{"id":"https://openalex.org/W2736295073","doi":"https://doi.org/10.1145/3092282.3092314","title":"SunDew: systematic automated security testing (keynote)","display_name":"SunDew: systematic automated security testing (keynote)","publication_year":2017,"publication_date":"2017-07-13","ids":{"openalex":"https://openalex.org/W2736295073","doi":"https://doi.org/10.1145/3092282.3092314","mag":"2736295073"},"language":"en","primary_location":{"id":"doi:10.1145/3092282.3092314","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3092282.3092314","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 24th ACM SIGSOFT International SPIN Symposium on Model Checking of Software","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5000765311","display_name":"Domagoj Babi\u0107","orcid":null},"institutions":[{"id":"https://openalex.org/I1291425158","display_name":"Google (United States)","ror":"https://ror.org/00njsd438","country_code":"US","type":"company","lineage":["https://openalex.org/I1291425158","https://openalex.org/I4210128969"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Domagoj Babic","raw_affiliation_strings":["Google, USA"],"affiliations":[{"raw_affiliation_string":"Google, USA","institution_ids":["https://openalex.org/I1291425158"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5000765311"],"corresponding_institution_ids":["https://openalex.org/I1291425158"],"apc_list":null,"apc_paid":null,"fwci":0.3392,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.62447786,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"10","last_page":"10"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.993399977684021,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9878000020980835,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.8814501762390137},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8779358863830566},{"id":"https://openalex.org/keywords/symbolic-execution","display_name":"Symbolic execution","score":0.828028678894043},{"id":"https://openalex.org/keywords/code-coverage","display_name":"Code coverage","score":0.531909167766571},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.4461807906627655},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.4333411157131195},{"id":"https://openalex.org/keywords/concolic-testing","display_name":"Concolic testing","score":0.4210509955883026},{"id":"https://openalex.org/keywords/static-analysis","display_name":"Static analysis","score":0.41728144884109497},{"id":"https://openalex.org/keywords/computer-engineering","display_name":"Computer engineering","score":0.3747556209564209},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.30851465463638306}],"concepts":[{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.8814501762390137},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8779358863830566},{"id":"https://openalex.org/C2779639559","wikidata":"https://www.wikidata.org/wiki/Q7661178","display_name":"Symbolic execution","level":3,"score":0.828028678894043},{"id":"https://openalex.org/C53942775","wikidata":"https://www.wikidata.org/wiki/Q1211721","display_name":"Code coverage","level":3,"score":0.531909167766571},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.4461807906627655},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.4333411157131195},{"id":"https://openalex.org/C11219265","wikidata":"https://www.wikidata.org/wiki/Q5158734","display_name":"Concolic testing","level":4,"score":0.4210509955883026},{"id":"https://openalex.org/C97686452","wikidata":"https://www.wikidata.org/wiki/Q7604153","display_name":"Static analysis","level":2,"score":0.41728144884109497},{"id":"https://openalex.org/C113775141","wikidata":"https://www.wikidata.org/wiki/Q428691","display_name":"Computer engineering","level":1,"score":0.3747556209564209},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.30851465463638306},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3092282.3092314","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3092282.3092314","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 24th ACM SIGSOFT International SPIN Symposium on Model Checking of Software","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W2777046235","https://openalex.org/W3019261932","https://openalex.org/W2186070848","https://openalex.org/W49527103","https://openalex.org/W2785720764","https://openalex.org/W2914996832","https://openalex.org/W2020667931","https://openalex.org/W2294472655","https://openalex.org/W2440985157","https://openalex.org/W3172606155"],"abstract_inverted_index":{"SunDew":[0,61,118,195,260,311],"is":[1],"a":[2,29,55,90,93,108,209,242,263,270,313],"new":[3],"automated":[4,48,125,181],"test":[5,25,49,58,111,126,278,291,304],"generation":[6,26,50,59,112,279,293],"framework":[7],"developed":[8,241],"at":[9,42],"Google,":[10],"focused":[11],"on":[12,103,312],"finding":[13],"security":[14],"bugs":[15],"in":[16,124,225,298],"C/C++":[17],"code.":[18,223],"It":[19,33,268],"combines":[20],"the":[21,35,47,65,80,83,104,120,173,206,219,276,286,290,299,303,308],"strengths":[22],"of":[23,38,57,82,89,96,101,110,237,244,289,302,310,315,318],"multiple":[24],"techniques":[27],"under":[28,160],"single":[30],"cohesive":[31],"platform.":[32],"leverages":[34],"vast":[36],"amount":[37],"computational":[39],"resources":[40],"available":[41],"Google":[43],"to":[44,63,85,142,156,169,178,203,208,217,255,284],"massively":[45],"parallelize":[46],"and":[51,132,294],"triage.":[52],"By":[53],"using":[54,200,214],"portfolio":[56,100],"techniques,":[60,102],"aims":[62],"overcome":[64],"coverage":[66,179,207,300],"saturation":[67,77,211],"(or":[68],"plateau)":[69],"that":[70,114,145,165,247],"occurs":[71],"with":[72],"any":[73],"individual":[74],"technique.":[75],"This":[76,151,281],"manifests":[78],"as":[79,184],"inability":[81],"technique":[84],"discover":[86,170],"unexplored":[87],"parts":[88],"program":[91,149],"after":[92],"certain":[94],"number":[95,243],"generated":[97],"tests.":[98],"A":[99],"other":[105,251],"hand,":[106],"provides":[107],"diversity":[109],"strategies":[113],"complement":[115],"each":[116],"other.":[117],"embeds":[119],"most":[121],"recent":[122,176],"advances":[123],"case":[127],"generation,":[128],"which":[129],"provide":[130,228],"precision":[131],"thoroughness.":[133],"For":[134],"example,":[135],"symbolic":[136,154,192,215],"execution":[137,155,216],"uses":[138],"powerful":[139],"constraint":[140],"solvers":[141],"generate":[143,256],"tests":[144,189],"precisely":[146],"follow":[147],"desired":[148],"branches.":[150],"approach":[152],"allows":[153,269,282],"reach":[157],"code":[158],"executed":[159],"very":[161],"specific":[162],"input":[163],"preconditions":[164],"would":[166],"be":[167],"difficult":[168],"randomly.":[171],"At":[172],"same":[174],"time,":[175],"improvements":[177],"guided":[180],"fuzzing,":[182],"such":[183],"AFL":[185],"or":[186],"LibFuzzer,":[187],"generates":[188],"faster":[190],"than":[191],"execution.":[193],"Thus,":[194],"alternates":[196],"these":[197],"approaches":[198],"by":[199],"coverage-guided":[201,232],"fuzzing":[202,316],"quickly":[204],"bring":[205],"first":[210],"level,":[212],"then":[213],"refine":[218],"search":[220],"for":[221,231,275],"harder-to-reach":[222],"This,":[224],"turn,":[226],"may":[227],"additional":[229],"inputs":[230],"fuzzers,":[233,246],"etc.":[234],"As":[235],"part":[236],"SunDew,":[238],"we":[239],"also":[240],"format-aware":[245],"rely":[248],"on,":[249],"amongst":[250],"things,":[252],"machine":[253],"learning":[254],"language-aware":[257],"fuzzers.":[258],"The":[259],"architecture":[261],"follows":[262],"distributed":[264],"continuous":[265],"pipeline":[266],"pattern.":[267],"performance-based":[271],"dynamic":[272],"resource":[273],"allocation":[274],"various":[277],"techniques.":[280],"us":[283],"maximize":[285],"combined":[287],"output":[288],"suite":[292],"avoid":[295],"long":[296],"plateaus":[297],"growth":[301],"suite.":[305],"We":[306],"discuss":[307],"application":[309],"variety":[314],"targets":[317],"interest.":[319]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2018,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}