• SuGroupSchedule

Summer 2008

3pm - 4pm, Wednesdays, Kemper 3083

July 2: Lingxiao on perturbation

As we mentioned before, "perturbation" may be a general, practical technique for detecting program bugs. We'll look at a particular instance of perturbation of floating-point arithmetics for detecting numerical instability. Related paper:

• "Perturbing and evaluating numerical programs without recompilation—the wonglediff way", P. R. Eggert and D. S. Parker, UCLA,http://www3.interscience.wiley.com/cgi-bin/fulltext/109859345/PDFSTART, Software—Practice & Experience, Volume 35, Issue 4 (April 2005), Pages: 313 - 322

Optional contents for discussion:

• "Monte Carlo Arithmetic: a framework for the statistical analysis of roundoff error"http://www.cs.ucla.edu/~stott/mca/CSD-970014.ps.gz

We could focus on brainstorming more possible instances of the perturbation idea. For example, as mentioned by Earl and Andreas, a paper at PLDI08 may be viewed as a perturbation of thread schedulers for detecting real/harmful data races:

• “Race Directed Random Testing of Concurrent Programs” Koushik Sen, PLDI'08.

  • paper(ps) paper(pdf) slides(ppt)

July 9: Taeho

I plan to present a following paper and discuss on this.

• Samuel T. King, Peter M. Chen, "Backtracking Intrusions" , Proceedings of the 2003 Symposium on Operating Systems Principles (SOSP), October 2003

July 17: Gary's Practice Talk

Gary talked about his ISSTA'08 paper.

• Dynamic Test Input Generation for Web Applications, Gary Wassermann, Dachuan Yu, Ajay Chander, Dinakar Dhurjati, Hiroshi Inamura, Zhendong Su, ISSTA'08.

July 23: Earl

Earl is going to talk about a paper from Oakland'08.

• Saner: Composing Static and Dynamic Analysis to Validate Sanitization in Web Applications, Marco Cova, Vika Felmetsger, Davide Balzarotti, Nenad Jovanovic, Christopher Kruegel, Engin Kirda, Giovanni Vigna, Oakland'08.

Optinal paper for discussion if time permits:

• Secure web browsing with the OP web browser, Chris Grier, Shuo Tang, Samuel King, Oakland'08.

August 6: Dennis

Dennis is going to talk about a paper from Usenix Security'08.

• Adam Barth, Collin Jackson, and John C. Mitchell, Securing Frame Communication in Browsers. Proceedings of the 17th USENIX Security Symposium (USENIX Security 2008).

August 13: Sophia

Sophia will present a paper from Usenix Security'08.

• Automatic Generation of XSS and SQL Injection Attacks with Goal-Directed Model Checking. Michael Martin, and Monica S. Lam. Usenix Security'08.

August 20: Zhongxian

Zhongxian is going to give a brief self-introduction first, and then talk about his undergraduate research: change impact analysis for aspect-oriented programs. Here is the publication reference:

• Celadon: A Change Impact Analysis Tool for Aspect-Oriented Programs. Sai Zhang, Zhongxian Gu, Yu Lin, and Jianjun Zhao. ICSE '08

August 27: Andreas

Semptember 3:

Semptember 10:

Semptember 17:

Previous Su Group Meeting Schedules

SpringSchedule, 2008