{"id":"https://openalex.org/W4288057755","doi":"https://doi.org/10.1109/sp46214.2022.9833613","title":"Goshawk: Hunting Memory Corruptions via Structure-Aware and Object-Centric Memory Operation Synopsis","display_name":"Goshawk: Hunting Memory Corruptions via Structure-Aware and Object-Centric Memory Operation Synopsis","publication_year":2022,"publication_date":"2022-05-01","ids":{"openalex":"https://openalex.org/W4288057755","doi":"https://doi.org/10.1109/sp46214.2022.9833613"},"language":"en","primary_location":{"id":"doi:10.1109/sp46214.2022.9833613","is_oa":false,"landing_page_url":"https://doi.org/10.1109/sp46214.2022.9833613","pdf_url":null,"source":{"id":"https://openalex.org/S4363606603","display_name":"2022 IEEE Symposium on Security and Privacy (SP)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE Symposium on Security and Privacy (SP)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5010048104","display_name":"Yunlong Lyu","orcid":"https://orcid.org/0009-0006-6766-6271"},"institutions":[{"id":"https://openalex.org/I126520041","display_name":"University of Science and Technology of China","ror":"https://ror.org/04c4dkn09","country_code":"CN","type":"education","lineage":["https://openalex.org/I126520041","https://openalex.org/I19820366"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Yunlong Lyu","raw_affiliation_strings":["University of Science and Technology of China"],"affiliations":[{"raw_affiliation_string":"University of Science and Technology of China","institution_ids":["https://openalex.org/I126520041"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101972978","display_name":"Yi Fang","orcid":"https://orcid.org/0000-0001-6572-4315"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Yi Fang","raw_affiliation_strings":["Feiyu Security"],"affiliations":[{"raw_affiliation_string":"Feiyu Security","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100410223","display_name":"Yiwei Zhang","orcid":"https://orcid.org/0000-0003-1666-8008"},"institutions":[{"id":"https://openalex.org/I183067930","display_name":"Shanghai Jiao Tong University","ror":"https://ror.org/0220qvk04","country_code":"CN","type":"education","lineage":["https://openalex.org/I183067930"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yiwei Zhang","raw_affiliation_strings":["G.O.S.S.I.P, Shanghai Jiao Tong University"],"affiliations":[{"raw_affiliation_string":"G.O.S.S.I.P, Shanghai Jiao Tong University","institution_ids":["https://openalex.org/I183067930"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5102908901","display_name":"Qibin Sun","orcid":"https://orcid.org/0000-0002-6789-7460"},"institutions":[{"id":"https://openalex.org/I126520041","display_name":"University of Science and Technology of China","ror":"https://ror.org/04c4dkn09","country_code":"CN","type":"education","lineage":["https://openalex.org/I126520041","https://openalex.org/I19820366"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Qibin Sun","raw_affiliation_strings":["University of Science and Technology of China"],"affiliations":[{"raw_affiliation_string":"University of Science and Technology of China","institution_ids":["https://openalex.org/I126520041"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5016972157","display_name":"Siqi Ma","orcid":"https://orcid.org/0000-0003-3479-5713"},"institutions":[{"id":"https://openalex.org/I31746571","display_name":"UNSW Sydney","ror":"https://ror.org/03r8z3t63","country_code":"AU","type":"education","lineage":["https://openalex.org/I31746571"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Siqi Ma","raw_affiliation_strings":["The University of New South Wales"],"affiliations":[{"raw_affiliation_string":"The University of New South Wales","institution_ids":["https://openalex.org/I31746571"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5061694501","display_name":"Elisa Bertino","orcid":"https://orcid.org/0000-0002-4029-7051"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Elisa Bertino","raw_affiliation_strings":["Purdue University"],"affiliations":[{"raw_affiliation_string":"Purdue University","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5043198742","display_name":"Kangjie Lu","orcid":"https://orcid.org/0000-0002-4763-7354"},"institutions":[{"id":"https://openalex.org/I2800403580","display_name":"University of Minnesota System","ror":"https://ror.org/03grvy078","country_code":"US","type":"education","lineage":["https://openalex.org/I2800403580"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Kangjie Lu","raw_affiliation_strings":["University of Minnesota"],"affiliations":[{"raw_affiliation_string":"University of Minnesota","institution_ids":["https://openalex.org/I2800403580"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5020082816","display_name":"Juanru Li","orcid":"https://orcid.org/0000-0002-7978-595X"},"institutions":[{"id":"https://openalex.org/I183067930","display_name":"Shanghai Jiao Tong University","ror":"https://ror.org/0220qvk04","country_code":"CN","type":"education","lineage":["https://openalex.org/I183067930"]},{"id":"https://openalex.org/I4210122302","display_name":"ShangHai JiAi Genetics & IVF Institute","ror":"https://ror.org/02rgbry52","country_code":"CN","type":"healthcare","lineage":["https://openalex.org/I4210122302"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Juanru Li","raw_affiliation_strings":["Feiyu Security","G.O.S.S.I.P, Shanghai Jiao Tong University","Shanghai Qi Zhi Institute"],"affiliations":[{"raw_affiliation_string":"Feiyu Security","institution_ids":[]},{"raw_affiliation_string":"G.O.S.S.I.P, Shanghai Jiao Tong University","institution_ids":["https://openalex.org/I183067930"]},{"raw_affiliation_string":"Shanghai Qi Zhi Institute","institution_ids":["https://openalex.org/I4210122302"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":8,"corresponding_author_ids":["https://openalex.org/A5010048104"],"corresponding_institution_ids":["https://openalex.org/I126520041"],"apc_list":null,"apc_paid":null,"fwci":1.3512,"has_fulltext":false,"cited_by_count":13,"citation_normalized_percentile":{"value":0.82870071,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"2096","last_page":"2113"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9961000084877014,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/allocator","display_name":"Allocator","score":0.9309860467910767},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8160457611083984},{"id":"https://openalex.org/keywords/object","display_name":"Object (grammar)","score":0.5362085700035095},{"id":"https://openalex.org/keywords/identification","display_name":"Identification (biology)","score":0.5121476650238037},{"id":"https://openalex.org/keywords/function","display_name":"Function (biology)","score":0.47350579500198364},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.46289482712745667},{"id":"https://openalex.org/keywords/memory-management","display_name":"Memory management","score":0.44030120968818665},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.4277825653553009},{"id":"https://openalex.org/keywords/memory-model","display_name":"Memory model","score":0.41479721665382385},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.31762218475341797},{"id":"https://openalex.org/keywords/computer-hardware","display_name":"Computer hardware","score":0.23346596956253052},{"id":"https://openalex.org/keywords/parallel-computing","display_name":"Parallel computing","score":0.23013976216316223},{"id":"https://openalex.org/keywords/shared-memory","display_name":"Shared memory","score":0.1828242838382721}],"concepts":[{"id":"https://openalex.org/C162262903","wikidata":"https://www.wikidata.org/wiki/Q343527","display_name":"Allocator","level":2,"score":0.9309860467910767},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8160457611083984},{"id":"https://openalex.org/C2781238097","wikidata":"https://www.wikidata.org/wiki/Q175026","display_name":"Object (grammar)","level":2,"score":0.5362085700035095},{"id":"https://openalex.org/C116834253","wikidata":"https://www.wikidata.org/wiki/Q2039217","display_name":"Identification (biology)","level":2,"score":0.5121476650238037},{"id":"https://openalex.org/C14036430","wikidata":"https://www.wikidata.org/wiki/Q3736076","display_name":"Function (biology)","level":2,"score":0.47350579500198364},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.46289482712745667},{"id":"https://openalex.org/C176649486","wikidata":"https://www.wikidata.org/wiki/Q2308807","display_name":"Memory management","level":3,"score":0.44030120968818665},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.4277825653553009},{"id":"https://openalex.org/C12186640","wikidata":"https://www.wikidata.org/wiki/Q6815743","display_name":"Memory model","level":3,"score":0.41479721665382385},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.31762218475341797},{"id":"https://openalex.org/C9390403","wikidata":"https://www.wikidata.org/wiki/Q3966","display_name":"Computer hardware","level":1,"score":0.23346596956253052},{"id":"https://openalex.org/C173608175","wikidata":"https://www.wikidata.org/wiki/Q232661","display_name":"Parallel computing","level":1,"score":0.23013976216316223},{"id":"https://openalex.org/C133875982","wikidata":"https://www.wikidata.org/wiki/Q764810","display_name":"Shared memory","level":2,"score":0.1828242838382721},{"id":"https://openalex.org/C59822182","wikidata":"https://www.wikidata.org/wiki/Q441","display_name":"Botany","level":1,"score":0.0},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C136085584","wikidata":"https://www.wikidata.org/wiki/Q910289","display_name":"Overlay","level":2,"score":0.0},{"id":"https://openalex.org/C78458016","wikidata":"https://www.wikidata.org/wiki/Q840400","display_name":"Evolutionary biology","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/sp46214.2022.9833613","is_oa":false,"landing_page_url":"https://doi.org/10.1109/sp46214.2022.9833613","pdf_url":null,"source":{"id":"https://openalex.org/S4363606603","display_name":"2022 IEEE Symposium on Security and Privacy (SP)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE Symposium on Security and Privacy (SP)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.8199999928474426,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320335777","display_name":"National Key Research and Development Program of China","ror":null}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":42,"referenced_works":["https://openalex.org/W1480909796","https://openalex.org/W1584401549","https://openalex.org/W1710734607","https://openalex.org/W1966371120","https://openalex.org/W1970005004","https://openalex.org/W1981015239","https://openalex.org/W2034876169","https://openalex.org/W2069608804","https://openalex.org/W2078197322","https://openalex.org/W2079540358","https://openalex.org/W2104292255","https://openalex.org/W2150990339","https://openalex.org/W2158798798","https://openalex.org/W2171590421","https://openalex.org/W2514974017","https://openalex.org/W2773223713","https://openalex.org/W2784876765","https://openalex.org/W2792181598","https://openalex.org/W2793974819","https://openalex.org/W2794889478","https://openalex.org/W2888875512","https://openalex.org/W2891748016","https://openalex.org/W2954101292","https://openalex.org/W2962784628","https://openalex.org/W2963979492","https://openalex.org/W2968152713","https://openalex.org/W2977300221","https://openalex.org/W3008276449","https://openalex.org/W3048272215","https://openalex.org/W3106029585","https://openalex.org/W3136762838","https://openalex.org/W3153700867","https://openalex.org/W3156527753","https://openalex.org/W4385245566","https://openalex.org/W6637688222","https://openalex.org/W6739901393","https://openalex.org/W6753913213","https://openalex.org/W6765285382","https://openalex.org/W6766726536","https://openalex.org/W6768491504","https://openalex.org/W6781538887","https://openalex.org/W6794321951"],"related_works":["https://openalex.org/W45732507","https://openalex.org/W1559720592","https://openalex.org/W2144538993","https://openalex.org/W2122491468","https://openalex.org/W2010367507","https://openalex.org/W4251791943","https://openalex.org/W1709162542","https://openalex.org/W4381612137","https://openalex.org/W2512099864","https://openalex.org/W2167102554"],"abstract_inverted_index":{"Existing":[0],"tools":[1,276],"for":[2,194],"the":[3,121,135,148,180,214,268,286,294],"automated":[4],"detection":[5,90,117,159,234,275],"of":[6,123,138,169,219,280,288],"memory":[7,21,99,115,136,232,239],"corruption":[8],"bugs":[9,100,240,296],"are":[10,145],"not":[11,177],"very":[12,47,224],"effective":[13,89],"in":[14,223,282],"practice.":[15],"They":[16],"typically":[17],"recognize":[18],"only":[19],"standard":[20],"management":[22],"(MM)":[23],"APIs":[24],"(e.g.,":[25],"malloc":[26],"and":[27,29,54,81,97,125,150,175,190,208,216,244,253,263,285,303,309],"free)":[28],"assume":[30],"a":[31,39,111,139,157,198,230,298],"naive":[32],"paired-use":[33,181],"model\u2014an":[34],"allocator":[35,65],"is":[36,166],"followed":[37],"by":[38,119,147,242,277],"specific":[40],"deallocator.":[41],"However,":[42],"we":[43,109,196],"observe":[44],"that":[45,55,202],"programmers":[46],"often":[48,58],"design":[49],"their":[50,151],"own":[51],"MM":[52,104,112,141,188,220,246,291],"functions":[53,57,66,189],"these":[56],"manifest":[59],"two":[60],"major":[61],"characteristics:":[62],"(1)":[63],"Custom":[64,79],"perform":[67],"multi-object":[68,171],"or":[69,172],"nested":[70,173],"allocation":[71],"which":[72,212],"then":[73],"requires":[74],"structure-aware":[75,124],"deallocation":[76],"functions.":[77],"(2)":[78],"allocators":[80],"deallocators":[82],"follow":[83],"an":[84,278],"unpaired-use":[85],"model.":[86,182],"A":[87,131],"more":[88],"thus":[91],"needs":[92],"to":[93,102,185,237,251],"adapt":[94],"those":[95],"characteristics":[96],"capture":[98],"related":[101],"non-standard":[103],"behaviors.":[105,247],"In":[106,183],"this":[107],"paper,":[108],"present":[110],"function":[113],"aware":[114],"bug":[116,158,233,274],"technique":[118],"introducing":[120],"concept":[122],"object-centric":[126],"Memory":[127],"Operation":[128],"Synopsis":[129],"(MOS).":[130],"MOS":[132,193,300],"abstractly":[133],"describes":[134],"objects":[137],"given":[140],"function,":[142,149],"how":[143],"they":[144],"managed":[146],"structural":[152],"relations.":[153],"By":[154],"utilizing":[155],"MOS,":[156],"could":[160],"explore":[161],"much":[162],"less":[163],"code":[164,226],"but":[165],"still":[167],"capable":[168],"handling":[170],"allocations":[174],"does":[176],"rely":[178],"on":[179],"addition,":[184],"extensively":[186],"find":[187],"automatically":[191],"generate":[192],"them,":[195],"propose":[197],"new":[199,307],"identification":[200,218],"approach":[201],"combines":[203],"natural":[204],"language":[205],"processing":[206],"(NLP)":[207],"data":[209,270],"flow":[210,271],"analysis,":[211],"enables":[213],"efficient":[215],"comprehensive":[217],"functions,":[221,292],"even":[222],"large":[225],"bases.":[227],"We":[228,248],"implement":[229],"MOS-enhanced":[231],"system,":[235],"Goshawk,":[236],"discover":[238],"caused":[241],"complex":[243],"custom":[245],"applied":[249],"Goshawk":[250,266],"well-tested":[252],"widely-used":[254],"open":[255],"source":[256],"projects":[257],"including":[258],"OS":[259],"kernels,":[260],"server":[261],"applications,":[262],"IoT":[264],"SDKs.":[265],"outperforms":[267],"state-of-the-art":[269],"analysis":[272,283],"driven":[273],"order":[279],"magnitude":[281],"speed":[284],"number":[287],"accurately":[289],"identified":[290],"reports":[293],"discovered":[295],"with":[297],"developer-friendly,":[299],"based":[301],"description,":[302],"successfully":[304],"detects":[305],"92":[306],"double-free":[308],"use-after-free":[310],"bugs.":[311]},"counts_by_year":[{"year":2025,"cited_by_count":6},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}