{"id":"https://openalex.org/W2137178181","doi":"https://doi.org/10.1109/iccsa.2008.32","title":"Call-Flow Aware API Fuzz Testing for Security of Windows Systems","display_name":"Call-Flow Aware API Fuzz Testing for Security of Windows Systems","publication_year":2008,"publication_date":"2008-06-01","ids":{"openalex":"https://openalex.org/W2137178181","doi":"https://doi.org/10.1109/iccsa.2008.32","mag":"2137178181"},"language":"en","primary_location":{"id":"doi:10.1109/iccsa.2008.32","is_oa":false,"landing_page_url":"https://doi.org/10.1109/iccsa.2008.32","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2008 International Conference on Computational Sciences and Its Applications","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5102157296","display_name":"Younghan Choi","orcid":null},"institutions":[{"id":"https://openalex.org/I142401562","display_name":"Electronics and Telecommunications Research Institute","ror":"https://ror.org/03ysstz10","country_code":"KR","type":"facility","lineage":["https://openalex.org/I142401562","https://openalex.org/I2801339556","https://openalex.org/I4210144908","https://openalex.org/I4387152098"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"YoungHan Choi","raw_affiliation_strings":["Electronics and Telecommnications Research Institute, Daejeon, South Korea","Electron. and Telecommun. Res. Inst. (ETRI), Daejeon"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Electronics and Telecommnications Research Institute, Daejeon, South Korea","institution_ids":["https://openalex.org/I142401562"]},{"raw_affiliation_string":"Electron. and Telecommun. Res. Inst. (ETRI), Daejeon","institution_ids":["https://openalex.org/I142401562"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5029878919","display_name":"HyoungChun Kim","orcid":null},"institutions":[{"id":"https://openalex.org/I142401562","display_name":"Electronics and Telecommunications Research Institute","ror":"https://ror.org/03ysstz10","country_code":"KR","type":"facility","lineage":["https://openalex.org/I142401562","https://openalex.org/I2801339556","https://openalex.org/I4210144908","https://openalex.org/I4387152098"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"HyoungChun Kim","raw_affiliation_strings":["Electronics and Telecommnications Research Institute, Daejeon, South Korea","Electron. and Telecommun. Res. Inst. (ETRI), Daejeon"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Electronics and Telecommnications Research Institute, Daejeon, South Korea","institution_ids":["https://openalex.org/I142401562"]},{"raw_affiliation_string":"Electron. and Telecommun. Res. Inst. (ETRI), Daejeon","institution_ids":["https://openalex.org/I142401562"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5018872570","display_name":"HyungGeun Oh","orcid":null},"institutions":[{"id":"https://openalex.org/I142401562","display_name":"Electronics and Telecommunications Research Institute","ror":"https://ror.org/03ysstz10","country_code":"KR","type":"facility","lineage":["https://openalex.org/I142401562","https://openalex.org/I2801339556","https://openalex.org/I4210144908","https://openalex.org/I4387152098"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"HyungGeun Oh","raw_affiliation_strings":["Electronics and Telecommnications Research Institute, Daejeon, South Korea","Electron. and Telecommun. Res. Inst. (ETRI), Daejeon"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Electronics and Telecommnications Research Institute, Daejeon, South Korea","institution_ids":["https://openalex.org/I142401562"]},{"raw_affiliation_string":"Electron. and Telecommun. Res. Inst. (ETRI), Daejeon","institution_ids":["https://openalex.org/I142401562"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5055552809","display_name":"DoHoon Lee","orcid":"https://orcid.org/0000-0002-8441-3624"},"institutions":[{"id":"https://openalex.org/I142401562","display_name":"Electronics and Telecommunications Research Institute","ror":"https://ror.org/03ysstz10","country_code":"KR","type":"facility","lineage":["https://openalex.org/I142401562","https://openalex.org/I2801339556","https://openalex.org/I4210144908","https://openalex.org/I4387152098"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"DoHoon Lee","raw_affiliation_strings":["Electronics and Telecommnications Research Institute, Daejeon, South Korea","Electron. and Telecommun. Res. Inst. (ETRI), Daejeon"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Electronics and Telecommnications Research Institute, Daejeon, South Korea","institution_ids":["https://openalex.org/I142401562"]},{"raw_affiliation_string":"Electron. and Telecommun. Res. Inst. (ETRI), Daejeon","institution_ids":["https://openalex.org/I142401562"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.5201,"has_fulltext":false,"cited_by_count":4,"citation_normalized_percentile":{"value":0.75488332,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"19","last_page":"25"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9973000288009644,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.8946393728256226},{"id":"https://openalex.org/keywords/dependency","display_name":"Dependency (UML)","score":0.8829727172851562},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8148159980773926},{"id":"https://openalex.org/keywords/function","display_name":"Function (biology)","score":0.4936326742172241},{"id":"https://openalex.org/keywords/test-case","display_name":"Test case","score":0.4729188084602356},{"id":"https://openalex.org/keywords/dependency-graph","display_name":"Dependency graph","score":0.4650031328201294},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.383867084980011},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.2687206268310547},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.1427243947982788}],"concepts":[{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.8946393728256226},{"id":"https://openalex.org/C19768560","wikidata":"https://www.wikidata.org/wiki/Q320727","display_name":"Dependency (UML)","level":2,"score":0.8829727172851562},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8148159980773926},{"id":"https://openalex.org/C14036430","wikidata":"https://www.wikidata.org/wiki/Q3736076","display_name":"Function (biology)","level":2,"score":0.4936326742172241},{"id":"https://openalex.org/C128942645","wikidata":"https://www.wikidata.org/wiki/Q1568346","display_name":"Test case","level":3,"score":0.4729188084602356},{"id":"https://openalex.org/C16311509","wikidata":"https://www.wikidata.org/wiki/Q4148050","display_name":"Dependency graph","level":3,"score":0.4650031328201294},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.383867084980011},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.2687206268310547},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.1427243947982788},{"id":"https://openalex.org/C152877465","wikidata":"https://www.wikidata.org/wiki/Q208042","display_name":"Regression analysis","level":2,"score":0.0},{"id":"https://openalex.org/C78458016","wikidata":"https://www.wikidata.org/wiki/Q840400","display_name":"Evolutionary biology","level":1,"score":0.0},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/iccsa.2008.32","is_oa":false,"landing_page_url":"https://doi.org/10.1109/iccsa.2008.32","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2008 International Conference on Computational Sciences and Its Applications","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":11,"referenced_works":["https://openalex.org/W189562068","https://openalex.org/W571847859","https://openalex.org/W1550112417","https://openalex.org/W1771502115","https://openalex.org/W1988524530","https://openalex.org/W2002934700","https://openalex.org/W2016716561","https://openalex.org/W2032625371","https://openalex.org/W2123482495","https://openalex.org/W2136599330","https://openalex.org/W6632966915"],"related_works":["https://openalex.org/W4283392482","https://openalex.org/W2327631927","https://openalex.org/W2093568763","https://openalex.org/W1985166372","https://openalex.org/W69297589","https://openalex.org/W2003096546","https://openalex.org/W2430210575","https://openalex.org/W4289354592","https://openalex.org/W2099112646","https://openalex.org/W2165069859"],"abstract_inverted_index":{"API":[0,29,92,110,132,155],"fuzz":[1,30,93,111,156],"testing":[2,31,112,157],"is":[3,50,79,137],"to":[4,13,24,83,161,194],"insert":[5,165],"unexpected":[6,53],"data":[7,54,167],"into":[8,168],"parameters":[9],"of":[10,18,27,69,87,150,182],"functions":[11,37,43,70,105,141],"and":[12,107,117,164],"monitor":[14],"exceptions":[15],"or":[16],"errors":[17,159,192],"a":[19,97,119],"software":[20],"system":[21,180],"in":[22,59,171,178],"order":[23,82,139],"test":[25],"security":[26],"it.":[28],"without":[32,158],"considering":[33,114,148],"the":[34,47,60,65,76,85,88,102,115,127,129,138,143,162,179,195],"dependency":[35,66,89,103,144,163,196],"between":[36,104,197],"generates":[38],"many":[39],"errors,":[40],"because":[41],"required":[42],"aren't":[44],"called":[45,74],"before":[46,75],"target":[48,61,77],"function":[49,78],"called.":[51,80,146],"Therefore,":[52],"cannot":[55],"reach":[56],"various":[57,169],"codes":[58,170],"function.":[62],"We":[63,125,173],"define":[64],"as":[67],"relation":[68],"that":[71,100,108,140,189],"must":[72],"be":[73],"In":[81],"solve":[84],"problem":[86],"during":[90],"performing":[91],"testing,":[94],"we":[95],"propose":[96],"novel":[98],"Methodology":[99],"analyzes":[101],"automatically":[106],"performs":[109],"with":[113,142],"dependency,":[116],"implement":[118],"practical":[120],"tool":[121],"for":[122],"our":[123],"methodology.":[124],"name":[126],"methodology":[128],"Call-Flow":[130,136,149],"Aware":[131],"Fuzz":[133],"Testing":[134],"(CFAFT).":[135],"are":[145],"By":[147],"functions,":[151],"CFAFT":[152,190],"can":[153],"perform":[154],"related":[160,193],"invalid":[166],"functions.":[172,198],"experimented":[174],"on":[175],"DLL":[176],"files":[177],"folder":[181],"Windows":[183],"XP":[184],"SP2.":[185],"Experimental":[186],"result":[187],"showed":[188],"removed":[191]},"counts_by_year":[{"year":2020,"cited_by_count":2},{"year":2017,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}