detec ng unknown inconsistencies in web applica ons
play

Detec%ng Unknown Inconsistencies in Web Applica%ons Frolin Ocariza - PowerPoint PPT Presentation

Feb 09, 2024 •120 likes •481 views

Detec%ng Unknown Inconsistencies in Web Applica%ons Frolin Ocariza Jr. Karthik Pa:abiraman Ali Mesbah 1 95% of all websites use JavaScript JavaScript The most popular language on both GitHub and StackOverflow for 4 years 2 Bugs abound

  1. Detec%ng Unknown Inconsistencies in Web Applica%ons Frolin Ocariza Jr. Karthik Pa:abiraman Ali Mesbah 1

  2. 95% of all websites use JavaScript JavaScript The most popular language on both GitHub and StackOverflow for 4 years 2

  3. Bugs abound – our prior work [ISSRE’11][ESEM’13][TSE] JavaScript Code smells [Fard and Mesbah – SCAM’2013] 3

  4. JavaScript: Challenges Lack of JS has standard loose programming seman@cs style Frequent cross- language interac@ons 4

  5. MVC Frameworks • Model-View-Controller for structuring code • Amenable to sta@c analysis – less dynamism 300% increase in AngularJS usage in 2015 5

  6. Our Earlier Work: Aurebesh [ICSE’15] • Aurebesh : Detects mismatches between model, view, controller components in AngularJS code through Sta%c Analysis MODEL VIEW CONTROLLER USES USES USES DEFINES DEFINES MODEL VARIABLES CONTROLLER FUNCTIONS • Aurebesh hard-codes rules for bug detec%on – Name and type inconsistencies 6

  7. Goal • Detect errors in JavaScript-based MVC applica%ons through sta%c analysis – Without hard-coded rules – Without programmer annota@ons or hints – Also code smells or bad coding prac@ces • Detect inconsistencies across languages – Main difference with exis@ng tools (e.g., Coverity) 7

  8. Example Inconsistency JavaScript Code HTML Marionette.LayoutView.extend({ <div class=“some-region”> el: '.some-view', <p>Hello World</p> ... </div> }); View in the JS code incorrectly assumes that the HTML contains an element with class ‘some-view’ 8

  9. Main Insights How do we infer the Leverage consistency rules? repea%ng code pa:erns How do we detect LINK RULES cross-language inconsistencies? 9

  10. Outline • Mo@va@on and Goals • Approach • Evalua@on • Conclusion 10

  11. Our Approach Find Code Transform Patterns JavaScript AST and from DOM into Subtrees CodeTrees HTML Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations Rules Link Rules 11

  12. Find Code Transform Patterns JavaScript AST and Step 1 : Transform AST and from DOM into Subtrees CodeTrees HTML DOM into CodeTrees Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations Rules Link Rules Marionette.LayoutView.extend({ <div class=“some-region”> el: '.some-view', <p>Hello World</p> ... </div> }); DOM CallExpression div AST extend Object Aeribute p Property class some-region StringLiteral el some-view 12

  13. Find Code Transform Patterns JavaScript AST and Step 2 : Find Code Paeerns from DOM into Subtrees CodeTrees HTML from Subtrees Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations Rules Link Rules ROOT …. …. …. CallExpression CallExpression CallExpression extend Object extend Object extend Object Property Property Property StringLiteral StringLiteral NumberLiteral el el el some-view some-view 3 13

  14. Find Code Transform Patterns JavaScript AST and Step 2 : Find Code Paeerns from DOM into Subtrees CodeTrees HTML from Subtrees Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations Rules Link Rules ROOT …. …. …. CallExpression CallExpression CallExpression Object Object Object Property Property Property “Abstract out” iden@fiers, literals, and string types 14

  15. Find Code Transform Patterns JavaScript AST and Step 2 : Find Code Paeerns from DOM into Subtrees CodeTrees HTML from Subtrees Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations Rules Link Rules ROOT …. …. …. CallExpression CallExpression CallExpression Object Object Object Property Property Property Group together isomorphic subtrees 15

  16. Find Code Transform Patterns JavaScript AST and Step 3 : Infer Consistency Rules from DOM into Subtrees CodeTrees HTML Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations INTRA-PATTERN CONSISTENCY RULE Rules Link Rules Inconsistencies within pa,ern groups CallExpression CallExpression CallExpression Object Object Object Property Property Property Nodes are “concre@zed” one by one 16

  17. Find Code Transform Patterns JavaScript AST and Step 3 : Infer Consistency Rules from DOM into Subtrees CodeTrees HTML Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations INTRA-PATTERN CONSISTENCY RULE Rules Link Rules Inconsistencies within pa,ern groups CallExpression CallExpression CallExpression extend Object extend Object extend Object Property Property Property Nodes are “concre@zed” one by one 17

  18. Find Code Transform Patterns JavaScript AST and Step 3 : Infer Consistency Rules from DOM into Subtrees CodeTrees HTML Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations INTRA-PATTERN CONSISTENCY RULE Rules Link Rules Inconsistencies within pa,ern groups CallExpression CallExpression CallExpression extend Object extend Object extend Object Property Property Property el el el Nodes are “concre@zed” one by one 18

  19. Find Code Transform Patterns JavaScript AST and Step 3 : Infer Consistency Rules from DOM into Subtrees CodeTrees HTML Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations INTRA-PATTERN CONSISTENCY RULE Rules Link Rules Inconsistencies within pa,ern groups CallExpression CallExpression CallExpression extend Object extend Object extend Object Property Property Property StringLiteral NumberLiteral StringLiteral el el el Subtrees are par@@oned according to differences found while concre@zing 19

  20. Find Code Transform Patterns JavaScript AST and Step 3 : Infer Consistency Rules from DOM into Subtrees CodeTrees HTML Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations INTRA-PATTERN CONSISTENCY RULE Rules Link Rules Inconsistencies within pa,ern groups CallExpression CallExpression extend Object extend Object CallExpression Property Property extend Object NumberLiteral StringLiteral Property el el StringLiteral el Dominant paeerns are marked as intra-paeern consistency rules 20

  21. Find Code Transform Patterns JavaScript AST and Step 4 : Detect Rule Viola@ons from DOM into Subtrees CodeTrees HTML Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations INTRA-PATTERN CONSISTENCY RULE Rules Link Rules Inconsistencies within pa,ern groups CallExpression CallExpression extend Object extend Object CallExpression Property Property extend Object NumberLiteral StringLiteral Property el el StringLiteral el Subtrees that do not belong to dominant paeerns are marked as inconsistencies 21

  22. Find Code Transform Patterns JavaScript AST and Step 3 : Infer Consistency Rules from DOM into Subtrees CodeTrees HTML LINK RULE Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations Rules Link Rules Inconsistencies between pa,ern groups Code Paeern from JS Property Property Property StringLiteral StringLiteral StringLiteral el el el layout some-region some-view Code Paeern from HTML Aeribute Aeribute some-region layout class class 22

  23. Find Code Transform Patterns JavaScript AST and Step 3 : Infer Consistency Rules from DOM into Subtrees CodeTrees HTML LINK RULE Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations Rules Link Rules Inconsistencies between pa,ern groups Code Paeern from JS Property Property Property StringLiteral StringLiteral StringLiteral el el el layout some-region some-view Code Paeern from HTML Dominant Aeribute Aeribute matches are marked as link some-region layout class class rules 23

  24. Find Code Transform Patterns JavaScript AST and Step 4 : Detect Rule Viola@ons from DOM into Subtrees CodeTrees HTML LINK RULE Intra-Pattern Rules Infer Detect Rule Inconsistencies Consistency Violations Rules Link Rules Inconsistencies between pa,ern groups Code Paeern from JS Property Property Property StringLiteral StringLiteral StringLiteral el el el layout some-region some-view Code Paeern from HTML Subtrees not Aeribute Aeribute belonging to dominant match some-region layout class class are marked as inconsistent 24

  25. Holocron Implemented as INPUT a Brackets IDE plugin Web Applica@on under Test OUTPUT LIST OF INCONSISTENCIES Mined Applica@ons (from Web) 25

  26. Outline • Mo@va@on and Goals • Approach • Evalua@on • Conclusion 26

  27. Research Ques@ons RQ1 (Prevalence of Inconsistencies) : Do inconsistencies occur in MVC applica@ons, and if so, what are their characteris@cs? RQ2 (Real Bugs and Code Smells) : Can Holocron be used to detect bugs and code smells in real-world MVC applica@ons? 27

  28. RQ1: Prevalence of Inconsistencies Analyzed 90 GitHub bug reports (30 for each of three main MVC frameworks) 28

  29. RQ1: Prevalence of Inconsistencies Not Inconsistency Inconsistency 100 70% of the 80 bug reports correspond to % of Bug Reports inconsistencies 60 35% of the 40 inconsistencies are 20 cross-language - 25% of bug reports 0 AngularJS BackboneJS Ember.js All MVC Framework 29

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Detec%ng Inconsistencies in JavaScript MVC Applica%ons Frolin S.

Detec%ng Inconsistencies in JavaScript MVC Applica%ons Frolin S.

Detec%ng Inconsistencies in JavaScript MVC Applica%ons Frolin S. Ocariza, Jr., Karthik PaAabiraman and Ali Mesbah University of British Columbia Most popular

504 views • 37 slides
Retroac(ve Detec(on of Malware with Applica(ons to Mobile Pla8orms Markus Jakobsson

Retroac(ve Detec(on of Malware with Applica(ons to Mobile Pla8orms Markus Jakobsson

Retroac(ve Detec(on of Malware with Applica(ons to Mobile Pla8orms Markus Jakobsson KarlAnders Johansson FatSkunk 1 Market forecast for mobile More smartphones than PCs in 23 years Dominant pla@orms targeted 4G will fuel

790 views • 16 slides
Assimila'on of func'onal data and applica'on to ac've fires detec'on from satellites Jan Mandel

Assimila'on of func'onal data and applica'on to ac've fires detec'on from satellites Jan Mandel

Assimila'on of func'onal data and applica'on to ac've fires detec'on from satellites Jan Mandel University of Colorado Denver Ins5tute of Informa5cs, Czech Academy of Sciences With Ivan Kasanick, Adam K. Kochanski, Sher Schranz, and Mar5n

1.05k views • 47 slides
ZigZag: Automa,cally Hardening Web Applica,ons Against Client- side Valida,on Vulnerabili,es

ZigZag: Automa,cally Hardening Web Applica,ons Against Client- side Valida,on Vulnerabili,es

ZigZag: Automa,cally Hardening Web Applica,ons Against Client- side Valida,on Vulnerabili,es PRESENTED BY SAI TEJ KANCHARLA Content Introduc,on Mo,va,on And Threat Model System Overview Invariant Detec,on Invariant

549 views • 26 slides
Dialog in NLP applica.ons VELJKO MILJANIC Overview Applica(ons in S2S

Dialog in NLP applica.ons VELJKO MILJANIC Overview Applica(ons in S2S

Dialog in NLP applica.ons VELJKO MILJANIC Overview Applica(ons in S2S systems Overview of S2S system architecture Modeling contextual informa(on in S2S

977 views • 75 slides
Surveillance Event Detec/on 11:30 11:50 University of Ottawa (VIVA_uOttawa)

Surveillance Event Detec/on 11:30 11:50 University of Ottawa (VIVA_uOttawa)

Surveillance Event Detec/on (SED) Time ime Pres esent entation ion 11:10 11:30 Task Overview (NIST) Surveillance Event Detec/on 11:30 11:50 University of Ottawa (VIVA_uOttawa) 11:50 12:10 Dublin City

674 views • 28 slides
[1] Defini=on of allele-specific expression (ASE) Adopted from Unneberg, 2010 One gene can

[1] Defini=on of allele-specific expression (ASE) Adopted from Unneberg, 2010 One gene can

2610//16 ASE: allele-specific expression SciLifeLab RNA-seq course Outline 1. Defini=on of ASE Allele-specific expression, ASE 2. Detec=ng ASE (introductory case) 3. Applica=ons and prevalence of ASE 4. Important ASE considera=ons Olof

282 views • 10 slides
CDBG/SSG CDBG/SSG Pr Pre-Applica pplication tion Meeting Meeting October 8, 2020 Applica

CDBG/SSG CDBG/SSG Pr Pre-Applica pplication tion Meeting Meeting October 8, 2020 Applica

CDBG/SSG CDBG/SSG Pr Pre-Applica pplication tion Meeting Meeting October 8, 2020 Applica pplications tions Two Types of Applications: CI: C apital I mprovement projects funded by CDBG only SS:S ocial S ervice projects funded by CDBG

378 views • 37 slides
Grid Applica+on Meta-Repository - Repository interconnec+vity

Grid Applica+on Meta-Repository - Repository interconnec+vity

Grid Applica+on Meta-Repository - Repository interconnec+vity and cross-domain applica+on usage in distributed compu+ng environments - Alexandru Tudose

389 views • 14 slides
We are all made of contradictions, inconsistencies, frustrations and desires. The hopes to be

We are all made of contradictions, inconsistencies, frustrations and desires. The hopes to be

We are all made of contradictions, inconsistencies, frustrations and desires. The hopes to be balanced and tolerant are dubious, and still we are standing up, more or less, and only movement gives us some balance. The essence of my work is

779 views • 11 slides
Object Detec)on Ali Farhadi CSE 576 We have talked about

Object Detec)on Ali Farhadi CSE 576 We have talked about

Object Detec)on Ali Farhadi CSE 576 We have talked about Nearest Neighbor Nave Bayes Logis)c Regression Boos)ng We saw face

707 views • 36 slides
Framing and error detec.on 1 1 0 1 1 0 0 1 1 0 1 0 1 0 1 1 1 0 1 1 0 0 1 1 1 0

Framing and error detec.on 1 1 0 1 1 0 0 1 1 0 1 0 1 0 1 1 1 0 1 1 0 0 1 1 1 0

Framing and error detec.on 1 1 0 1 1 0 0 1 1 0 1 0 1 0 1 1 1 0 1 1 0 0 1 1 1 0 1 1 0 0 0 1 1 0 1 1 0 1 1 1 1 0 1 1 1 0 0 1 1 0 1 1 1 0 1 1 1 0 1 0 CSCI 466: Networks Keith Vertanen

461 views • 27 slides
SITUATION 92.7% of U.S. households have central heating Problem: Inconsistencies

SITUATION 92.7% of U.S. households have central heating Problem: Inconsistencies

SITUATION 92.7% of U.S. households have central heating Problem: Inconsistencies across rooms No individual temperature control, comfort Wasted energy in current system Solution System that monitors each

285 views • 9 slides
Streebog and Kuznyechik Inconsistencies in the Claims of their Designers Lo Perrin IETF

Streebog and Kuznyechik Inconsistencies in the Claims of their Designers Lo Perrin IETF

leo.perrin@inria.fr @lpp_crypto Streebog and Kuznyechik Inconsistencies in the Claims of their Designers Lo Perrin IETF Workshop, Montral Standards and S-boxes On the S-box of RFC 6986 and 7801 The Core Issue: the S-Box Generation

779 views • 50 slides
A consistent approach to inconsistencies Fabian Khlinger (Kavli IPMU) in collaboration with

A consistent approach to inconsistencies Fabian Khlinger (Kavli IPMU) in collaboration with

A consistent approach to inconsistencies Fabian Khlinger (Kavli IPMU) in collaboration with Benjamin Joachimi (UCL) SCLSS workshop Oxford, 19 th April 2018 I. Motivation Typical questions arising in a (LSS) data analysis: 1. Is model 0

740 views • 25 slides
OverFeat Integrated Recogni.on, Localiza.on and Detec.on using

OverFeat Integrated Recogni.on, Localiza.on and Detec.on using

OverFeat Integrated Recogni.on, Localiza.on and Detec.on using Convolu.onal Networks Sermanet et. al Presenta.on by Eric Holmdahl Roadmap 1. Goal 2. Background

743 views • 47 slides
Sprint 3 Presentation Andrew Stinson, Dylan Bakr, Emily Efroymson, Maeve McCormack Our Team

Sprint 3 Presentation Andrew Stinson, Dylan Bakr, Emily Efroymson, Maeve McCormack Our Team

Sprint 3 Presentation Andrew Stinson, Dylan Bakr, Emily Efroymson, Maeve McCormack Our Team Andrew Stinson- Team Leader, HTML Programmer Dylan Bakr- Chief Programmer (JavaScript, SQL) Emily Efroymson- Chief Graphical Designer (Flowers and

290 views • 8 slides
CPA 2016 Communicating Generators in JavaScript Kurt Micallef ( kurtmica@live.com ) Kevin Vella (

CPA 2016 Communicating Generators in JavaScript Kurt Micallef ( kurtmica@live.com ) Kevin Vella (

CPA 2016 Communicating Generators in JavaScript Kurt Micallef ( kurtmica@live.com ) Kevin Vella ( kevin.vella@um.edu.mt ) Department of Computer Science University of Malta 1 of 21 Problems and Opportunities 1 Single-threaded, event-driven

1.12k views • 48 slides
ES7 ES7 The Evolution of JavaScript Who is Jafar Husain? Architect of Falcor, Netflixs

ES7 ES7 The Evolution of JavaScript Who is Jafar Husain? Architect of Falcor, Netflixs

ES7 ES7 The Evolution of JavaScript Who is Jafar Husain? Architect of Falcor, Netflixs OSS data platform Netflix representative TC-39 Formerly worked for MS and GE ES6 spec will be finalized in June 2015 Isnt it too early to

1.57k views • 125 slides
Coding Your First HTML5 Game Randy Hoyt @randyhoyt randyhoyt.com/launchgame @randyhoyt

Coding Your First HTML5 Game Randy Hoyt @randyhoyt randyhoyt.com/launchgame @randyhoyt

Coding Your First HTML5 Game Randy Hoyt @randyhoyt randyhoyt.com/launchgame @randyhoyt Overview Code HTML5 Games @randyhoyt Overview Games HTML5 Code @randyhoyt Games Games Games are fun ! s e m a g e v

1.68k views • 129 slides
Developing Web Applications with PHP, MySQL, JavaScript and jQuery Dan OConnor Senior

Developing Web Applications with PHP, MySQL, JavaScript and jQuery Dan OConnor Senior

Developing Web Applications with PHP, MySQL, JavaScript and jQuery Dan OConnor Senior Software Engineer WAMP and LAMP WAMP Windows, Apache, MySQL, PHP LAMP Linux, Apache, MySQL, PHP Once set up there is not much difference

318 views • 9 slides
Beta Presentation Infographics Generator The Capstone Experience Team Urban Science Peter Chen

Beta Presentation Infographics Generator The Capstone Experience Team Urban Science Peter Chen

Beta Presentation Infographics Generator The Capstone Experience Team Urban Science Peter Chen Lok Cheung Louis Bodnar Kevin Shreve Department of Computer Science and Engineering Michigan State University Spring 2012 From Students to

359 views • 12 slides
Introduction to Qt Creator Tobias Hunger, Senior Software Engineer at The Qt Company May 2020 1

Introduction to Qt Creator Tobias Hunger, Senior Software Engineer at The Qt Company May 2020 1

Introduction to Qt Creator Tobias Hunger, Senior Software Engineer at The Qt Company May 2020 1 12 May 2020 Introduction to Qt Creator / Tobias Hunger What is Qt Creator? Qt Creator is a cross-platform C++, JavaScript and QML integrated

199 views • 9 slides
JSON (JavaScript Object Notation) JSON (JavaScript Object Notation) A lightweight

JSON (JavaScript Object Notation) JSON (JavaScript Object Notation) A lightweight

JSON (JavaScript Object Notation) JSON (JavaScript Object Notation) A lightweight data-interchange format A subset of the object literal notation of JavaScript (or ECMA-262). A JSON string must be enclosed by double quotes. See

299 views • 18 slides

More recommend