test-suite-overfitted Patches through Test Case Generation[C]//Proceedings of the 2017 26th ACM SIGSOFT International Symposium on Software Testing and Analysis. New York: ACM, 2017: 226-236.
[10]	KIM S, WOO S, LEE H , et al. VUDDY: a Scalable Approach for Vulnerable Code Clone Discovery[C]//Proceedings of the 2017 IEEE Symposium on Security and Privacy. Piscataway: IEEE, 2017: 595-614.
[11]	LAVOIE T, EILERS-SMITH M, MERLO E . Challenging Cloning Related Problems with GPU-based Algorithms[C]//Proceedings of the 2010 International Conference on Software Engineering. Washington: IEEE Computer Society, 2010: 25-32.
[12]	TU D, CHEN R, DU Z , et al. A Method of Log File Analysis for Test Oracle[C]//Proceedings of the 2009 International Conference on Scalable Computing and Communications - The 8th International Conference on Embedded Computing. Washington: IEEE Computer Society, 2009: 351-354.
[13]	MCCABE T J . A Complexity Measure[J]. IEEE Transactions on Software Engineering, 1976,2(4):308-320. doi: 10.1007/s11096-019-00957-6 pmid: 31865595
[14]	段钊, 刘锟龙 . 采用CPAChecker的动态程序验证[J]. 西安电子科技大学学报, 2019,46(1):33-38. doi: 10.1002/(sici)1097-4636(199907)46:1&lt;33::aid-jbm4&gt;3.0.co;2-k pmid: 10357133
	DUAN Zhao, LIU Kunlong . Dynamic Program Verification via a CPAChecker[J]. Journal of Xidian University, 2019,46(1):33-38. doi: 10.1002/(sici)1097-4636(199907)46:1&lt;33::aid-jbm4&gt;3.0.co;2-k pmid: 10357133
[15]	LATTNER C, ADVE V . LLVM: A Compilation Framework for Lifelong Program Analysis and Transformation[C]//Proceedings of the 2004 International Symposium on Code Generation and Optimization. Washington: IEEE Computer Society, 2004: 75-86.
[16]	JUST R, JALALI D, ERNST M D . Defects4J: a Database of Existing Faults to Enable Controlled Testing Studies for Java Programs[C]//Proceedings of the 2014 International Symposium on Software Testing and Analysis. New York: ACM, 2014: 437-440.

项目名称	缺陷数	测试用例数
Chart	26	2 205
Lang	65	2 245
Math	105	3 602
Time	27	4 130

项目名称	测试用例数	错误用例数	实际检出数	误报率/%
Chart	4 410	35	38	8.57
Lang	4 490	38	40	5.26
Math	7 204	57	61	7.02
Time	8 260	63	68	7.94

项目名称	添加GenProg前修复缺陷数	添加GenProg后修复缺陷数
Chart	0	0
Lang	0	0
Math	5	5
Time	0	0

项目	添加PAR前修复缺陷数	添加PAR后修复缺陷数
Chart	0	0
Lang	1	1
Math	3	3
Time	0	0

自动程序修复中的安全隐患场景及解决方案

Security risk scenarios and solutions in automatic program repair

RichHTML

PDF (PC)

赞

可视化

摘要/Abstract

引用本文

使用本文

图/表 12

参考文献 16

相关文章 3

Metrics

本文评价

推荐阅读 10

[1]	黄昱铭,马建峰,刘志全,冯丙文,魏凯敏. 一种基于规则的自动程序修复方法[J]. 西安电子科技大学学报, 2020, 47(4): 117-123.
[2]	苏子剑;梁昌洪;李龙;翟会清. EBG高阻表面的准静态等效媒质模型[J]. J4, 2015, 42(5): 92-97.
[3]	张立勇；王献青；陈平；邓凡；孔德兰. 一种基于逆向迭代搜索的快速隐通道检测方法[J]. J4, 2011, 38(3): 128-135.