{"id":"https://openalex.org/W4402457674","doi":"https://doi.org/10.1145/3650212.3652110","title":"Precise Compositional Buffer Overflow Detection via Heap Disjointness","display_name":"Precise Compositional Buffer Overflow Detection via Heap Disjointness","publication_year":2024,"publication_date":"2024-09-11","ids":{"openalex":"https://openalex.org/W4402457674","doi":"https://doi.org/10.1145/3650212.3652110"},"language":"en","primary_location":{"id":"doi:10.1145/3650212.3652110","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3650212.3652110","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 33rd ACM SIGSOFT International Symposium on Software Testing and Analysis","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5044849559","display_name":"Yiyuan Guo","orcid":null},"institutions":[{"id":"https://openalex.org/I200769079","display_name":"Hong Kong University of Science and Technology","ror":"https://ror.org/00q4vv597","country_code":"HK","type":"education","lineage":["https://openalex.org/I200769079"]}],"countries":["HK"],"is_corresponding":true,"raw_author_name":"Yiyuan Guo","raw_affiliation_strings":["The Hong Kong University of Science and Technology, Hong Kong, China"],"affiliations":[{"raw_affiliation_string":"The Hong Kong University of Science and Technology, Hong Kong, China","institution_ids":["https://openalex.org/I200769079"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5045907091","display_name":"Peisen Yao","orcid":"https://orcid.org/0000-0003-0342-9518"},"institutions":[{"id":"https://openalex.org/I76130692","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884","country_code":"CN","type":"education","lineage":["https://openalex.org/I76130692"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Peisen Yao","raw_affiliation_strings":["Zhejiang University, Hangzhou, China"],"affiliations":[{"raw_affiliation_string":"Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I76130692"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5101490553","display_name":"Charles Zhang","orcid":"https://orcid.org/0000-0001-6417-1034"},"institutions":[{"id":"https://openalex.org/I200769079","display_name":"Hong Kong University of Science and Technology","ror":"https://ror.org/00q4vv597","country_code":"HK","type":"education","lineage":["https://openalex.org/I200769079"]}],"countries":["HK"],"is_corresponding":false,"raw_author_name":"Charles Zhang","raw_affiliation_strings":["The Hong Kong University of Science and Technology, Hong Kong, China"],"affiliations":[{"raw_affiliation_string":"The Hong Kong University of Science and Technology, Hong Kong, China","institution_ids":["https://openalex.org/I200769079"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5044849559"],"corresponding_institution_ids":["https://openalex.org/I200769079"],"apc_list":null,"apc_paid":null,"fwci":0.3688,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.67100977,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"63","last_page":"75"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9810000061988831,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9810000061988831,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10054","display_name":"Parallel Computing and Optimization Techniques","score":0.9790999889373779,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10142","display_name":"Formal Methods in Verification","score":0.9625999927520752,"subfield":{"id":"https://openalex.org/subfields/1703","display_name":"Computational Theory and Mathematics"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/heap","display_name":"Heap (data structure)","score":0.8346354961395264},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7166032195091248},{"id":"https://openalex.org/keywords/buffer-overflow","display_name":"Buffer overflow","score":0.5869062542915344},{"id":"https://openalex.org/keywords/buffer","display_name":"Buffer (optical fiber)","score":0.550007700920105},{"id":"https://openalex.org/keywords/parallel-computing","display_name":"Parallel computing","score":0.41646984219551086},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.25420671701431274},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.22820788621902466}],"concepts":[{"id":"https://openalex.org/C134757568","wikidata":"https://www.wikidata.org/wiki/Q274089","display_name":"Heap (data structure)","level":2,"score":0.8346354961395264},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7166032195091248},{"id":"https://openalex.org/C40842320","wikidata":"https://www.wikidata.org/wiki/Q19423","display_name":"Buffer overflow","level":2,"score":0.5869062542915344},{"id":"https://openalex.org/C145018004","wikidata":"https://www.wikidata.org/wiki/Q4985944","display_name":"Buffer (optical fiber)","level":2,"score":0.550007700920105},{"id":"https://openalex.org/C173608175","wikidata":"https://www.wikidata.org/wiki/Q232661","display_name":"Parallel computing","level":1,"score":0.41646984219551086},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.25420671701431274},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.22820788621902466},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3650212.3652110","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3650212.3652110","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 33rd ACM SIGSOFT International Symposium on Software Testing and Analysis","raw_type":"proceedings-article"},{"id":"pmh:oai:repository.hkust.edu.hk:1783.1-143661","is_oa":false,"landing_page_url":"http://repository.hkust.edu.hk/ir/Record/1783.1-143661","pdf_url":null,"source":{"id":"https://openalex.org/S4306401796","display_name":"Rare & Special e-Zone (The Hong Kong University of Science and Technology)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I200769079","host_organization_name":"Hong Kong University of Science and Technology","host_organization_lineage":["https://openalex.org/I200769079"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Conference paper"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.7200000286102295,"display_name":"Climate action","id":"https://metadata.un.org/sdg/13"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":61,"referenced_works":["https://openalex.org/W93013710","https://openalex.org/W103065951","https://openalex.org/W103230645","https://openalex.org/W121297392","https://openalex.org/W128510161","https://openalex.org/W172408808","https://openalex.org/W1508927144","https://openalex.org/W1517071433","https://openalex.org/W1528617049","https://openalex.org/W1579850852","https://openalex.org/W1966634194","https://openalex.org/W1966982815","https://openalex.org/W1974604404","https://openalex.org/W1991837261","https://openalex.org/W1996567876","https://openalex.org/W2008106620","https://openalex.org/W2008626182","https://openalex.org/W2015362443","https://openalex.org/W2030697178","https://openalex.org/W2043100293","https://openalex.org/W2044870852","https://openalex.org/W2048422440","https://openalex.org/W2060697066","https://openalex.org/W2080205938","https://openalex.org/W2080661536","https://openalex.org/W2087612811","https://openalex.org/W2108241838","https://openalex.org/W2111996055","https://openalex.org/W2119029078","https://openalex.org/W2132661148","https://openalex.org/W2137628566","https://openalex.org/W2138538192","https://openalex.org/W2140809377","https://openalex.org/W2154985136","https://openalex.org/W2158798798","https://openalex.org/W2170612356","https://openalex.org/W2187762443","https://openalex.org/W2623182815","https://openalex.org/W2798609500","https://openalex.org/W2799226481","https://openalex.org/W2799644178","https://openalex.org/W2886900155","https://openalex.org/W2898125173","https://openalex.org/W2899833378","https://openalex.org/W2963437732","https://openalex.org/W2964232059","https://openalex.org/W2980274877","https://openalex.org/W3001561552","https://openalex.org/W3009050206","https://openalex.org/W3030087658","https://openalex.org/W3100198463","https://openalex.org/W3104746396","https://openalex.org/W3122058811","https://openalex.org/W3177908991","https://openalex.org/W3205083328","https://openalex.org/W3207402727","https://openalex.org/W4206770190","https://openalex.org/W4225134668","https://openalex.org/W4243644740","https://openalex.org/W4245321046","https://openalex.org/W4246166885"],"related_works":["https://openalex.org/W1981237417","https://openalex.org/W3126155085","https://openalex.org/W2002128171","https://openalex.org/W2388448064","https://openalex.org/W2136651729","https://openalex.org/W2960453428","https://openalex.org/W3022539710","https://openalex.org/W2368842303","https://openalex.org/W2366097951","https://openalex.org/W3041683569"],"abstract_inverted_index":{"Static":[0],"analysis":[1,120,175],"techniques":[2,48],"for":[3,12],"buffer":[4,32,197,217],"overflow":[5,33,198,218],"detection":[6],"still":[7],"struggle":[8],"with":[9,72,220],"being":[10,19],"scalable":[11],"millions":[13,230],"of":[14,16,31,86,94,172,225,229,231,233],"lines":[15,232],"code,":[17],"while":[18,227],"precise":[20,182],"enough":[21],"to":[22,49,60,91,101,148,176,204],"have":[23,214],"an":[24],"acceptable":[25],"false":[26,222],"positive":[27,223],"rate.":[28],"The":[29,142],"checking":[30],"necessitates":[34],"reasoning":[35,64],"about":[36,65],"the":[37,51,105,119,123,130,157,170,192,195],"heap":[38,67,70,79,88,95,109,153,164],"reachability":[39],"and":[40,110,181,188,211],"numerical":[41,75,111,161],"relations,":[42],"which":[43],"are":[44,137,185],"mutually":[45],"dependent.":[46],"Existing":[47],"resolve":[50],"dependency":[52],"cycle":[53],"either":[54],"sacrifice":[55],"precision":[56,158],"or":[57],"efficiency":[58],"due":[59],"their":[61],"limitations":[62],"in":[63,108,134,163,169,194],"symbolic":[66,74,78,131,152],"location,":[68],"i.e.,":[69],"location":[71,80],"possibly":[73],"offsets.":[76],"A":[77],"potentially":[81],"aliases":[82],"a":[83,92,115,173,221],"large":[84],"number":[85],"other":[87],"locations,":[89,154],"leading":[90],"disjunction":[93],"states":[96],"that":[97,128],"is":[98],"particularly":[99],"challenging":[100],"reason":[102],"precisely.":[103],"Acknowledging":[104],"inherent":[106],"difficulties":[107],"reasoning,":[112],"we":[113,213],"introduce":[114],"disjointness":[116,143],"assumption":[117],"into":[118],"by":[121,159],"shrinking":[122],"program":[124],"state":[125],"space":[126],"so":[127],"all":[129],"locations":[132],"involved":[133],"memory":[135],"accesses":[136],"disjoint":[138],"from":[139],"each":[140],"other.":[141],"property":[144],"permits":[145],"strong":[146],"updates":[147],"be":[149,236],"performed":[150],"at":[151],"significantly":[155],"improving":[156],"incorporating":[160],"information":[162],"reasoning.":[165],"Also,":[166],"it":[167,203],"aids":[168],"design":[171],"compositional":[174],"boost":[177],"scalability,":[178],"where":[179],"compact":[180],"function":[183],"summaries":[184],"efficiently":[186],"generated":[187],"reused.":[189],"We":[190],"implement":[191],"idea":[193],"static":[196],"detector":[199],"Cod.":[200],"When":[201],"applying":[202],"large,":[205],"real-world":[206],"software":[207],"such":[208],"as":[209],"PHP":[210],"QEMU,":[212],"uncovered":[215],"29":[216],"bugs":[219],"rate":[224],"37%,":[226],"projects":[228],"code":[234],"can":[235],"successfully":[237],"analyzed":[238],"within":[239],"four":[240],"hours.":[241]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-03-04T09:10:02.777135","created_date":"2025-10-10T00:00:00"}