{"id":"https://openalex.org/W4411087888","doi":"https://doi.org/10.1145/3742894","title":"The Havoc Paradox in Generator-Based Fuzzing","display_name":"The Havoc Paradox in Generator-Based Fuzzing","publication_year":2025,"publication_date":"2025-06-06","ids":{"openalex":"https://openalex.org/W4411087888","doi":"https://doi.org/10.1145/3742894"},"language":"en","primary_location":{"id":"doi:10.1145/3742894","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3742894","pdf_url":null,"source":{"id":"https://openalex.org/S142627899","display_name":"ACM Transactions on Software Engineering and Methodology","issn_l":"1049-331X","issn":["1049-331X","1557-7392"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Software Engineering and Methodology","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5015008073","display_name":"Ao Li","orcid":"https://orcid.org/0000-0003-3189-7079"},"institutions":[{"id":"https://openalex.org/I74973139","display_name":"Carnegie Mellon University","ror":"https://ror.org/05x2bcf33","country_code":"US","type":"education","lineage":["https://openalex.org/I74973139"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Ao Li","raw_affiliation_strings":["Carnegie Mellon University, Pittsburgh, Pennsylvania, USA","Carnegie Mellon University, USA"],"affiliations":[{"raw_affiliation_string":"Carnegie Mellon University, Pittsburgh, Pennsylvania, USA","institution_ids":["https://openalex.org/I74973139"]},{"raw_affiliation_string":"Carnegie Mellon University, USA","institution_ids":["https://openalex.org/I74973139"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5114226595","display_name":"Madonna Huang","orcid":null},"institutions":[{"id":"https://openalex.org/I141945490","display_name":"University of British Columbia","ror":"https://ror.org/03rmrcq20","country_code":"CA","type":"education","lineage":["https://openalex.org/I141945490"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Madonna Huang","raw_affiliation_strings":["The University of British Columbia, Vancouver, British Columbia, Canada","University of British Columbia, Canada"],"affiliations":[{"raw_affiliation_string":"The University of British Columbia, Vancouver, British Columbia, Canada","institution_ids":["https://openalex.org/I141945490"]},{"raw_affiliation_string":"University of British Columbia, Canada","institution_ids":["https://openalex.org/I141945490"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5001644570","display_name":"Vasudev Vikram","orcid":"https://orcid.org/0000-0001-7093-910X"},"institutions":[{"id":"https://openalex.org/I74973139","display_name":"Carnegie Mellon University","ror":"https://ror.org/05x2bcf33","country_code":"US","type":"education","lineage":["https://openalex.org/I74973139"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Vasudev Vikram","raw_affiliation_strings":["Carnegie Mellon University, Pittsburgh, Pennsylvania, USA","Carnegie Mellon University, USA"],"affiliations":[{"raw_affiliation_string":"Carnegie Mellon University, Pittsburgh, Pennsylvania, USA","institution_ids":["https://openalex.org/I74973139"]},{"raw_affiliation_string":"Carnegie Mellon University, USA","institution_ids":["https://openalex.org/I74973139"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5069023395","display_name":"Caroline Lemieux","orcid":"https://orcid.org/0000-0002-9610-8520"},"institutions":[{"id":"https://openalex.org/I141945490","display_name":"University of British Columbia","ror":"https://ror.org/03rmrcq20","country_code":"CA","type":"education","lineage":["https://openalex.org/I141945490"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Caroline Lemieux","raw_affiliation_strings":["The University of British Columbia, Vancouver, British Columbia, Canada","University of British Columbia, Canada"],"affiliations":[{"raw_affiliation_string":"The University of British Columbia, Vancouver, British Columbia, Canada","institution_ids":["https://openalex.org/I141945490"]},{"raw_affiliation_string":"University of British Columbia, Canada","institution_ids":["https://openalex.org/I141945490"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5077787726","display_name":"Rohan Padhye","orcid":"https://orcid.org/0000-0003-4939-033X"},"institutions":[{"id":"https://openalex.org/I74973139","display_name":"Carnegie Mellon University","ror":"https://ror.org/05x2bcf33","country_code":"US","type":"education","lineage":["https://openalex.org/I74973139"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Rohan Padhye","raw_affiliation_strings":["Carnegie Mellon University, Pittsburgh, Pennsylvania, USA","Carnegie Mellon University, USA"],"affiliations":[{"raw_affiliation_string":"Carnegie Mellon University, Pittsburgh, Pennsylvania, USA","institution_ids":["https://openalex.org/I74973139"]},{"raw_affiliation_string":"Carnegie Mellon University, USA","institution_ids":["https://openalex.org/I74973139"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5015008073"],"corresponding_institution_ids":["https://openalex.org/I74973139"],"apc_list":null,"apc_paid":null,"fwci":2.3118,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.86508099,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":"35","issue":"1","first_page":"1","last_page":"26"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.998199999332428,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9940999746322632,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.9670075178146362},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7858651876449585},{"id":"https://openalex.org/keywords/generator","display_name":"Generator (circuit theory)","score":0.5705757737159729},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.18200406432151794},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.10741713643074036},{"id":"https://openalex.org/keywords/power","display_name":"Power (physics)","score":0.06345903873443604}],"concepts":[{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.9670075178146362},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7858651876449585},{"id":"https://openalex.org/C2780992000","wikidata":"https://www.wikidata.org/wiki/Q17016113","display_name":"Generator (circuit theory)","level":3,"score":0.5705757737159729},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.18200406432151794},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.10741713643074036},{"id":"https://openalex.org/C163258240","wikidata":"https://www.wikidata.org/wiki/Q25342","display_name":"Power (physics)","level":2,"score":0.06345903873443604},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3742894","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3742894","pdf_url":null,"source":{"id":"https://openalex.org/S142627899","display_name":"ACM Transactions on Software Engineering and Methodology","issn_l":"1049-331X","issn":["1049-331X","1557-7392"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Software Engineering and Methodology","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":35,"referenced_works":["https://openalex.org/W2049867480","https://openalex.org/W2100894869","https://openalex.org/W2119494620","https://openalex.org/W2619742609","https://openalex.org/W2757104921","https://openalex.org/W2777430404","https://openalex.org/W2961870034","https://openalex.org/W2962200727","https://openalex.org/W2963350015","https://openalex.org/W2964097210","https://openalex.org/W2964241064","https://openalex.org/W2979991936","https://openalex.org/W2980167976","https://openalex.org/W3015193297","https://openalex.org/W3090526726","https://openalex.org/W3097728505","https://openalex.org/W3102086861","https://openalex.org/W3104664063","https://openalex.org/W3111827872","https://openalex.org/W3163623982","https://openalex.org/W3180202404","https://openalex.org/W3194771370","https://openalex.org/W4220764146","https://openalex.org/W4221144766","https://openalex.org/W4244488020","https://openalex.org/W4284694562","https://openalex.org/W4284694822","https://openalex.org/W4284705569","https://openalex.org/W4284706927","https://openalex.org/W4289038676","https://openalex.org/W4308632293","https://openalex.org/W4384155735","https://openalex.org/W4394769064","https://openalex.org/W4397028768","https://openalex.org/W4402443965"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2511770387","https://openalex.org/W3120811337","https://openalex.org/W2766647240","https://openalex.org/W4385301282","https://openalex.org/W2990186179","https://openalex.org/W4210660460","https://openalex.org/W3203597304"],"abstract_inverted_index":{"Parametric":[0],"generators":[1],"combine":[2],"coverage-guided":[3,151],"and":[4,88,129,142],"generator-based":[5,78],"fuzzing":[6,79],"for":[7,77],"testing":[8],"programs":[9],"requiring":[10,39],"structured":[11,23,36,65],"inputs.":[12],"They":[13],"function":[14],"as":[15,96,98,126],"decoders":[16],"that":[17,116,133,158,170,181],"transform":[18],"arbitrary":[19],"byte":[20,28,57,123],"sequences":[21,29],"into":[22],"inputs,":[24,37],"allowing":[25],"mutations":[26,34,54,62,120,141,172],"on":[27,35,55,121],"to":[30,33,47,63,149],"map":[31],"directly":[32],"without":[38],"specialized":[40],"mutators.":[41],"However,":[42],"this":[43],"technique":[44],"is":[45],"prone":[46],"the":[48,56,64,70,74,90,93,145,198],"havoc":[49,75,94,146,199],"effect":[50,76,147],",":[51],"where":[52,100],"small":[53],"sequence":[58],"cause":[59],"large,":[60],"destructive":[61,171],"input.":[66],"This":[67],"article":[68],"investigates":[69],"paradoxical":[71],"nature":[72],"of":[73,92],"in":[80,178,196],"Java.":[81],"In":[82],"particular,":[83],"we":[84,156,168],"measure":[85],"mutation":[86,160,186],"characteristics":[87],"confirm":[89],"existence":[91],"effect,":[95],"well":[97],"scenarios":[99],"it":[101],"may":[102],"be":[103],"more":[104],"detrimental.":[105],"Our":[106],"evaluation":[107],"across":[108],"seven":[109],"real-world":[110],"Java":[111],"applications":[112],"compares":[113],"various":[114],"techniques":[115,135],"perform":[117],"context-aware,":[118],"finer-grained":[119],"parametric":[122],"sequences,":[124],"such":[125],"JQF-EI,":[127],"BeDivFuzz,":[128],"Zeugma.":[130],"We":[131],"find":[132,157],"these":[134],"exhibit":[136],"better":[137],"control":[138],"over":[139],"input":[140],"consistently":[143],"reduce":[144],"compared":[148],"our":[150],"fuzzer":[152],"baseline":[153],"Zest.":[154],"While":[155],"context-aware":[159],"approaches":[161],"can":[162],"achieve":[163],"significantly":[164],"higher":[165],"code":[166,183],"coverage,":[167],"see":[169],"still":[173],"play":[174],"a":[175],"valuable":[176],"role":[177],"discovering":[179],"inputs":[180],"increase":[182],"coverage.":[184],"Specialized":[185],"strategies,":[187],"while":[188],"effective,":[189],"impose":[190],"substantial":[191],"computational":[192],"overhead\u2014revealing":[193],"practical":[194],"tradeoffs":[195],"mitigating":[197],"effect.":[200]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-10-10T00:00:00"}