a method to evaluate cfg comparison algorithms
play

A Method to Evaluate CFG Comparison Algorithms Patrick P.F. Chan - PowerPoint PPT Presentation

Nov 13, 2022 •136 likes •655 views

A Method to Evaluate CFG Comparison Algorithms Patrick P.F. Chan Christian Collberg Research problem Which CFG similarity algorithm is better? I come up with a new algorithm, how does it compare to the existing ones? Is there a

  1. A Method to Evaluate CFG Comparison Algorithms Patrick P.F. Chan Christian Collberg

  2. Research problem • Which CFG similarity algorithm is better? • I come up with a new algorithm, how does it compare to the existing ones? • Is there a systematic way to compare CFG similarity algorithms?

  3. Research outcomes • A methodology to evaluate and compare CFG similarity algorithms • Comparison results of four CFG similarity algorithms • A survey of existing CFG similarity algorithms • A publicly available evaluation framework

  4. What is CFG? • CFG stands for c ontrol- f low g raph • A CFG represents all possible execution paths of a function • And thus, it encodes its behavior

  5. Entry a = input() if a % 2 == 0 True False print print “odd” “even” Exit

  6. Why do we compare CFGs?

  7. Why do we compare CFGs? • Malware detection / classification CFGs of malware Match

  8. Why do we compare CFGs? • Software theft detection How similar? Original software Suspected pirated software

  9. Why do we compare CFGs? • Programming assignments grading How similar? Assignment Submission Solution

  10. Why do we compare CFGs? • Code clones detection How similar?

  11. Why do we compare CFGs? • Detection of changes between different versions of a program

  12. Why do we compare CFGs? • Detection of changes between different versions of a program Match the nodes of the enhanced CFGs

  13. This leads to many algorithms to compare CFGs…

  14. Let’s use two existing algorithms to compare these two CFGs 1 1 2 3 2 3 4 4 5 CFG A CFG B

  15. Algorithm 1 from Kruegel et al. • Extract subgraphs that have k nodes (k-subgraphs) from CFGs and match them

  16. 1 1 2 3 2 3 4 4 5 CFG A CFG B 1 1 1 1 1 2 2 2 2 2 3 2 3 4 5 4 5 4 No match!

  17. Algorithm 2 from Hu et al. • Approximates the minimum number of edit operations needed to transform one graph into another graph

  18. 1 1 2 3 2 3 4 4 5 CFG A CFG B Cost of matching nodes Cost of deleting nodes in CFG A Cost of matching node 1 of CFG A to node 1 of Cost of deleting CFG B node 4 of CFG B Cost of deleting node 1 of CFG B Cost of matching dummy Cost of deleting nodes in CFG B nodes

  19. 1 1 2 3 2 3 4 4 5 CFG A CFG B Total cost = 5

  20. And there are many other algorithms… • Algorithm from Vujosˇevic ́ -Janicˇic ́ et al. iteratively builds a similarity matrix between the nodes of the two CFGs, based on the similarity of their neighbor • Algorithm from Sokolsky et al. models the control flow graphs using Labeled Transition Systems (LTS)

  21. But which one is the best?

  22. Evaluation of CFG similarity algorithms • Start by generating CFGs G 1 , G 2 ,...,G i with increasing edit distances with respect to a seed CFG G 0 • i.e. ED(G 0 ,G i ) = i • Use the algorithm under evaluation to rank the CFGs such that the higher is the similarity score between G i and G 0 given by that algorithm, the higher G i is ranked • Get a “goodness score” for the algorithm by comparing the ranking it produces to the ground truth ⟨ G 1 , G 2 , G 3 ,... ⟩ , using ranking correlation algorithms such as sortedness or Pearson correlation

  23. Example G 0

  24. Example G 1 ED = 1 G 0 ED = 2 ED = 3 G 2 G 3

  25. Example G 1 ED = 1 G 0 ED = 2 ED = 3 G 2 G 3 Ranking: ⟨ G 1 , G 2 , G 3 ⟩

  26. Example G 1 G 1 Sim A = 0.4 ED = 1 G 0 G 0 Sim A = 0.8 ED = 2 Sim A = 0.1 G 3 ED = 3 G 2 G 2 G 3 Ranking: ⟨ G 1 , G 2 , G 3 ⟩

  27. Example G 1 G 1 Sim A = 0.4 ED = 1 G 0 G 0 Sim A = 0.8 ED = 2 Sim A = 0.1 G 3 ED = 3 G 2 G 2 G 3 Ranking: ⟨ G 1 , G 2 , G 3 ⟩ Ranking: ⟨ G 3 , G 1 , G 2 ⟩

  28. Example G 1 G 1 Sim A = 0.4 ED = 1 G 0 G 0 Sim A = 0.8 ED = 2 Sim A = 0.1 G 3 ED = 3 G 2 G 2 G 3 Pearson correlation = -0.5 Ranking: ⟨ G 1 , G 2 , G 3 ⟩ Ranking: ⟨ G 3 , G 1 , G 2 ⟩

  29. Two questions remain… 1. What is the definition of the edit distance between two CFGs? 2. How to generate those CFGs such that they have increasing edit distances with the seed CFG G 0 ?

  30. What is the definition of the edit distance between two CFGs? • The Graph Edit Distance is a function ED : (G i , G j ) → N that computes the smallest number of edit operations needed to transform Gi into Gj. • There are four possible edit operations

  31. What is the definition of the edit distance between two CFGs? • Add a zero-degree node 1 1 2 3 2 3 4

  32. What is the definition of the edit distance between two CFGs? • Add an edge between two existing nodes 1 1 2 3 2 3 4 4

  33. What is the definition of the edit distance between two CFGs? • Delete an edge between two existing nodes 1 1 2 3 2 3 4 4

  34. What is the definition of the edit distance between two CFGs? • Delete a zero-degree node 1 1 2 3 2 4 4

  35. How to generate those CFGs such that they have increasing edit distances with the seed CFG G0? a b c d G 0

  36. How to generate those CFGs such that they have increasing edit distances with the seed CFG G0? a b c d Add Delete Node Edge Add Add Edge Edge a a a a e b c b c b c b c d d d d For every possible edit operation that can be applied to G 0 , apply that and generate a new graph

  37. How to generate those CFGs such that they have increasing edit distances with the seed CFG G0? Obtain the Do the same for the Edit Distance Graph (EDG) newly generated graphs

  38. How to generate those CFGs such that they have increasing edit distances with the seed CFG G0? a b c d Add Delete Node Edge Add Add Edge Edge a a a a e b c b c b c b c d d d d Add Add Edge Edge a Randomly pick a CFG on b c each level and they d become our G 1 , G 2 , G 3 ,…

  39. Implementation • Re-coded four CFG similarity algorithms in Python • Implemented the evaluation framework • Generated an EDG with five levels • Picked 100 test cases (each test case comprises five CFGs)

  40. Evaluation results

  41. Evaluation results

  42. Evaluation results

  43. Evaluation results

  44. Evaluation results “Goodness score” statistics of the four algorithms

  45. Evaluation results Time used by the four algorithms to finish 100 test cases

  46. Related work • An evaluation framework for text plagiarism detection • Generate artificial plagiarism cases • Shuffling, removing, inserting, or replacing words or short phrases at random

  47. Related work • An evaluation framework for code clone detection tools • Inject mutated code fragments into the code base

  48. Future work • Generate CFGs with instructions in the nodes Edit instructions => huge EDG

  49. Try our framework • http://cfgsim.cs.arizona.edu/ • Evaluate existing algorithms • Compare your own algorithm with the others • Fine tune your algorithm

  50. Summary • A methodology to evaluate CFG similarity algorithms • Publicly available evaluation framework • Serves as a benchmark for CFG similarity algorithms users / researchers

  51. Thank you!

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Comparison of the TDCR method and the CIEMAT/NIST method for the activity determination of beta

Comparison of the TDCR method and the CIEMAT/NIST method for the activity determination of beta

Comparison of the TDCR method and the CIEMAT/NIST method for the activity determination of beta emitting nuclides Ole Nhle and Karsten Kossert Physikalisch-Technische Bundesanstalt (PTB), Braunschweig, Germany LSC 2010, Advances in Liquid

604 views • 26 slides
Outline Analysis of Algorithms Definition Aggregate Method Accounting Method

Outline Analysis of Algorithms Definition Aggregate Method Accounting Method

Outline Analysis of Algorithms Definition Aggregate Method Accounting Method Amortized Analysis Potential Method Examples : Binary Counter and Dynamic Table http://www.cp.eng.chula.ac.th/faculty/spj Cost of A Sequence of

332 views • 14 slides
Outline Analysis of Algorithms Definition Aggregate Method Accounting Method

Outline Analysis of Algorithms Definition Aggregate Method Accounting Method

Outline Analysis of Algorithms Definition Aggregate Method Accounting Method Amortized Analysis Potential Method Examples : Binary Counter and Dynamic Table http://www.cp.eng.chula.ac.th/faculty/spj Cost of A Sequence of

379 views • 21 slides
Algorithms in Bioinformatics: A Practical Introduction Phylogenetic Tree comparison and

Algorithms in Bioinformatics: A Practical Introduction Phylogenetic Tree comparison and

Algorithms in Bioinformatics: A Practical Introduction Phylogenetic Tree comparison and Consensus Trees Phylogenetic Tree comparison Why tree comparison? Different phylogenies are resulted using different Kind of data (different

1.2k views • 95 slides
Whats the Difference? Comparison of the Army MEC Risk Management Method and the MEC HA Method

Whats the Difference? Comparison of the Army MEC Risk Management Method and the MEC HA Method

Global Leader in Munitions Response Whats the Difference? Comparison of the Army MEC Risk Management Method and the MEC HA Method April 3, 2019 Detection. Remediation. Destruction. www.naoc.org Global Leader in Munitions Response Agenda

670 views • 18 slides
Algorithms (2IL15) Lecture 2 THE GREEDY METHOD y x w v 1 TU/e Algorithms (2IL15)

Algorithms (2IL15) Lecture 2 THE GREEDY METHOD y x w v 1 TU/e Algorithms (2IL15)

TU/e Algorithms (2IL15) Lecture 2 Algorithms (2IL15) Lecture 2 THE GREEDY METHOD y x w v 1 TU/e Algorithms (2IL15) Lecture 2 Optimization problems for each instance there are (possibly) multiple valid solutions

442 views • 30 slides
SATURN 2008 Architecture Evaluation: Experiences in Using SEI ATAM ATAM method to evaluate a

SATURN 2008 Architecture Evaluation: Experiences in Using SEI ATAM ATAM method to evaluate a

SATURN 2008 Architecture Evaluation: Experiences in Using SEI ATAM ATAM method to evaluate a software testing automation solution Authors: Fernando Enobi Reginaldo Arakaki 1 Conceptual Flow of the ATAM Business Quality Scenarios

279 views • 11 slides
Statistical Comparison of Algorithms Part II Leandro L. Minku University of Birmingham, UK

Statistical Comparison of Algorithms Part II Leandro L. Minku University of Birmingham, UK

Statistical Comparison of Algorithms Part II Leandro L. Minku University of Birmingham, UK Overview Recap of the general idea underlying statistical hypothesis tests. What to compare? Two algorithms on a single problem instance.

1.53k views • 122 slides
2020-07-29_SHPWG_Issue1-Themes Address Calibrate, dynamics of Review the Evaluate Evaluate

2020-07-29_SHPWG_Issue1-Themes Address Calibrate, dynamics of Review the Evaluate Evaluate

2020-07-29_SHPWG_Issue1-Themes Address Calibrate, dynamics of Review the Evaluate Evaluate the Evaluate Evaluate evaluate, and habitat, outcomes of sediments Consider Evaluate flow path and COIs for the temperatures validate the

665 views • 43 slides
Algorithms and Architecture I Sorting in Linear Time 1 Linear Sort? But... Best algorithms

Algorithms and Architecture I Sorting in Linear Time 1 Linear Sort? But... Best algorithms

Algorithms and Architecture I Sorting in Linear Time 1 Linear Sort? But... Best algorithms so far perform in (n lg n) . They are comparison sorts. Comparison sorts need at least (n lg n) . Previous algorithms were optimal .

72 views • 6 slides
Algorithms for Compact Letter Displays: Comparison and Evaluation Jens Gramm 1 Jiong Guo 1 uffner

Algorithms for Compact Letter Displays: Comparison and Evaluation Jens Gramm 1 Jiong Guo 1 uffner

Introduction Algorithms Experiments Summary Algorithms for Compact Letter Displays: Comparison and Evaluation Jens Gramm 1 Jiong Guo 1 uffner 1 Falk H Rolf Niedermeier 1 Hans-Peter Piepho 2 Ramona Schmid 3 1 Friedrich-Schiller-Universit

729 views • 40 slides
Comparison Sorting II A comparison function (consistent and total) Effect: Reorganize the

Comparison Sorting II A comparison function (consistent and total) Effect: Reorganize the

2/28/2016 The comparison sorting problem Assume we have n comparable elements in an array and we want to rearrange them to be in increasing order Input: CSE373: Data Structures and Algorithms An array A of data records A key value in

458 views • 6 slides
An objective method to measure and evaluate the quality of sanded wood surfaces L. Gurau 1

An objective method to measure and evaluate the quality of sanded wood surfaces L. Gurau 1

The Future of Quality Control for Wood & Wood Products, 4-7 th May 2010, Edinburgh The Final Conference of COST Action E53 An objective method to measure and evaluate the quality of sanded wood surfaces L. Gurau 1 Abstract No agreed

419 views • 9 slides
A New Practical Intracerebral Hematoma Volume Calculation Method and Comparison to simple ABC/2

A New Practical Intracerebral Hematoma Volume Calculation Method and Comparison to simple ABC/2

A New Practical Intracerebral Hematoma Volume Calculation Method and Comparison to simple ABC/2 F.Cuce , G. Tulum, O. Dandin, T. Ergin, O. Karadas, O. Osman Gulhane Education and Training Hospital, Department of Radiology, Ankara, Turkey

526 views • 20 slides
How fast can we sort? All the sorting algorithms we have seen so far are comparison sorts : only

How fast can we sort? All the sorting algorithms we have seen so far are comparison sorts : only

CS 3343 -- Spring 2009 How fast can we sort? All the sorting algorithms we have seen so far are comparison sorts : only use comparisons to determine the relative order of elements. E.g ., insertion sort, merge sort, quicksort, heapsort. The

290 views • 14 slides
USING REINFORCEMENT LEARNING A Comparison of Q-Learning and SARSA Algorithms

USING REINFORCEMENT LEARNING A Comparison of Q-Learning and SARSA Algorithms

ADAPTIVE POWER MANAGEMENT OF ENERGY HARVESTING SENSOR NODES USING REINFORCEMENT LEARNING A Comparison of Q-Learning and SARSA Algorithms

369 views • 33 slides
Natural gas elasticities and optimal cost recovery under heterogeneity Evidence from 300 million

Natural gas elasticities and optimal cost recovery under heterogeneity Evidence from 300 million

Natural gas elasticities and optimal cost recovery under heterogeneity Evidence from 300 million natural gas bills in California Maximilian Auffhammer Edward Rubin UC Berkeley UC Berkeley University of Oregon February 6, 2018 Sources: US

1.51k views • 136 slides
FIND BETTER HIGH RES PHOTO #PCMHEvidence WELCOME & OPENING REMARKS DOUG HENLEY, MD, FAAFP

FIND BETTER HIGH RES PHOTO #PCMHEvidence WELCOME & OPENING REMARKS DOUG HENLEY, MD, FAAFP

Capitol Hill Briefing: Hosted by: The Patient-Centered The Primary Care Caucus Medical Homes (PCMH) Co-Chairs Impact on Honorable Joe Courtney Cost & Quality (D-CT) Review of Evidence, Honorable David Rouzer 2014-2015 (R-NC) FIND

475 views • 18 slides
Ed Turanchik Of Counsel, Government Affairs and Public Policy Florida 3P Law Opens Door to

Ed Turanchik Of Counsel, Government Affairs and Public Policy Florida 3P Law Opens Door to

More Autonomy, More Data, More Legal Issues Ed Turanchik Of Counsel, Government Affairs and Public Policy Florida 3P Law Opens Door to Innovation New ideas, new approaches, fresh faces. Strong basis in public need and

192 views • 8 slides
Mergeable Summaries Graham Cormode graham@research.att.com graham@research.att.com Pankaj

Mergeable Summaries Graham Cormode graham@research.att.com graham@research.att.com Pankaj

Mergeable Summaries Graham Cormode graham@research.att.com graham@research.att.com Pankaj Agarwal (Duke) Zengfeng Huang (HKUST) Jeff Philips (Utah) Zheiwei Wei (HKUST) Ke Yi (HKUST) Summaries Summaries allow approximate computations:

752 views • 23 slides
Lecture 20: Motion estimation Most slides from S. Lazebnik, which are based on other slides from

Lecture 20: Motion estimation Most slides from S. Lazebnik, which are based on other slides from

Lecture 20: Motion estimation Most slides from S. Lazebnik, which are based on other slides from S. Seitz, R. Szeliski, M. Pollefeys 1 Announcements PS9 and PS10 deadlines extended to April 21 2 Optical flow What moved where? Source: S.

519 views • 34 slides
Protecting Immigrant Families Advancing Our Future Campaign Public Charge Finalization Webinar

Protecting Immigrant Families Advancing Our Future Campaign Public Charge Finalization Webinar

Protecting Immigrant Families Advancing Our Future Campaign Public Charge Finalization Webinar August 14, 12:00 pm ET / 9:00 am PT Presented by: Elizabeth Lower-Basch | Center for Law and Social Policy Tanya Broder, Kat Lundie, Isobel Mohyeddin

436 views • 43 slides
Current through a very small conductor nano HUB .org online simulations and more 2 /

Current through a very small conductor nano HUB .org online simulations and more 2 /

CQT Lecture #4 nano HUB .org online simulations and more Unified Model for U: Self-consistent Quantum Transport CQT, Lecture#4: Field (SCF) Coulomb blockade and Fock space Far from Equilibrium Objective: s To illustrate the limitations

281 views • 25 slides
Point-Voxel CNN for E ffi cient 3D Deep Learning Zhijian Liu* , Haotian Tang* , Yujun Lin , and

Point-Voxel CNN for E ffi cient 3D Deep Learning Zhijian Liu* , Haotian Tang* , Yujun Lin , and

H ardware, A I and N eural-nets Point-Voxel CNN for E ffi cient 3D Deep Learning Zhijian Liu* , Haotian Tang* , Yujun Lin , and Song Han Project Page: http://pvcnn.mit.edu/ 3D Deep Learning 3D Part Segmentation 3D Semantic Segmentation 3D

351 views • 19 slides

More recommend