{"id":"https://openalex.org/W4308633724","doi":"https://doi.org/10.1145/3548606.3560661","title":"Non-Distinguishable Inconsistencies as a Deterministic Oracle for Detecting Security Bugs","display_name":"Non-Distinguishable Inconsistencies as a Deterministic Oracle for Detecting Security Bugs","publication_year":2022,"publication_date":"2022-11-07","ids":{"openalex":"https://openalex.org/W4308633724","doi":"https://doi.org/10.1145/3548606.3560661"},"language":"en","primary_location":{"id":"doi:10.1145/3548606.3560661","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3548606.3560661","pdf_url":null,"source":{"id":"https://openalex.org/S4363608815","display_name":"Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100937302","display_name":"Qingyang Zhou","orcid":null},"institutions":[{"id":"https://openalex.org/I130238516","display_name":"University of Minnesota","ror":"https://ror.org/017zqws13","country_code":"US","type":"education","lineage":["https://openalex.org/I130238516"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Qingyang Zhou","raw_affiliation_strings":["University of Minnesota, Minneapolis, MN, USA"],"affiliations":[{"raw_affiliation_string":"University of Minnesota, Minneapolis, MN, USA","institution_ids":["https://openalex.org/I130238516"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5082177069","display_name":"Qiushi Wu","orcid":null},"institutions":[{"id":"https://openalex.org/I130238516","display_name":"University of Minnesota","ror":"https://ror.org/017zqws13","country_code":"US","type":"education","lineage":["https://openalex.org/I130238516"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Qiushi Wu","raw_affiliation_strings":["University of Minnesota, Minneapolis, MN, USA"],"affiliations":[{"raw_affiliation_string":"University of Minnesota, Minneapolis, MN, USA","institution_ids":["https://openalex.org/I130238516"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5066543990","display_name":"Dinghao Liu","orcid":"https://orcid.org/0009-0003-7151-9934"},"institutions":[{"id":"https://openalex.org/I76130692","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884","country_code":"CN","type":"education","lineage":["https://openalex.org/I76130692"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Dinghao Liu","raw_affiliation_strings":["Zhejiang University, Hangzhou, China"],"affiliations":[{"raw_affiliation_string":"Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I76130692"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5058611515","display_name":"Shouling Ji","orcid":"https://orcid.org/0000-0003-4268-372X"},"institutions":[{"id":"https://openalex.org/I76130692","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884","country_code":"CN","type":"education","lineage":["https://openalex.org/I76130692"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Shouling Ji","raw_affiliation_strings":["Zhejiang University, Hangzhou, China"],"affiliations":[{"raw_affiliation_string":"Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I76130692"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5043198742","display_name":"Kangjie Lu","orcid":"https://orcid.org/0000-0002-4763-7354"},"institutions":[{"id":"https://openalex.org/I130238516","display_name":"University of Minnesota","ror":"https://ror.org/017zqws13","country_code":"US","type":"education","lineage":["https://openalex.org/I130238516"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Kangjie Lu","raw_affiliation_strings":["University of Minnesota, Minneapolis, MN, USA"],"affiliations":[{"raw_affiliation_string":"University of Minnesota, Minneapolis, MN, USA","institution_ids":["https://openalex.org/I130238516"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5100937302"],"corresponding_institution_ids":["https://openalex.org/I130238516"],"apc_list":null,"apc_paid":null,"fwci":0.291,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.53349768,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"3253","last_page":"3267"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7971128225326538},{"id":"https://openalex.org/keywords/software-bug","display_name":"Software bug","score":0.758640706539154},{"id":"https://openalex.org/keywords/oracle","display_name":"Oracle","score":0.7472710013389587},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.5599856972694397},{"id":"https://openalex.org/keywords/security-bug","display_name":"Security bug","score":0.5176944732666016},{"id":"https://openalex.org/keywords/probabilistic-logic","display_name":"Probabilistic logic","score":0.5032138228416443},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.42756617069244385},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.42444509267807007},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.32496488094329834},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.30704647302627563},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.23150137066841125},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.15762248635292053},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.07513222098350525}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7971128225326538},{"id":"https://openalex.org/C1009929","wikidata":"https://www.wikidata.org/wiki/Q179550","display_name":"Software bug","level":3,"score":0.758640706539154},{"id":"https://openalex.org/C55166926","wikidata":"https://www.wikidata.org/wiki/Q2892946","display_name":"Oracle","level":2,"score":0.7472710013389587},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.5599856972694397},{"id":"https://openalex.org/C131275738","wikidata":"https://www.wikidata.org/wiki/Q7445023","display_name":"Security bug","level":5,"score":0.5176944732666016},{"id":"https://openalex.org/C49937458","wikidata":"https://www.wikidata.org/wiki/Q2599292","display_name":"Probabilistic logic","level":2,"score":0.5032138228416443},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.42756617069244385},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.42444509267807007},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.32496488094329834},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.30704647302627563},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.23150137066841125},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.15762248635292053},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.07513222098350525},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3548606.3560661","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3548606.3560661","pdf_url":null,"source":{"id":"https://openalex.org/S4363608815","display_name":"Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.75,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":30,"referenced_works":["https://openalex.org/W1480909796","https://openalex.org/W2026675907","https://openalex.org/W2078186835","https://openalex.org/W2144706305","https://openalex.org/W2156841542","https://openalex.org/W2315953879","https://openalex.org/W2509822438","https://openalex.org/W2559935471","https://openalex.org/W2749008552","https://openalex.org/W2766188225","https://openalex.org/W2766313665","https://openalex.org/W2794889478","https://openalex.org/W2888320512","https://openalex.org/W2891748016","https://openalex.org/W2896082384","https://openalex.org/W2954121408","https://openalex.org/W2980018082","https://openalex.org/W2997915791","https://openalex.org/W3004040842","https://openalex.org/W3007106047","https://openalex.org/W3023860284","https://openalex.org/W3096174798","https://openalex.org/W3105926539","https://openalex.org/W3136762838","https://openalex.org/W3166337710","https://openalex.org/W3214149487","https://openalex.org/W4225985424","https://openalex.org/W4251803824","https://openalex.org/W4299301436","https://openalex.org/W4308633724"],"related_works":["https://openalex.org/W4283750846","https://openalex.org/W1978034799","https://openalex.org/W2100022726","https://openalex.org/W2007984522","https://openalex.org/W3048815537","https://openalex.org/W2003584227","https://openalex.org/W2167539342","https://openalex.org/W2126366602","https://openalex.org/W2352736757","https://openalex.org/W4384518368"],"abstract_inverted_index":{"Security":[0],"bugs":[1,59],"like":[2],"memory":[3],"errors":[4],"are":[5,26,47],"constantly":[6],"introduced":[7],"to":[8,49,96],"software":[9],"programs,":[10],"and":[11,51,55,76,99,117],"recent":[12],"years":[13],"have":[14,109,130],"witnessed":[15],"an":[16],"increasing":[17],"number":[18,72],"of":[19,58,73],"reported":[20],"security":[21,35],"bugs.":[22,36,82],"Traditional":[23],"detection":[24,67,121],"approaches":[25],"mainly":[27],"specification-based---detecting":[28],"violations":[29],"against":[30],"a":[31,70],"specified":[32],"rule":[33],"as":[34,80],"This":[37],"often":[38],"does":[39,107],"not":[40,108],"work":[41,102],"well":[42],"in":[43],"practice":[44],"because":[45],"specifications":[46],"difficult":[48],"specify":[50],"generalize,":[52],"leaving":[53],"complicated":[54],"new":[56],"types":[57],"undetected.":[60],"Recent":[61],"research":[62],"thus":[63,100],"leans":[64],"toward":[65],"deviation-based":[66],"which":[68],"finds":[69],"substantial":[71],"similar":[74,94,110,126],"cases":[75,79,95,127],"detects":[77],"deviating":[78,131],"potential":[81],"This,":[83],"however,":[84],"suffers":[85],"from":[86],"two":[87],"other":[88],"problems.":[89],"First,":[90],"it":[91],"requires":[92],"enough":[93],"find":[97],"deviations":[98],"cannot":[101],"for":[103],"custom":[104],"code":[105],"that":[106],"cases.":[111],"Second,":[112],"code-similarity":[113],"analysis":[114],"is":[115],"probabilistic":[116],"challenging,":[118],"so":[119],"the":[120],"can":[122,128],"be":[123],"unreliable.":[124],"Sometimes,":[125],"normally":[129],"behaviors":[132],"under":[133],"different":[134],"contexts.":[135]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2022,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}