Automatic Software Diversity in the Light of Test Suites

by Benoit Baudry, Simon Allier, Marcelino Rodriguez-Cancio and Martin Monperrus
Abstract: A few works address the challenge of automating software diversification, and they all share one core idea: using automated test suites to drive diversification. However, there is is lack of solid understanding of how test suites, programs and transformations interact one with another in this process. We explore this intricate interplay in the context of a specific diversification technique called "sosiefication". Sosiefication generates sosie programs, i.e., variants of a program in which some statements are deleted, added or replaced but still pass the test suite of the original program. Our investigation of the influence of test suites on sosiefication exploits the following observation: test suites cover the different regions of programs in very unequal ways. Hence, we hypothesize that sosie synthesis has different performances on a statement that is covered by one hundred test case and on a statement that is covered by a single test case. We synthesize 24583 sosies on 6 popular open-source Java programs. Our results show that there are two dimensions for diversification. The first one lies in the specification: the more test cases cover a statement, the more difficult it is to synthesize sosies. Yet, to our surprise, we are also able to synthesize sosies on highly tested statements (up to 600 test cases), which indicates an intrinsic property of the programs we study. The second dimension is in the code: we manually explore dozens of sosies and characterize new types of forgiving code regions that are prone to diversification.
 View PDF
Open-access (on archives-ouvertes.fr)
Citations: [citations]
Other publications of Martin Monperrus

Cite it:

Automatic Software Diversity in the Light of Test Suites (, , and ), Technical report, , .
Benoit Baudry, Simon Allier, Marcelino Rodriguez-Cancio and Martin Monperrus, "Automatic Software Diversity in the Light of Test Suites", Technical report, , 2015.

Bibtex Entry:

@techreport{2015arXiv150900144B,
 title = {{Automatic Software Diversity in the Light of Test Suites}},
 author = {Baudry, Benoit and Allier, Simon and Rodriguez-Cancio, Marcelino and Monperrus, Martin},
 url = {https://arxiv.org/pdf/1509.00144.pdf},
 year = {2015},
}
Powered by bibtexbrowser
Tagged as: