recognizing and imitating programmer style adversaries in
play

Recognizing and Imitating Programmer Style: Adversaries in Program - PowerPoint PPT Presentation

Nov 14, 2023 •45 likes •565 views

Recognizing and Imitating Programmer Style: Adversaries in Program Authorship Attribution Lucy Simko , Luke Zettlemoyer, Tadayoshi Kohno simkol@cs.washington.edu homes.cs.washington.edu/~simkol sim Source Code Attribution B int main() { A

  1. Recognizing and Imitating Programmer Style: Adversaries in Program Authorship Attribution Lucy Simko , Luke Zettlemoyer, Tadayoshi Kohno simkol@cs.washington.edu homes.cs.washington.edu/~simkol sim

  2. Source Code Attribution B int main() { A F int i, j, k, l, m, n, st; ? char in[10000]; int fg[5000], chk[128]; int size, count = 0, res; E scanf ("%d%d%d", &len, &n, &size); D rep (i, n) scanf ("%s", dic[i]); C while (size--) { scanf ("%s", in); st = 0; rep (k, n) fg[k] = 1; ... � 2

  3. State of the Art: Source Code Attribution Caliskan-Islam et al. “ De-anonymizing programmers via code stylometry .” 24th USENIX Security Symposium (USENIX Security), Washington, DC . 2015. ● 98% accuracy over 250 programmers ● Extract syntactic, lexical, and layout features from C/C++ code ● Random Forest classifier ● Data set: Google Code Jam ○ Programming competition ○ Lots of examples of people solving the same problem in different ways ● Open source � 3

  4. Source Code Attribution B int main() 98% accuracy! { A F int i, j, k, l, m, n, st; char in[10000]; ? int fg[5000], chk[128]; int size, count = 0, res; E scanf ("%d%d%d", &len, &n, &size); D rep (i, n) scanf ("%s", dic[i]); C while (size--) { scanf ("%s", in); st = 0; rep (k, n) fg[k] = 1; ... � 4

  5. Source Code Attribution B int main() 98% accuracy! { A F int i, j, k, l, m, n, st; char in[10000]; ? int fg[5000], chk[128]; int size, count = 0, res; E scanf ("%d%d%d", &len, &n, &size); D rep (i, n) scanf ("%s", dic[i]); C while (size--) { scanf ("%s", in); st = 0; rep (k, n) fg[k] = 1; ... � 5

  6. Source Code Attribution B D int main() E 98% accuracy! R { O A F int i, j, k, l, m, n, st; S N char in[10000]; E ? C int fg[5000], chk[128]; C E int size, count = 0, res; N E scanf ("%d%d%d", &len, &n, &size); D S O rep (i, n) scanf ("%s", dic[i]); C R E D while (size--) { scanf ("%s", in); st = 0; rep (k, n) fg[k] = 1; ... � 6

  7. Research Question Can we fool source code attribution classifiers? Yes! Methodology: Lab study* with C programmers *Approved by University of Washington’s Human Subjects Division (IRB) � 7

  8. Outline ● Motivation and Research Question ● Source Code Attribution: Overview and Background ● Evading Source Code Attribution: Definitions and Goals ● Methodology ● Results: Conservative Estimate of Adversarial Success ● Results: How to Create Forgeries � 8

  9. Source Code Attribution B int main() { A F int i, j, k, l, m, n, st; ? char in[10000]; int fg[5000], chk[128]; int size, count = 0, res; E scanf ("%d%d%d", &len, &n, &size); D rep (i, n) scanf ("%s", dic[i]); C while (size--) { scanf ("%s", in); st = 0; rep (k, n) fg[k] = 1; ... � 9

  10. Source Code Attribution B A F int main() { int i, j, k, l, m, n, st; char in[10000]; E int fg[5000], chk[128]; D int size, count = 0, res; Classifier scanf ("%d%d%d", &len, &n, C &size); rep (i, n) scanf ("%s", dic[i]); while (size--) { scanf ("%s", in); st = 0; rep (k, n) fg[k] = 1; ... � 10

  11. Source Code Attribution B A F int main() { int i, j, k, l, m, n, st; P c char in[10000]; E int fg[5000], chk[128]; D int size, count = 0, res; Classifier scanf ("%d%d%d", &len, &n, C &size); rep (i, n) scanf ("%s", dic[i]); while (size--) { scanf ("%s", in); st = 0; rep (k, n) fg[k] = 1; ... � 11

  12. Source Code Attribution P c Classifier C {A, B, C, D, E} � 12

  13. Source Code Attribution Who the classifier thinks wrote this code. C ✓ P c Classifier {A, B, C, D, E} � 13

  14. Outline ● Motivation and Research Question ● Source Code Attribution: Overview and Background ● Evading Source Code Attribution: Definitions and Goals ● Methodology ● Results: Conservative Estimate of Adversarial Success ● Results: How to Create Forgeries � 14

  15. Evading Source Code Attribution 1. Train: Given code from original and target authors, learn styles 2. Modify original code to imitate target author ( forgery ) ● Or just hide the original author’s style ( masking ) manipulation P c ’ Adversarial P c Code originally by C, but modified by an adversary. � 15

  16. Evading Source Code Attribution 1. Train: Given code from original and target authors, learn styles 2. Modify original code to imitate target author ( forgery ) ● Or just hide the original author’s style ( masking ) Forgery manipulation P c ’ Adversarial P c A Classifier {A, B, C, D, E} � 16

  17. Outline ● Motivation and Research Question ● Source Code Attribution: Overview and Background ● Evading Source Code Attribution: Definitions and Goals ● Methodology ● Results: Conservative Estimate of Adversarial Success ● Results: How to Create Forgeries � 17

  18. Lab Study: Dataset ● C code ● We used a linter 1 to eliminate many typographic style differences ● ~4000 authors: avg 2.2 files each ● 5 authors with the most files: avg ~42.8 files ○ Authors: A, B, C, D, E 1 http://astyle.sourceforge.net/

  19. Lab Study: Create Forgeries Precision: 100% C 5 Recall: 100% (10-fold XV) {A, B, C, D, E}

  20. Lab Study: Create Forgeries Precision: 87.6% C 20 Recall: 88.2% (10-fold XV) {A, B, C, D, E, ... + 15}

  21. Lab Study: Create Forgeries Precision: 82.3% C 50 Recall: 84.5% (10-fold XV) {A, B, C, D, E, ... + 45}

  22. Lab Study: Create Forgeries 28 C programmers (participants): 1. Train: Given code from original and target author, learn styles 2. Modify original code to imitate target author’s style (forgery) Forgery P x ’ P x Y Participant modifies P x Classifier X, Y ∈ {A, B, C, D, E} � 22

  23. Lab Study: Create Forgeries 28 C programmers (participants): 1. Train: Given code from original and target author, learn styles 2. Modify original code to imitate target author’s style (forgery) 3. Check forgery success against oracle classifiers C 5 X P x ’ P x Participant modifies P x Y C 20 C 50 Y X, Y ∈ {A, B, C, D, E} � 23

  24. Outline ● Motivation and Research Question ● Source Code Attribution: Overview and Background ● Evading Source Code Attribution: Definitions and Goals ● Methodology ● Results: Conservative Estimate of Adversarial Success ● Results: How to Create Forgeries � 24

  25. Results: Estimate of Adversarial Success Versions of the state-of-the-art machine classifier. The subscript indicates the number of authors in the training set. C 5 C 20 C 50 Forgery 66.6% 70.0% 73.0% Masking 76.6% 76.6% 86.6% Percent of final forgery attempts that were successful attacks � 25

  26. Results: Estimate of Adversarial Success Forgery : adversary is pretending to be a specific target author . Masking : adversary is obscuring the original author. C 5 C 20 C 50 Forgery 66.6% 70.0% 73.0% Masking 76.6% 76.6% 86.6% Percent of final forgery attempts that were successful attacks � 26

  27. Results: Estimate of Adversarial Success A successful forgery attack means the classifier output the target author instead of the original author of the code. 66.6% of forgery attacks against the C 5 classifier were successful. C 5 C 20 C 50 Forgery 66.6% 70.0% 73.0% Masking 76.6% 76.6% 86.6% Percent of final forgery attempts that were successful attacks � 27

  28. Results: Estimate of Adversarial Success C50 attributed forgeries correctly only 13.4% of the time. C 5 C 20 C 50 Forgery 66.6% 70.0% 73.0% Masking 76.6% 76.6% 86.6% Percent of final forgery attempts that produced a misclassification � 28

  29. Results: Estimate of Adversarial Success Lesson: Non-experts can successfully attack this state-of-the-art classifier, suggesting other authorship classifiers may be vulnerable to the same type of attacks. C 5 C 20 C 50 Forgery 66.6% 70.0% 73.0% Masking 76.6% 76.6% 86.6% Percent of final forgery attempts that produced a misclassification � 29

  30. Outline ● Motivation and Research Question ● Source Code Attribution: Overview and Background ● Evading Source Code Attribution: Definitions and Goals ● Methodology ● Results: Conservative Estimate of Adversarial Success ● Results: How to Create Forgeries � 30

  31. Results: Methods of Forgery Creation Lesson: Forgers did not know the features the classifier was using for attribution. This suggests that forgeries in the wild might contain the same types of modifications . � 31

  32. Example: Two Programs by Author C // libraries imported // libraries imported #define REP(i,a,b) for(i=a;i<b;i++) #define REP(i,a,b) for(i=a;i<b;i++) #define rep(i,n) REP(i,0,n) #define rep(i,n) REP(i,0,n) // variables defined // variables defined int main() int main() { { int i, j, k, l, m, n, t, ok; int i, j, k, l, m, n, st; int a, b, c; char in[10000]; int size, count = 0; int fg[5000], chk[128]; scanf ("%d", &size); int size, count = 0, res; scanf ("%d%d%d", &len, &n, &size); while (size--) rep (i, n) scanf ("%s", dic[i]); { scanf ("%d%d", &n, &m); while (size--) rep (i, m) { { scanf ("%s", in); scanf ("%d", s + i); st = 0; rep (k, n) fg[k] = 1;

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Blasien: programmer-friendly XML in C++11 Jos van den Oever Blasien: programmer-friendly XML

Blasien: programmer-friendly XML in C++11 Jos van den Oever Blasien: programmer-friendly XML

Blasien: programmer-friendly XML in C++11 Jos van den Oever Blasien: programmer-friendly XML in C++11 Prevention is better than cure Jos van den Oever ODF is XML &lt;number:date-style style:name=&quot;minimum_year&quot;&gt;

312 views • 16 slides
Advanced Technology M 3 L T EX workshop A Write like a programmer! Martin Klein Schaarsberg

Advanced Technology M 3 L T EX workshop A Write like a programmer! Martin Klein Schaarsberg

Advanced Technology M 3 L T EX workshop A Write like a programmer! Martin Klein Schaarsberg University of T wente September 11 and 12, 2014 Write like a programmer? Why? Consistency and clarity by separation of content and style

1.18k views • 69 slides
style#1 grace style#2 freya style#3 iona style#4 skye style#5 cora style#6 maisie style#7 isla

style#1 grace style#2 freya style#3 iona style#4 skye style#5 cora style#6 maisie style#7 isla

style#1 grace style#2 freya style#3 iona style#4 skye style#5 cora style#6 maisie style#7 isla style#8 flora Add-on products Cashmere bed socks 3 colours Lace bralette 3 colours Necklaces 2 styles Labelling Packaging Website HOME

829 views • 13 slides
DCP250 Controller Programmer Presentation DCP250 Overview Controller and Programmer with

DCP250 Controller Programmer Presentation DCP250 Overview Controller and Programmer with

DCP250 Controller Programmer Presentation DCP250 Overview Controller and Programmer with Graphic Display 1/4 DIN (96x96mm) size One or two control loops Programmer (255 segments shared in up to 64 programs) Data logger with real

717 views • 33 slides
Overview of the Recognizing Inference in TExt (RITE-2) at Recognizing Inference in

Overview of the Recognizing Inference in TExt (RITE-2) at Recognizing Inference in

RITE-2 Overview of the Recognizing Inference in TExt (RITE-2) at Recognizing Inference in TExt@NTCIR10 NTCIR-10 Yotaro Yusuke Junta Tomohide Hiroshi Cheng- Watanabe Miyao Mizuno Shibata Kanayama Wei Lee Tohoku NII

406 views • 39 slides
Recognizing objects and actions in Finding boundaries images and video Recognizing

Recognizing objects and actions in Finding boundaries images and video Recognizing

Outline Recognizing objects and actions in Finding boundaries images and video Recognizing objects Jitendra Malik Recognizing actions U.C. Berkeley University of California University of California Computer Vision Group

318 views • 7 slides
Synchrony Weakened by Message Adversaries vs Asynchrony Restricted by Failure Detectors Michel R

Synchrony Weakened by Message Adversaries vs Asynchrony Restricted by Failure Detectors Michel R

Synchrony Weakened by Message Adversaries vs Asynchrony Restricted by Failure Detectors Michel R AYNAL , Julien S TAINER Institut Universitaire de France IRISA, Universit de Rennes, France Message adversaries vs failure

467 views • 43 slides
IT350: Web &amp; Internet Programming Set 4: CSS No Style Style! How do we get from here to

IT350: Web &amp; Internet Programming Set 4: CSS No Style Style! How do we get from here to

IT350: Web &amp; Internet Programming Set 4: CSS No Style Style! How do we get from here to there? 1 Cascading Style Sheets (CSS) example Key Questions Where can we specify style? How to select what parts of a page the style

692 views • 9 slides
Imitating Latent Policies from Observation Ashley D. Edwards, Himanshu Sahni, Yannick Schroecker,

Imitating Latent Policies from Observation Ashley D. Edwards, Himanshu Sahni, Yannick Schroecker,

Imitating Latent Policies from Observation Ashley D. Edwards, Himanshu Sahni, Yannick Schroecker, Charles L. Isbell Georgia Institute of Technology Introduction Imitation from Observation enables learning from state sequences Typical

553 views • 10 slides
On Optimal and Reasonable Control in the Presence of Adversaries Oded Maler CNRS-VERIMAG

On Optimal and Reasonable Control in the Presence of Adversaries Oded Maler CNRS-VERIMAG

On Optimal and Reasonable Control in the Presence of Adversaries Oded Maler CNRS-VERIMAG Grenoble, France August 2005 Optimal Control with Adversaries Oded Maler What Not New results and theorems Description of application or

896 views • 44 slides
Imitating Reality A Moulage Experience Laerdal SUN Conference October 2018 Orlando, FL About

Imitating Reality A Moulage Experience Laerdal SUN Conference October 2018 Orlando, FL About

Imitating Reality A Moulage Experience Laerdal SUN Conference October 2018 Orlando, FL About SIMETRI SIMETRI designs and develops creative technologies and capabilities for medical training. We are a woman- owned, minority-owned small

349 views • 31 slides
WARNING FAILURE TO INSTALL RIVER RUN PRODUCTS SO THAT THE ENTRY SECTION SUPPORT FRAME IS

WARNING FAILURE TO INSTALL RIVER RUN PRODUCTS SO THAT THE ENTRY SECTION SUPPORT FRAME IS

RIVER RUN SLIDE Assembly &amp; Installation Instructions Style 19A Style 24A Style 19B Style 24B Visit inter-fab.com to view our installation help video. Style 23A (Video does NOT replace Style 29A installation instructions.)

688 views • 20 slides
Virtual Memory Programmer can assume he/she has infinite amount of physical memory

Virtual Memory Programmer can assume he/she has infinite amount of physical memory

4/27/17 Virtual Memory Idea: Give the programmer the illusion of a large address space while having a small physical memory So that the programmer does not worry about managing physical memory Virtual Memory Programmer can assume

817 views • 12 slides
A Rapidly Progressive Hydatid Disease Imitating Metastatic Malignancy: An Unusual Multi-Organ

A Rapidly Progressive Hydatid Disease Imitating Metastatic Malignancy: An Unusual Multi-Organ

Open Access SAJ Case Reports Case Report ISSN: 2375-7043 A Rapidly Progressive Hydatid Disease Imitating Metastatic Malignancy: An Unusual Multi-Organ Presentation. Report of a Case and Review of Literature Qays A. Hassan Al-Timimy * Section

338 views • 4 slides
Animation-Driven Locomotion For Smoother Navigation Bobby Anguelov AI Programmer, IO Interactive

Animation-Driven Locomotion For Smoother Navigation Bobby Anguelov AI Programmer, IO Interactive

Animation-Driven Locomotion For Smoother Navigation Bobby Anguelov AI Programmer, IO Interactive Gabriel Leblanc AI Programmer, Eidos-Montral Shawn Harris Senior Programmer, Big Huge Games Format Introduction to Animation-Driven

1.58k views • 87 slides
FPGA Altera Programmer Ladislav Beran Department of Electrical Engineering 28.11. 2013

FPGA Altera Programmer Ladislav Beran Department of Electrical Engineering 28.11. 2013

FPGA Altera Programmer Ladislav Beran Department of Electrical Engineering 28.11. 2013 INTRODUCTION The primary goal of this project is to create programmer of FPGA. This programmer was created and developped for the application

220 views • 9 slides
Computa(onal Fuzzy Extractors Benjamin Fuller , Xianrui Meng, and

Computa(onal Fuzzy Extractors Benjamin Fuller , Xianrui Meng, and

Computa(onal Fuzzy Extractors Benjamin Fuller , Xianrui Meng, and Leonid Reyzin December 2, 2013 Key Derivation from Noisy Sources High-entropy sources Physically

645 views • 29 slides
Make Streaming Great Again IEEE ComSoc Distinguished Lectures Portland State University, Dec.

Make Streaming Great Again IEEE ComSoc Distinguished Lectures Portland State University, Dec.

Make Streaming Great Again IEEE ComSoc Distinguished Lectures Portland State University, Dec. 2019 Ali C. Begen, PhD http://ali.begen.net Ankara BS in EE Toronto, ON Istanbul San Jose, CA Adv. Res. and Dev. Prof. in CS Dept. Atlanta,

681 views • 49 slides
Generalising Tree Traversals to DAGs Exploiting Sharing without the Pain Patrick Bahr 1 Emil

Generalising Tree Traversals to DAGs Exploiting Sharing without the Pain Patrick Bahr 1 Emil

Generalising Tree Traversals to DAGs Exploiting Sharing without the Pain Patrick Bahr 1 Emil Axelsson 2 1 University of Copenhagen paba@diku.dk 2 Chalmers University of Technology emax@chalmers.se PEPM 2015 Motivation Goal Do stuff on acyclic

1.2k views • 59 slides
Configuration Space Jane Li Assistant Professor Mechanical Engineering &amp; Robotics

Configuration Space Jane Li Assistant Professor Mechanical Engineering &amp; Robotics

RBE 550 MOTION PLANNING BASED ON DR. DMITRY BERENSON S RBE 550 Configuration Space Jane Li Assistant Professor Mechanical Engineering &amp; Robotics Engineering http://users.wpi.edu/~zli11 RBE 550 MOTION PLANNING BASED ON DR. DMITRY

967 views • 32 slides
REED ELEMENTARY SCHOOL Katie Balagia PTA Room Rep Coordinator krkeele@aol.com What does a

REED ELEMENTARY SCHOOL Katie Balagia PTA Room Rep Coordinator krkeele@aol.com What does a

ROOM REP ORIENTATION REED ELEMENTARY SCHOOL Katie Balagia PTA Room Rep Coordinator krkeele@aol.com What does a room rep do? PTA Donations and Volunteers You must be an approved volunteer to be a room rep. An LISD volunteer

108 views • 9 slides
a positive difference to customer relations on the frontline? Influence the culture and

a positive difference to customer relations on the frontline? Influence the culture and

What do your sales reps need from you in order to make a positive difference to customer relations on the frontline? Influence the culture and mindset of the reps to gain buy in to the brand Provide the right tools and training

2.46k views • 6 slides
Fast Synthesis of Fast Collections Calvin Loncaric Emina Torlak Michael D. Ernst University of

Fast Synthesis of Fast Collections Calvin Loncaric Emina Torlak Michael D. Ernst University of

Fast Synthesis of Fast Collections Calvin Loncaric Emina Torlak Michael D. Ernst University of Washington Data structures are everywhere Lists, maps, and sets solve many problems What if I need a custom data structure? 2 Cozy

550 views • 30 slides
Assembly Language for Intel- -Based Based Assembly Language for Intel th Edition Computers, 4 th

Assembly Language for Intel- -Based Based Assembly Language for Intel th Edition Computers, 4 th

Assembly Language for Intel- -Based Based Assembly Language for Intel th Edition Computers, 4 th Edition Computers, 4 Kip R. Irvine Chapter 9: Strings and Arrays Chapter Overview Chapter Overview String Primitive Instructions

783 views • 49 slides

More recommend