Please use this identifier to cite or link to this item:
https://scholarbank.nus.edu.sg/handle/10635/236277
Title: | SOFTWARE VULNERABILITY REPAIR | Authors: | RIDWAN SALIHIN SHARIFFDEEN | ORCID iD: | orcid.org/0000-0001-5409-4864 | Keywords: | automated program repair, patch transplantation, patch backporting, trust in program repair, vulnerability repair, concolic program repair | Issue Date: | 25-May-2022 | Citation: | RIDWAN SALIHIN SHARIFFDEEN (2022-05-25). SOFTWARE VULNERABILITY REPAIR. ScholarBank@NUS Repository. | Abstract: | This thesis introduces a series of cohesive techniques tightly coupled towards the goal of generating security patches for identified software security vulnerabilities. First, we study the impeding challenges in trusted program repair, specifically addressing the trustworthiness of auto-generated patches. Considering the insights gained from our study, we propose "compilation-free program repair" to speedup the efficiency of program repair. Third, we propose a novel program repair technique “concolic program repair” that integrates a user-provided program-specification to guide program repair to find the correct patch while efficiently navigating a large search-space. In doing so, we also provide additional guarantees for the correctness of the generated patches by generating additional test-cases. Fourth, inspired by program synthesis technique, we propose a novel transformation rule synthesis algorithm that can produce properly generalized transformation rules to automatically backport trusted patches to older versions of the same software. Last, we propose a code transplantation technique to repair semantically equivalent programs that exhibit potential for a similar variant of the identified vulnerability. | URI: | https://scholarbank.nus.edu.sg/handle/10635/236277 |
Appears in Collections: | Ph.D Theses (Open) |
Show full item record
Files in This Item:
File | Description | Size | Format | Access Settings | Version | |
---|---|---|---|---|---|---|
ShariffdeenRS.pdf | 1.96 MB | Adobe PDF | OPEN | None | View/Download |
Google ScholarTM
Check
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.