{"id":"https://openalex.org/W4411449891","doi":"https://doi.org/10.1145/3729365","title":"Liberating Libraries through Automated Fuzz Driver Generation: Striking a Balance without Consumer Code","display_name":"Liberating Libraries through Automated Fuzz Driver Generation: Striking a Balance without Consumer Code","publication_year":2025,"publication_date":"2025-06-19","ids":{"openalex":"https://openalex.org/W4411449891","doi":"https://doi.org/10.1145/3729365"},"language":"en","primary_location":{"id":"doi:10.1145/3729365","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3729365","pdf_url":null,"source":{"id":"https://openalex.org/S4404663975","display_name":"Proceedings of the ACM on software engineering.","issn_l":"2994-970X","issn":["2994-970X"],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM on Software Engineering","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://doi.org/10.1145/3729365","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5029770311","display_name":"Flavio Toffalini","orcid":"https://orcid.org/0000-0002-7114-5640"},"institutions":[{"id":"https://openalex.org/I5124864","display_name":"\u00c9cole Polytechnique F\u00e9d\u00e9rale de Lausanne","ror":"https://ror.org/02s376052","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I5124864"]},{"id":"https://openalex.org/I904495901","display_name":"Ruhr University Bochum","ror":"https://ror.org/04tsk2644","country_code":"DE","type":"education","lineage":["https://openalex.org/I904495901"]}],"countries":["CH","DE"],"is_corresponding":false,"raw_author_name":"Flavio Toffalini","raw_affiliation_strings":["EPFL, Lausanne, Switzerland","Ruhr University Bochum, Bochum, Germany"],"raw_orcid":"https://orcid.org/0000-0002-7114-5640","affiliations":[{"raw_affiliation_string":"EPFL, Lausanne, Switzerland","institution_ids":["https://openalex.org/I5124864"]},{"raw_affiliation_string":"Ruhr University Bochum, Bochum, Germany","institution_ids":["https://openalex.org/I904495901"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5116756824","display_name":"Nicolas Badoux","orcid":"https://orcid.org/0000-0002-0774-5166"},"institutions":[{"id":"https://openalex.org/I5124864","display_name":"\u00c9cole Polytechnique F\u00e9d\u00e9rale de Lausanne","ror":"https://ror.org/02s376052","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I5124864"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Nicolas Badoux","raw_affiliation_strings":["EPFL, Lausanne, Switzerland"],"raw_orcid":"https://orcid.org/0000-0002-0774-5166","affiliations":[{"raw_affiliation_string":"EPFL, Lausanne, Switzerland","institution_ids":["https://openalex.org/I5124864"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5118337485","display_name":"Zurab Tsinadze","orcid":null},"institutions":[{"id":"https://openalex.org/I5124864","display_name":"\u00c9cole Polytechnique F\u00e9d\u00e9rale de Lausanne","ror":"https://ror.org/02s376052","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I5124864"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Zurab Tsinadze","raw_affiliation_strings":["EPFL, Lausanne, Switzerland"],"raw_orcid":"https://orcid.org/0009-0003-8575-8207","affiliations":[{"raw_affiliation_string":"EPFL, Lausanne, Switzerland","institution_ids":["https://openalex.org/I5124864"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5065116578","display_name":"Mathias Payer","orcid":"https://orcid.org/0000-0001-5054-7547"},"institutions":[{"id":"https://openalex.org/I5124864","display_name":"\u00c9cole Polytechnique F\u00e9d\u00e9rale de Lausanne","ror":"https://ror.org/02s376052","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I5124864"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Mathias Payer","raw_affiliation_strings":["EPFL, Lausanne, Switzerland"],"raw_orcid":"https://orcid.org/0000-0001-5054-7547","affiliations":[{"raw_affiliation_string":"EPFL, Lausanne, Switzerland","institution_ids":["https://openalex.org/I5124864"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.13085043,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"2","issue":"FSE","first_page":"2123","last_page":"2145"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9945999979972839,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9922999739646912,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8182081580162048},{"id":"https://openalex.org/keywords/leverage","display_name":"Leverage (statistics)","score":0.7292579412460327},{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.7134940028190613},{"id":"https://openalex.org/keywords/code-coverage","display_name":"Code coverage","score":0.5711682438850403},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.5276338458061218},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.5172263383865356},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.49946141242980957},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.3979484736919403},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.38173508644104004},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.2102375626564026},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.19894221425056458}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8182081580162048},{"id":"https://openalex.org/C153083717","wikidata":"https://www.wikidata.org/wiki/Q6535263","display_name":"Leverage (statistics)","level":2,"score":0.7292579412460327},{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.7134940028190613},{"id":"https://openalex.org/C53942775","wikidata":"https://www.wikidata.org/wiki/Q1211721","display_name":"Code coverage","level":3,"score":0.5711682438850403},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.5276338458061218},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.5172263383865356},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.49946141242980957},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.3979484736919403},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.38173508644104004},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.2102375626564026},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.19894221425056458}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3729365","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3729365","pdf_url":null,"source":{"id":"https://openalex.org/S4404663975","display_name":"Proceedings of the ACM on software engineering.","issn_l":"2994-970X","issn":["2994-970X"],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM on Software Engineering","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1145/3729365","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3729365","pdf_url":null,"source":{"id":"https://openalex.org/S4404663975","display_name":"Proceedings of the ACM on software engineering.","issn_l":"2994-970X","issn":["2994-970X"],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM on Software Engineering","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G18682879","display_name":null,"funder_award_id":"390781972","funder_id":"https://openalex.org/F4320320879","funder_display_name":"Deutsche Forschungsgemeinschaft"},{"id":"https://openalex.org/G3513429588","display_name":null,"funder_award_id":"PCEGP2 186974","funder_id":"https://openalex.org/F4320320924","funder_display_name":"Schweizerischer Nationalfonds zur F\u00f6rderung der Wissenschaftlichen Forschung"}],"funders":[{"id":"https://openalex.org/F4320320879","display_name":"Deutsche Forschungsgemeinschaft","ror":"https://ror.org/018mejw64"},{"id":"https://openalex.org/F4320320924","display_name":"Schweizerischer Nationalfonds zur F\u00f6rderung der Wissenschaftlichen Forschung","ror":"https://ror.org/00yjd3n13"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":30,"referenced_works":["https://openalex.org/W163539143","https://openalex.org/W1794159487","https://openalex.org/W1971650562","https://openalex.org/W1996146601","https://openalex.org/W2156279557","https://openalex.org/W2297774820","https://openalex.org/W2350778671","https://openalex.org/W2584230735","https://openalex.org/W2794889478","https://openalex.org/W2879105418","https://openalex.org/W2891235722","https://openalex.org/W2963298680","https://openalex.org/W2964097210","https://openalex.org/W3008477014","https://openalex.org/W3015365135","https://openalex.org/W3136127207","https://openalex.org/W3160978791","https://openalex.org/W3162605691","https://openalex.org/W4220699888","https://openalex.org/W4238530241","https://openalex.org/W4243358126","https://openalex.org/W4284694562","https://openalex.org/W4289038676","https://openalex.org/W4378591002","https://openalex.org/W4383888896","https://openalex.org/W4384304865","https://openalex.org/W4385187202","https://openalex.org/W4388857347","https://openalex.org/W4402265102","https://openalex.org/W6893278375"],"related_works":["https://openalex.org/W4405231858","https://openalex.org/W4313066017","https://openalex.org/W1964740600","https://openalex.org/W4381785649","https://openalex.org/W2297949281","https://openalex.org/W2884946294","https://openalex.org/W4226494072","https://openalex.org/W3133364053","https://openalex.org/W4319791806","https://openalex.org/W2991920445"],"abstract_inverted_index":{"Fuzz":[0],"testing":[1,92,101,170],"a":[2,17,33,40,103,125,137,167,210,229,318],"software":[3],"library":[4,129,145,169,216,337],"requires":[5],"developers":[6],"to":[7,70,80,162,177,193,218,231,280,323,334],"write":[8],"fuzz":[9,29,185],"drivers,":[10,235],"specialized":[11],"programs":[12],"exercising":[13],"the":[14,25,50,72,83,110,215,220,312,324,330,347,350],"library.":[15],"Given":[16],"driver,":[18],"fuzzers":[19],"generate":[20,183],"interesting":[21],"inputs":[22],"that":[23,172,252,275],"trigger":[24],"library\u2019s":[26],"bugs.":[27,195],"Writing":[28],"drivers":[30,90,186,192,283],"manually":[31,267,281],"is":[32,78,119,160],"cumbersome":[34],"process":[35],"and":[36,91,100,113,131,147,187,263,269,309],"they":[37,107],"frequently":[38],"hit":[39],"coverage":[41,279,288],"plateau,":[42],"calling":[43],"for":[44,52,64],"more":[45],"diverse":[46],"drivers.":[47,225,243,272],"To":[48,196],"alleviate":[49],"need":[51,124],"human":[53],"expert":[54],"knowledge,":[55],"emerging":[56],"automatic":[57],"driver":[58,98,249,292],"generation":[59,99,293],"techniques":[60],"invest":[61],"computational":[62,85,175],"time":[63],"tasks":[65],"besides":[66],"input":[67,114],"generation.":[68],"Therefore,":[69],"maximize":[71],"number":[73],"of":[74,127,222,304,332,349],"bugs":[75,141,313],"found,":[76,314],"it":[77,265],"crucial":[79],"carefully":[81],"balance":[82],"available":[84],"resources":[86,176,239],"between":[87],"generating":[88,223],"valid":[89,184,336],"them":[93],"thoroughly.":[94],"Current":[95],"works":[96],"model":[97],"as":[102,121],"single":[104],"problem,":[105],"i.e.,":[106],"mutate":[108],"both":[109,156],"driver\u2019s":[111],"code":[112,217],"together.":[115],"This":[116],"simple":[117],"approach":[118,171],"limited,":[120],"many":[122],"libraries":[123,262],"combination":[126],"non-trivial":[128],"usage":[130],"complex":[132],"inputs.":[133],"For":[134],"example,":[135],"consider":[136],"JPEG":[138],"manipulation":[139],"library,":[140],"appear":[142],"when":[143],"specific":[144],"functions":[146],"corrupted":[148],"images":[149],"are":[150,157,306],"coincidentally":[151],"tested":[152],"together,":[153],"which,":[154],"if":[155],"mutated":[158],"synchronously":[159],"difficult":[161],"trigger.":[163],"We":[164,256,273],"introduce":[165],"libErator,":[166],"novel":[168,211],"balances":[173],"constrained":[174],"achieve":[178,197],"two":[179],"goals:":[180],"(a)":[181],"quickly":[182,232],"(b)":[188],"deeply":[189],"test":[190,326],"these":[191,198],"find":[194],"goals,":[199],"libErator":[200,258,276,297,333,340],"employs":[201],"three":[202],"main":[203],"techniques.":[204,294],"First,":[205],"we":[206,227,245],"leverage":[207],"insights":[208],"from":[209,289],"static":[212],"analysis":[213],"on":[214,241,259,285],"improve":[219],"likelihood":[221],"meaningful":[224],"Second,":[226],"design":[228],"method":[230,251],"discard":[233],"non-functional":[234],"reducing":[236],"even":[237],"further":[238],"wasted":[240],"unfruitful":[242],"Finally,":[244,339],"show":[246,274],"an":[247],"effective":[248],"selection":[250],"avoids":[253],"redundant":[254],"tests.":[255],"deploy":[257],"15":[260],"open-source":[261],"evaluate":[264],"against":[266],"written":[268,282],"automatically":[270,298],"generated":[271],"reaches":[277],"comparable":[278],"and,":[284],"average,":[286],"exceeds":[287],"existing":[290],"automated":[291],"More":[295],"importantly,":[296],"finds":[299],"24":[300],"confirmed":[301],"bugs,":[302],"21":[303],"which":[305],"already":[307],"fixed":[308],"upstreamed.":[310],"Among":[311],"one":[315],"was":[316],"assigned":[317],"CVE":[319],"while":[320],"others":[321],"contributed":[322],"project":[325],"suites,":[327],"thus":[328],"showcasing":[329],"ability":[331],"create":[335],"usages.":[338],"achieves":[341],"25%":[342],"true":[343],"positive":[344],"ratio,":[345],"doubling":[346],"state":[348],"art.":[351]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}