Litcius/Paper detail

ModX

Can Yang, Zhengzi Xu, Hongxu Chen, Yang Liu, Xiaorui Gong, Baoxu Liu

2022Proceedings of the 44th International Conference on Software Engineering43 citationsDOI

Abstract

With the rapid growth of software, using third-party libraries (TPLs) has become increasingly popular. The prosperity of the library usage has provided the software engineers with a handful of methods to facilitate and boost the program development. Unfortunately, it also poses great challenges as it becomes much more difficult to manage the large volume of libraries. Researches and studies have been proposed to detect and understand the TPLs in the software. However, most existing approaches rely on syntactic features, which are not robust when these features are changed or deliberately hidden by the adversarial parties. Moreover, these approaches typically model each of the imported libraries as a whole, therefore, cannot be applied to scenarios where the host software only partially uses the library code segments.

Topics & Concepts

Computer scienceSoftwareProsperityCode (set theory)Software engineeringAdversarial systemVolume (thermodynamics)Data scienceArtificial intelligenceProgramming languageQuantum mechanicsPolitical scienceSet (abstract data type)PhysicsLawAdvanced Malware Detection TechniquesSoftware Engineering ResearchWeb Application Security Vulnerabilities