Please use this identifier to cite or link to this item: https://scholarbank.nus.edu.sg/handle/10635/236277
Title: SOFTWARE VULNERABILITY REPAIR
Authors: RIDWAN SALIHIN SHARIFFDEEN
ORCID iD:   orcid.org/0000-0001-5409-4864
Keywords: automated program repair, patch transplantation, patch backporting, trust in program repair, vulnerability repair, concolic program repair
Issue Date: 25-May-2022
Citation: RIDWAN SALIHIN SHARIFFDEEN (2022-05-25). SOFTWARE VULNERABILITY REPAIR. ScholarBank@NUS Repository.
Abstract: This thesis introduces a series of cohesive techniques tightly coupled towards the goal of generating security patches for identified software security vulnerabilities. First, we study the impeding challenges in trusted program repair, specifically addressing the trustworthiness of auto-generated patches. Considering the insights gained from our study, we propose "compilation-free program repair" to speedup the efficiency of program repair. Third, we propose a novel program repair technique “concolic program repair” that integrates a user-provided program-specification to guide program repair to find the correct patch while efficiently navigating a large search-space. In doing so, we also provide additional guarantees for the correctness of the generated patches by generating additional test-cases. Fourth, inspired by program synthesis technique, we propose a novel transformation rule synthesis algorithm that can produce properly generalized transformation rules to automatically backport trusted patches to older versions of the same software. Last, we propose a code transplantation technique to repair semantically equivalent programs that exhibit potential for a similar variant of the identified vulnerability.
URI: https://scholarbank.nus.edu.sg/handle/10635/236277
Appears in Collections:Ph.D Theses (Open)

Show full item record
Files in This Item:
File Description SizeFormatAccess SettingsVersion 
ShariffdeenRS.pdf1.96 MBAdobe PDF

OPEN

NoneView/Download

Page view(s)

154
checked on Jan 26, 2023

Download(s)

10
checked on Jan 26, 2023

Google ScholarTM

Check


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.