Sip4J: Statically Inferring Access Permission Contracts for Parallelising Sequential Java Programs (ASE 2019 - Demonstrations)

Who

Ayesha Sadiq, Li Li, Yuan-Fang Li, Ijaz Ahmed, Sea Ling

Track

ASE 2019 Demonstrations

Time Zone

The program is currently displayed in (GMT-08:00) Tijuana, Baja California.

Use conference time zone: (GMT-08:00) Tijuana, Baja CaliforniaSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

When

Thu 14 Nov 2019 10:00 - 10:40 at Kensington Ballroom - Poster Session: Tool Demonstrations 3
Tue 12 Nov 2019 17:30 - 17:40 at Hillcrest - Security Chair(s): Julia Rubin

Abstract

This paper presents Sip4J, a fully automated, scalable and effective tool to automatically generate access permission contracts for a sequential Java program. The access permission contracts, which represent the dependency of code blocks, have been frequently used to enable concurrent execution of sequential programs. Those permission contracts, unfortunately, need to be manually created by programmers, which is known to be time- consuming, laborious and error-prone. To mitigate those manual efforts, Sip4J performs inter-procedural static analysis of Java source code to automatically extract the implicit dependencies in the program and subsequently leverages them to automatically generate access permission contracts, following the Design by Contract principle. The inferred specifications are then used to identify the concurrent (immutable) methods in the program. Experimental results further show that Sip4J is useful and effective towards generating access permission contracts for sequential Java programs.

Ayesha Sadiq

Monash University

Li Li

Monash University, Australia

Australia

Yuan-Fang Li

Monash University

Australia

Ijaz Ahmed

University of Lahore

Sea Ling

Monash University

Time Zone

The program is currently displayed in (GMT-08:00) Tijuana, Baja California.

Use conference time zone: (GMT-08:00) Tijuana, Baja CaliforniaSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

Display full programSpecify a time band

Save

Session Program

Tue 12 Nov
Times are displayed in time zone: Tijuana, Baja California change

	16:00 - 17:40: SecurityPapers / Demonstrations / Research Papers / Journal First Presentations at Hillcrest Chair(s): Julia RubinUniversity of British Columbia

	16:00 - 16:20 Talk		Performance-Boosting Sparsification of the IFDS Algorithm with Applications to Taint AnalysisACM SIGSOFT Distinguished Paper Award Research Papers Dongjie HeUniversity of New South Wales; Institute of Computing Technology, CAS; University of Chinese Academy of Sciences, Haofeng LiInstitute of Computing Technology, CAS; University of Chinese Academy of Sciences, Lei WangInstitute of Computing Technology, Chinese Academy of Science, Haining MengInstitute of Computing Technology, CAS; University of Chinese Academy of Sciences, Hengjie ZhengInstitute of Computing Technology, CAS; University of Chinese Academy of Sciences, Jie LiuUniversity of New South Wales, Shuangwei Huvivo AI Lab, Lian LiInstitute of Computing Technology at Chinese Academy of Sciences, China, Jingling XueUNSW Sydney
	16:20 - 16:40 Talk		Characterizing Android App Signing Issues Research Papers Haoyu WangBeijing University of Posts and Telecommunications, China, Hongxuan LiuPeking University, Xusheng XiaoCase Western Reserve University, Guozhu MengInstitute of Information Engineering, Chinese Academy of Sciences, Yao GuoPeking University
	16:40 - 17:00 Talk		OAuthLint: An Empirical Study on OAuth Bugs in Android Applications Research Papers Tamjid Al RahatUniversity of Virginia, Yu FengUniversity of California, Santa Barbara, Yuan TianUniversity of Virginia Pre-print
	17:00 - 17:20 Talk		Are Free Android App Security Analysis Tools Effective in Detecting Known Vulnerabilities? Journal First Presentations Venkatesh-Prasad RanganathKansas State University, Joydeep MitraKansas State University Link to publication DOI Pre-print Media Attached
	17:20 - 17:30 Demonstration		SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods Demonstrations Goran PiskachevFraunhofer IEM, Lisa Nguyen Quang DoGoogle, Oshando JohnsonFraunhofer IEM, Eric BoddenHeinz Nixdorf Institut, Paderborn University and Fraunhofer IEM Pre-print Media Attached File Attached
	17:30 - 17:40 Demonstration		Sip4J: Statically Inferring Access Permission Contracts for Parallelising Sequential Java Programs Demonstrations Ayesha SadiqMonash University, Li LiMonash University, Australia, Yuan-Fang LiMonash University, Ijaz AhmedUniversity of Lahore, Sea LingMonash University

Thu 14 Nov
Times are displayed in time zone: Tijuana, Baja California change

	10:00 - 10:40: Poster Session: Tool Demonstrations 3Demonstrations at Kensington Ballroom

	10:00 - 10:40 Demonstration		PraPR: Practical Program Repair via Bytecode Mutation Demonstrations Ali GhanbariThe University of Texas at Dallas, Lingming ZhangThe University of Texas at Dallas
	10:00 - 10:40 Demonstration		Kotless: a Serverless Framework for Kotlin Demonstrations Vladislav TankovJetBrains, ITMO University, Yaroslav GolubevJetBrains Research, ITMO University, Timofey BryksinJetBrains Research, Saint-Petersburg State University
	10:00 - 10:40 Demonstration		PeASS: A Tool for Identifying Performance Changes at Code Level Demonstrations David Georg ReicheltUniversität Leipzig, Stefan KühneUniversität Leipzig, Wilhelm HasselbringKiel University Pre-print Media Attached File Attached
	10:00 - 10:40 Demonstration		MutAPK: Source-Codeless Mutant Generation for Android Apps Demonstrations Camilo Escobar-VelásquezUniversidad de los Andes, Michael Osorio-RiañoUniversidad de los Andes, Mario Linares-VásquezSystems and Computing Engineering Department , Universidad de los Andes , Bogotá, Colombia
	10:00 - 10:40 Demonstration		CocoQa: Question Answering for Coding Conventions over Knowledge Graphs Demonstrations Tianjiao DuShanghai JiaoTong University, Junming CaoShanghai JiaoTong University, Qinyue WuShanghai JiaoTong University, Wei LiShanghai JiaoTong University, Beijun ShenSchool of Electronic Information and Electrical Engineering, Shanghai Jiao Tong University, Yuting ChenShanghai Jiao Tong University
	10:00 - 10:03 Demonstration		Humanoid: A Deep Learning-based Approach to Automated Black-box Android App Testing Demonstrations Yuanchun LiPeking University, Ziyue YangPeking University, Yao GuoPeking University, Xiangqun ChenPeking University
	10:00 - 10:40 Demonstration		Developer Reputation Estimator (DRE) Demonstrations Sadika AmreenUniversity of Tennessee Knoxville, Andrey KarnauchUniversity of Tennessee Knoxville, Audris MockusUniversity of Tennessee - Knoxville
	10:00 - 10:40 Demonstration		NeuralVis: Visualizing and Interpreting Deep Learning Models Demonstrations Xufan ZhangState Key Laboratory for Novel Software Technology Nanjing University, Nanjing, China, Ziyue YinState Key Laboratory for Novel Software Technology Nanjing University, Nanjing, China, Yang FengUniversity of California, Irvine, Qingkai ShiHong Kong University of Science and Technology, Jia LiuState Key Laboratory for Novel Software Technology Nanjing University, Nanjing, China, Zhenyu ChenNanjing University
	10:00 - 10:40 Demonstration		Visual Analytics for Concurrent Java Executions Demonstrations Cyrille ArthoKTH Royal Institute of Technology, Sweden, Monali PandeKTH Royal Institute of Technology, Qiyi TangUniversity of Oxford
	10:00 - 10:40 Demonstration		Sip4J: Statically Inferring Access Permission Contracts for Parallelising Sequential Java Programs Demonstrations Ayesha SadiqMonash University, Li LiMonash University, Australia, Yuan-Fang LiMonash University, Ijaz AhmedUniversity of Lahore, Sea LingMonash University
	10:00 - 10:40 Demonstration		SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods Demonstrations Goran PiskachevFraunhofer IEM, Lisa Nguyen Quang DoGoogle, Oshando JohnsonFraunhofer IEM, Eric BoddenHeinz Nixdorf Institut, Paderborn University and Fraunhofer IEM Pre-print Media Attached File Attached
	10:00 - 10:40 Demonstration		VisFuzz: Understanding and Intervening Fuzzing with Interactive Visualization Demonstrations Chijin ZhouTsinghua University, Mingzhe WangTsinghua University, Jie LiangTsinghua University, Zhe LiuNanjing University of Aeronautics and Astronautics, Chengnian SunWaterloo University, Yu JiangTsinghua University