synergizing specification miners through model fissions
play

Synergizing Specification Miners through Model Fissions and Fusions - PowerPoint PPT Presentation

Feb 03, 2023 •310 likes •849 views

SpecForge Existing miners Synergizing Specification Miners through Model Fissions and Fusions Tien-Duy B. Le 1 , Xuan-Bach D. Le 1 , David Lo 1 , Ivan Beschastnikh 2 1 Singapore Management University 2 University of British Columbia 1 SpecForge

  1. SpecForge Existing miners Synergizing Specification Miners through Model Fissions and Fusions Tien-Duy B. Le 1 , Xuan-Bach D. Le 1 , David Lo 1 , Ivan Beschastnikh 2 1 Singapore Management University 2 University of British Columbia 1

  2. SpecForge Existing miners Synergizing Specification Miners through Model Fissions and Fusions Tien-Duy B. Le 1 , Xuan-Bach D. Le 1 , David Lo 1 , Ivan Beschastnikh 2 1 Singapore Management University 2 University of British Columbia 2

  3. Software Specifications Software systems and libraries usually lack up-to-date formal specifications. Formal specifications are Rapid Software Evolution non-trivial to write down 3

  4. Software Specifications Lack of Formal Specifications Maintainability & Reliability Challenges o Reduced code comprehension o Implicit assumptions may cause bugs o Difficult to identify regressions Software Specification Mining 4

  5. Software Specification Mining • Many existing specification mining algorithms – Most automatically infer specs from execution traces • Our focus: tools that mine FSAs Finite State Automata (FSA) Examples: k-tail, CONTRACTOR++, SEKT, TEMI, Synoptic 5

  6. No Perfect Specification Miner • Existing miners make complex trade-offs – Some use temporal constraints (k-tails) – Others use mined data invariants (SEKT) – Vary in their robustness to incomplete traces … • A proliferation of spec miners – Which one to use? 6

  7. No Perfect Specification Miner • Existing miners make complex trade-offs – Some use temporal constraints (k-tails) Let’s take advantage of this proliferation! – Some use mined data invariants (SEKT) Our contribution: SpecForge … • Proliferation of spec miners – Which one to use? 7

  8. SpecForge overview SpecForge Existing miners • SpecForge synergizes many FSA-based specification mining algorithms • New concepts: – Model fission & model fusion 8

  9. Model Fission Inferred with a spec miner FSA model 9

  10. Model Fission Satisfied by the FSA model Temporal constraint Temporal constraint Temporal constraint FSA Temporal constraint Temporal constraint model Temporal constraint Temporal constraint Temporal constraint 10

  11. 1. Select temporal constraints Model Fusion 2. Fuse constraints into a new FSA FSA model’ 11

  12. SpecForge: Overall Framework Execution traces FSA miners SpecForge 1. Run each spec miner on traces 2. Decompose generated models with fission 3. Build new model using fusion 12

  13. Phase 1: Models Construction • Given N miners, construct N different FSAs Traces … Miner 1 Miner N-1 Miner N Miner 2 … FSA 1 FSA 2 FSA N-1 FSA N Legend Process Data 13

  14. Phase 2: Models Fission • Decompose each FSA i into a set of binary temporal constraints • Each constraint is expressed in Linear Temporal Logic (LTL) • In this work we use 6 LTL constraint types [1] M. B. Dwyer, G. S. Avrunin, and J. C. Corbett, “Patterns in property specifications for finite-state verification”. ICSE 1999 [2] I. Beschastnikh, Y. Brun, S. Schneider, M. Sloan, and M. D. Ernst, “Leveraging existing instrumentation to automatically infer invariantconstrained models,” ESEC/FSE 2011 [3] I. Beschastnikh, Y. Brun, J. Abrahamson, M. D. Ernst, and A. Krishnamurthy, “Using declarative specification to improve the understanding, extensibility, and comparison of model-inference algorithms,” TSE 2015 14

  15. LTL Constraint Types • AF(a,b) : a is always followed by b a b a b a b b a c b b b c a a a • NF(a,b): a is never followed by b b b a a a b b a a c a a c b a b • AP(a,b): a is always preceded by b b b a a a b b b c b b b c a a b 15

  16. LTL Constraint Types • AF(a,b) : a is always followed by b a b a b a b b a c b b b c a a a • NF(a,b): a is never followed by b b b a a a b b a a c a a c b a b • AP(a,b): a is always preceded by b b b a a a b b b c b b b c a a b 16

  17. LTL Constraint Types • AF(a,b) : a is always followed by b a b a b a b b a c b b b c a a a • NF(a,b): a is never followed by b b b a a a b b a a c a a c b a b • AP(a,b): a is always preceded by b b b a a a b b b c b b b c a a b 17

  18. The immediate LTL Constraint Types • AIF(a,b) : a is always immediately followed by b • NIF(a,b): a is never immediately followed by b • AIP(a,b): a is always immediately preceded by b AIF, NIF, and AIP are extensions of AF, NF, and AP 18

  19. Model Fission … FSA 1 FSA 2 FSA N FSA N-1 Phase II: Constraint Constraint Constraint Constraint Model Fission … Candidates N Candidates 2 Candidates N-1 Candidates 1 Model Checker LTL LTL LTL LTL … Constraints 1 Constraints 2 Constraints N Constraints N-1 Legend Process Data 19

  20. FSA à à LTL Constraints i • For each constraint type – Enumerate constraint candidates (e.g., possible method call combinations) – Verify each candidate on FSA with a model checker i – Retain just the constraints that hold in FSA i satisfied Constraint Model FSA LTL Constraints Candidates Checker i i Legend Process Data 20

  21. FSA à à LTL Constraints • Model checking is costly • Define a time threshold when checking constraint candidates – Terminate SPIN if running time > threshold F potentially miss important LTL constraints L satisfied Constraint Model FSA LTL Constraints Candidates Checker Legend Process Data 21

  22. Phase 3: Model Fusion Phase II: LTL LTL LTL LTL … Model Fission Constraint 1 Constraint 2 Constraint N-1 Constraint N Phase III: Model Fusion Constraints Selector Selected LTL Constraints Legend Process Data 22

  23. Selecting Constraints to Fuse • Select subset of LTL constraints – These determine the final SpecForge model • Unclear which constraints work best • We propose 4 heuristics – union – majority – satisfied by ≥ x – intersection 23

  24. Constraint Selection • Union – Assume all LTL constraints are correct – Returns all LTL constraints of all miners LTL LTL Constraints Constraints 1 2 Union LTL Constraints 3 24

  25. Constraint Selection • Satisfied by ≥ x – Select LTL constraints that satisfy at least x FSAs inferred by x miners. • Majority – Assume correct LTL constraints satisfy majority of FSAs – ~ Satisfied by • Intersection – Assume correct LTL constraints satisfy all of FSAs – ~ Satisfied by N 25

  26. Model Fusion Phase II: LTL LTL LTL LTL … Model Fission Constraint 1 Constraint N-1 Constraint 2 Constraint N Phase III: Model Fusion Constraints Selector Selected LTL Constraints Constraints to FSA Translator + FSA intersection Final FSA Specification Legend Process Data 26

  27. LTL Constraints à à FSA • Convert each constraint into an FSA – Each FSA has two events (e.g., a and b ) in a given alphabet ∑ – Each constraint type has its own way to construct the FSA 27

  28. LTL Constraints à à FSA • AF(a,b) : a is always followed by b • AIF(a,b) : a is always immediately followed by b ∑ : alphabet (i.e., set of method calls Final state might occur in execution traces) 28

  29. LTL Constraints à à FSA • NF(a,b) : a is never followed by b • NIF(a,b) : a is never immediately followed by b ∑ : alphabet (i.e., set of method calls Final state might occur in execution traces) 29

  30. LTL Constraints à à FSA • AP(a,b) : a is always preceded by b • AIP(a,b) : a is always immediately preceded by b ∑ : alphabet (i.e., set of method calls Final state might occur in execution traces) 30

  31. LTL Constraints à à FSA • LTL Constraints à constraint FSAs • Final model = intersection of constraint FSAs – Final FSA satisfies all of the selected LTL constraints SpecForge summary: 1. Run each spec miner on traces 2. Decompose generated models with fission 3. Build new model using fusion 31

  32. Evaluation Research Questions 1. How effective is SpecForge? 2. Does SpecForge improve over existing spec miners? 3. What is the impact of constraint templates on model quality? 4. What is the impact of constraint selection heuristic on model quality? 32

  33. Dataset [13 library classes] Target Library Classes Client Programs Dacapo fop java.util.ArrayList Dacapo h2 java.util.HashMap Dacapo h2 java.util.HashSet Dacapo xalan java.util.Hashtable Dacapo avrora java.util.LinkedList Dacapo batik java.util.StringTokenizer Dacapo xalan org.apache.xalan.templates.ElemNumber $NumberFormatStringTokenizer StackArTester DataStructures.StackAr Columba, jFTP java.security.Signature Dacapo xalan org.apache.xml.serializer.ToHTMLStream JarInstaller java.util.zip.ZipOutputStream Columba org.columba.ristretto.smtp.SMTPProtocol Voldemort java.net.Socket 33

  34. Dataset • Execution traces generated by client program tests, paired with Daikon invariants • Ground-truth models – Krka et al. [1] – Pradel et al. [2] F Manually improved ground-truth models [1] Krka, Y. Brun, and N. Medvidovic, “Automatic mining of specifications from invocation traces and method invariants,”FSE 2014 [2] M. Pradel, P. Bichsel, and T. R. Gross, “A framework for the evaluation of specification miners based on finite state machines,” ICSM 2010 34

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

EO-MINERS Earth Observation for Monitoring and Observing Environmental and Societal Impacts of

EO-MINERS Earth Observation for Monitoring and Observing Environmental and Societal Impacts of

E E E E miners miners miners miners EO-MINERS Earth Observation for Monitoring and Observing Environmental and Societal Impacts of Mineral Resources Exploration and Exploitation Project no: 244242, call 2009, Theme 6, Topic

480 views • 16 slides
All about mining Joseph Bonneau Recap: Bitcoin miners Bitcoin depends on miners to: Store

All about mining Joseph Bonneau Recap: Bitcoin miners Bitcoin depends on miners to: Store

Lecture 4 All about mining Joseph Bonneau Recap: Bitcoin miners Bitcoin depends on miners to: Store and broadcast the block chain Validate new transactions Vote (by hash power) on consensus Who are the miners? Lecture 4.1: The

1.16k views • 99 slides
1 Good Requirements Graphical Languages? Specification Qualities Examples: Complete -

1 Good Requirements Graphical Languages? Specification Qualities Examples: Complete -

REQUIREMENT SPECIFICATION The Basic Waterfall Model Today: Requirements Specification Requirements Requirements tell us what the system should do - specification not how it should do it. Analysis & Requirements are

363 views • 3 slides
Incentives in cryptocurrencies Joseph Bonneau Recap: Bitcoin miners Bitcoin depends on miners to:

Incentives in cryptocurrencies Joseph Bonneau Recap: Bitcoin miners Bitcoin depends on miners to:

ECRYPT Workshop on Cryptocurrencies Incentives in cryptocurrencies Joseph Bonneau Recap: Bitcoin miners Bitcoin depends on miners to: Store and broadcast the block chain Validate new transactions Vote (by hash power) on consensus

939 views • 68 slides
Model Checking in the Propositional -Calculus Ka I Violet Pun INF 9140 - Specification and

Model Checking in the Propositional -Calculus Ka I Violet Pun INF 9140 - Specification and

Model Checking in the Propositional -Calculus Ka I Violet Pun INF 9140 - Specification and Verification of Parallel Systems 13 th May, 2011 Overview Model Checking is a useful means to automatically ascertain the specification of a system

347 views • 24 slides
A Safe Haven for Miners ON 2 Mine Refuge Systems where miners Safety comes FIRST A Safe Haven

A Safe Haven for Miners ON 2 Mine Refuge Systems where miners Safety comes FIRST A Safe Haven

A Safe Haven for Miners ON 2 Mine Refuge Systems where miners Safety comes FIRST A Safe Haven for Miners ON 2 Mine Refuge Systems Our History 1994: RANA Manufacturing creates the TommyKnocker and Refuge One Air Centre Refuge One

818 views • 32 slides
Declarative Specification of FSM-Inference Algorithms InvariMint Observations Model

Declarative Specification of FSM-Inference Algorithms InvariMint Observations Model

Declarative Specification of FSM-Inference Algorithms InvariMint Observations Model Declarative specification Ivan Beschastnikh Yuriy Brun Jenny Abrahamson Michael D. Ernst University of Washington UMass. Amherst Arvind Krishnamurthy

1.34k views • 75 slides
Miners, Operators, Builders unlocking value in resource assets November 2012 A Unique and

Miners, Operators, Builders unlocking value in resource assets November 2012 A Unique and

Miners, Operators, Builders unlocking value in resource assets November 2012 A Unique and Proven Model Each company has access to: Global network of political leaders Talent Capital Industry experts Strengthen Companies &

352 views • 14 slides
Synergizing SDGs 16 on National and Regional Level to Measure Inclusive Government and

Synergizing SDGs 16 on National and Regional Level to Measure Inclusive Government and

Synergizing SDGs 16 on National and Regional Level to Measure Inclusive Government and Justice: A Perspective Look of Indonesia Government Dr. Diani Sadiawati, S.H., LL.M. Senior Advisor on Institutional Relation to the Minister of

507 views • 17 slides
Mining, network, economics Joseph Bonneau Recap: Bitcoin miners

Mining, network, economics Joseph Bonneau Recap: Bitcoin miners

Lecture 2 Mining, network, economics Joseph Bonneau Recap: Bitcoin miners Bitcoin depends on miners to: Store and broadcast the block chain Validate new transactions Vote (by hash

1.1k views • 98 slides
Software specification in CASL - The Common Algebraic Specification Language Till Mossakowski,

Software specification in CASL - The Common Algebraic Specification Language Till Mossakowski,

Software specification in CASL - The Common Algebraic Specification Language Till Mossakowski, Lutz Schr oder October 2006 2 Overview Why formal specification? Waterfall Model Example: sorting CASL the Common Algebraic

542 views • 43 slides
A Formal Specification of the MIDP 2.0 Security Model eguelin 1 Gustavo Betarte 2 Carlos Luna 2

A Formal Specification of the MIDP 2.0 Security Model eguelin 1 Gustavo Betarte 2 Carlos Luna 2

Motivation Specification Verification Refinement A Formal Specification of the MIDP 2.0 Security Model eguelin 1 Gustavo Betarte 2 Carlos Luna 2 Santiago Zanella B 1 Everest Project, INRIA Sophia Antipolis INRIAMicrosoft Research Joint

1.4k views • 51 slides
Corporate Presentation dbAccess Thailand Corporate Day 23 November 2015 Synergizing Power &

Corporate Presentation dbAccess Thailand Corporate Day 23 November 2015 Synergizing Power &

Corporate Presentation dbAccess Thailand Corporate Day 23 November 2015 Synergizing Power & Utilities for the Global Future 0 Agenda Company Overview Project Updates & Outlooks Financial Performance 1 Company Strategy Vision

876 views • 54 slides
Smart Contracts for Bribing Miners Patrick McCorry, Alexander Hicks , Sarah Meiklejohn University

Smart Contracts for Bribing Miners Patrick McCorry, Alexander Hicks , Sarah Meiklejohn University

Smart Contracts for Bribing Miners Patrick McCorry, Alexander Hicks , Sarah Meiklejohn University College London What is a bribery attack? A wealthy adversary seeks to rent hashrate from existing miners in order to obtain a majority of the

668 views • 30 slides
Beyond Miners Rule Free Energy Damage Equivalence Alec Feinberg, Ph.D. DfRSoftware Company

Beyond Miners Rule Free Energy Damage Equivalence Alec Feinberg, Ph.D. DfRSoftware Company

Beyond Miners Rule Free Energy Damage Equivalence Alec Feinberg, Ph.D. DfRSoftware Company DfRSoft@gmail.net, www.DfRSoft.Com (617) 943-9034 DfRSoft Miners Rule - Energy Approach to Damage Miners empirical rule was an important

368 views • 19 slides
Sidechain Governance Why Involve the Miners? Paul Sztorc May 2016 Motivation Yes

Sidechain Governance Why Involve the Miners? Paul Sztorc May 2016 Motivation Yes

Sidechain Governance Why Involve the Miners? Paul Sztorc May 2016 Motivation Yes Motivation Motivation People do not want the miners to have control over the sidechains... ...but I do... In One Slide Contract Externalities Other

678 views • 64 slides
The constant appeared in algebraic and complex geometry Min Ru University of Houston TX, USA

The constant appeared in algebraic and complex geometry Min Ru University of Houston TX, USA

The constant appeared in algebraic and complex geometry Min Ru University of Houston TX, USA Min Ru The constant appeared in algebraic and complex geometry Nevanlinna theory: Introduction the notations Let X be a complex projective

1.14k views • 80 slides
Alternative Set Theories Introduction NGB MK Yurii Khomskii KP NF AFA IZF / CZF Other

Alternative Set Theories Introduction NGB MK Yurii Khomskii KP NF AFA IZF / CZF Other

Alternative Set Theories Yurii Khomskii Alternative Set Theories Introduction NGB MK Yurii Khomskii KP NF AFA IZF / CZF Other Yurii Khomskii Alternative Set Theories Naive Set Theory Alternative Set Theories Yurii Khomskii

886 views • 61 slides
Logical and Meta-Logical Frameworks Frank Pfenning Marktoberdorf Summer School 2001 July

Logical and Meta-Logical Frameworks Frank Pfenning Marktoberdorf Summer School 2001 July

Logical and Meta-Logical Frameworks Frank Pfenning Marktoberdorf Summer School 2001 July 25-August 4, 2001 1.1 First Things First If you play squash see me after lecture! 1.2 Outline of Four Lectures Lecture 1 : Higher-Order Abstract

1.51k views • 138 slides
FROM FRAGMENTS OF ARITHMETIC TO LARGE CARDINALS VIA QUINE-JENSEN SET THEORY ALI ENAYAT

FROM FRAGMENTS OF ARITHMETIC TO LARGE CARDINALS VIA QUINE-JENSEN SET THEORY ALI ENAYAT

FROM FRAGMENTS OF ARITHMETIC TO LARGE CARDINALS VIA QUINE-JENSEN SET THEORY ALI ENAYAT MATHEMATICAL LOGIC COLLOQUIUM (UTRECHT) MAY 4, 2007 Russells { x : x / x } (1901) Russells (Ramified )Type Theory RTT (1908) Ramseys

513 views • 20 slides
--- === Agda Tactics Programming === --- --- --- Ulf Norell --- wg2.8 Kefalonia, May

--- === Agda Tactics Programming === --- --- --- Ulf Norell --- wg2.8 Kefalonia, May

--- === Agda Tactics Programming === --- --- --- Ulf Norell --- wg2.8 Kefalonia, May 27, 2015 module module Slides where where open open import import Prelude -- https://github.com/UlfNorell/agda-prelude open open import

391 views • 5 slides
Unquenched matter in the gauge/gravity correspondence A. V. Ramallo Univ. Santiago Large-N

Unquenched matter in the gauge/gravity correspondence A. V. Ramallo Univ. Santiago Large-N

Unquenched matter in the gauge/gravity correspondence A. V. Ramallo Univ. Santiago Large-N gauge theories Florence, May, 2011 Plan of the talk Addition of flavor in AdS/CFT Quenched&Unquenched matter in AdS/CFT Smeared unquenched

621 views • 28 slides
Cosmology in Colombia (CoCo) 2020 Carlos Nieto September 2020 1 Introduction to Asymptotic Safety

Cosmology in Colombia (CoCo) 2020 Carlos Nieto September 2020 1 Introduction to Asymptotic Safety

Ultraviolet completion and predictivity from minimal parameterizations of Beyond-Standard-Model physics Carlos Mauricio Nieto Guerrero 1 1 Universidad Industrial de Santander Cosmology in Colombia (CoCo) 2020 Carlos Nieto September 2020 1

735 views • 38 slides
t rt rr rrs

t rt rr rrs

1.06k views • 56 slides

More recommend