{"id":"https://openalex.org/W7164806016","doi":"https://doi.org/10.1145/3816713.3820143","title":"Source-Level Detection of Private Data Collection Misuse and Build-Preserving Mitigation of Write-Transaction Return Leakage in LLM-Generated Hyperledger Fabric Chaincode","display_name":"Source-Level Detection of Private Data Collection Misuse and Build-Preserving Mitigation of Write-Transaction Return Leakage in LLM-Generated Hyperledger Fabric Chaincode","publication_year":2026,"publication_date":"2026-06-15","ids":{"openalex":"https://openalex.org/W7164806016","doi":"https://doi.org/10.1145/3816713.3820143"},"language":null,"primary_location":{"id":"doi:10.1145/3816713.3820143","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3816713.3820143","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 14th International Conference on Advances in Information Technology","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1145/3816713.3820143","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5132632708","display_name":"Sungmoon Park","orcid":null},"institutions":[{"id":"https://openalex.org/I104338594","display_name":"Inje University","ror":"https://ror.org/04xqwq985","country_code":"KR","type":"education","lineage":["https://openalex.org/I104338594"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Sungmoon Park","raw_affiliation_strings":["Department of Medical IT, Inje University, Gimhae-si, Gyeongsangnam-do, Republic of Korea"],"raw_orcid":"https://orcid.org/0009-0002-3653-2829","affiliations":[{"raw_affiliation_string":"Department of Medical IT, Inje University, Gimhae-si, Gyeongsangnam-do, Republic of Korea","institution_ids":["https://openalex.org/I104338594"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5114860745","display_name":"Jinhong Yang","orcid":"https://orcid.org/0000-0002-7756-0263"},"institutions":[{"id":"https://openalex.org/I104338594","display_name":"Inje University","ror":"https://ror.org/04xqwq985","country_code":"KR","type":"education","lineage":["https://openalex.org/I104338594"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Jinhong Yang","raw_affiliation_strings":["Department of Medical IT, Inje University, Gimhae-si, Gyeongsangnam-do, Republic of Korea"],"raw_orcid":"https://orcid.org/0000-0002-7756-0263","affiliations":[{"raw_affiliation_string":"Department of Medical IT, Inje University, Gimhae-si, Gyeongsangnam-do, Republic of Korea","institution_ids":["https://openalex.org/I104338594"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I104338594"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.9102147,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"8"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.4733000099658966,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.4733000099658966,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.11710000038146973,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.07670000195503235,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/false-positive-paradox","display_name":"False positive paradox","score":0.677299976348877},{"id":"https://openalex.org/keywords/leakage","display_name":"Leakage (economics)","score":0.5641999840736389},{"id":"https://openalex.org/keywords/function","display_name":"Function (biology)","score":0.5315999984741211},{"id":"https://openalex.org/keywords/task","display_name":"Task (project management)","score":0.5181000232696533},{"id":"https://openalex.org/keywords/detector","display_name":"Detector","score":0.45879998803138733},{"id":"https://openalex.org/keywords/information-leakage","display_name":"Information leakage","score":0.4352000057697296},{"id":"https://openalex.org/keywords/parsing","display_name":"Parsing","score":0.4237000048160553},{"id":"https://openalex.org/keywords/field","display_name":"Field (mathematics)","score":0.41130000352859497}],"concepts":[{"id":"https://openalex.org/C64869954","wikidata":"https://www.wikidata.org/wiki/Q1859747","display_name":"False positive paradox","level":2,"score":0.677299976348877},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6337000131607056},{"id":"https://openalex.org/C2777042071","wikidata":"https://www.wikidata.org/wiki/Q6509304","display_name":"Leakage (economics)","level":2,"score":0.5641999840736389},{"id":"https://openalex.org/C14036430","wikidata":"https://www.wikidata.org/wiki/Q3736076","display_name":"Function (biology)","level":2,"score":0.5315999984741211},{"id":"https://openalex.org/C2780451532","wikidata":"https://www.wikidata.org/wiki/Q759676","display_name":"Task (project management)","level":2,"score":0.5181000232696533},{"id":"https://openalex.org/C94915269","wikidata":"https://www.wikidata.org/wiki/Q1834857","display_name":"Detector","level":2,"score":0.45879998803138733},{"id":"https://openalex.org/C79403827","wikidata":"https://www.wikidata.org/wiki/Q3988","display_name":"Real-time computing","level":1,"score":0.44269999861717224},{"id":"https://openalex.org/C2779201187","wikidata":"https://www.wikidata.org/wiki/Q2775060","display_name":"Information leakage","level":2,"score":0.4352000057697296},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4350999891757965},{"id":"https://openalex.org/C186644900","wikidata":"https://www.wikidata.org/wiki/Q194152","display_name":"Parsing","level":2,"score":0.4237000048160553},{"id":"https://openalex.org/C9652623","wikidata":"https://www.wikidata.org/wiki/Q190109","display_name":"Field (mathematics)","level":2,"score":0.41130000352859497},{"id":"https://openalex.org/C43126263","wikidata":"https://www.wikidata.org/wiki/Q128751","display_name":"Source code","level":2,"score":0.40959998965263367},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.4034000039100647},{"id":"https://openalex.org/C99221444","wikidata":"https://www.wikidata.org/wiki/Q1532069","display_name":"Private information retrieval","level":2,"score":0.37959998846054077},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.374099999666214},{"id":"https://openalex.org/C2989486834","wikidata":"https://www.wikidata.org/wiki/Q3808900","display_name":"True positive rate","level":2,"score":0.361299991607666},{"id":"https://openalex.org/C92446256","wikidata":"https://www.wikidata.org/wiki/Q3306762","display_name":"Data validation","level":2,"score":0.3540000021457672},{"id":"https://openalex.org/C133462117","wikidata":"https://www.wikidata.org/wiki/Q4929239","display_name":"Data collection","level":2,"score":0.33169999718666077},{"id":"https://openalex.org/C200601418","wikidata":"https://www.wikidata.org/wiki/Q2193887","display_name":"Reliability engineering","level":1,"score":0.30230000615119934},{"id":"https://openalex.org/C3020493868","wikidata":"https://www.wikidata.org/wiki/Q55631277","display_name":"Real world data","level":2,"score":0.2953000068664551},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.2743000090122223},{"id":"https://openalex.org/C137822555","wikidata":"https://www.wikidata.org/wiki/Q2587068","display_name":"Information sensitivity","level":2,"score":0.2705000042915344},{"id":"https://openalex.org/C44249647","wikidata":"https://www.wikidata.org/wiki/Q208498","display_name":"Confidence interval","level":2,"score":0.2694999873638153},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.2646999955177307},{"id":"https://openalex.org/C175154964","wikidata":"https://www.wikidata.org/wiki/Q380077","display_name":"Task analysis","level":3,"score":0.2603999972343445},{"id":"https://openalex.org/C16910744","wikidata":"https://www.wikidata.org/wiki/Q7705759","display_name":"Test data","level":2,"score":0.2596000134944916}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3816713.3820143","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3816713.3820143","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 14th International Conference on Advances in Information Technology","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3816713.3820143","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3816713.3820143","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 14th International Conference on Advances in Information Technology","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":20,"referenced_works":["https://openalex.org/W3091512861","https://openalex.org/W3117549445","https://openalex.org/W3125989628","https://openalex.org/W3175262761","https://openalex.org/W3203183630","https://openalex.org/W4282047410","https://openalex.org/W4288057765","https://openalex.org/W4296461844","https://openalex.org/W4385848632","https://openalex.org/W4387567480","https://openalex.org/W4389161628","https://openalex.org/W4394769342","https://openalex.org/W4402543959","https://openalex.org/W4404060141","https://openalex.org/W4404953651","https://openalex.org/W4408749890","https://openalex.org/W4410357039","https://openalex.org/W4413188105","https://openalex.org/W4414956263","https://openalex.org/W4416222612"],"related_works":[],"abstract_inverted_index":{"Large":[0],"language":[1],"models":[2],"are":[3,198],"now":[4],"used":[5],"to":[6],"generate":[7,54],"smart":[8],"contract":[9],"code,":[10],"yet":[11],"whether":[12,25],"they":[13],"produce":[14],"security-relevant":[15],"defects":[16],"in":[17,123,219],"blockchain-specific":[18],"contexts":[19],"remains":[20],"understudied.":[21],"This":[22],"paper":[23],"examines":[24],"LLM-generated":[26],"Fabric":[27],"chaincode":[28,57],"follows":[29],"a":[30,117,264,269],"critical":[31],"PDC":[32],"rule\u2014using":[33],"the":[34,40,209,214,229,261],"transient":[35],"field":[36],"for":[37,165,172,201,206],"private-data":[38],"ingress\u2014when":[39],"relevant":[41],"API":[42],"surface":[43],"is":[44,49,263],"provided":[45],"but":[46,255],"that":[47],"rule":[48],"not":[50],"explicitly":[51],"stated.":[52],"We":[53],"360":[55],"Go":[56,84,135,242],"artifacts":[58,130,132],"across":[59],"three":[60],"served-model":[61],"stacks":[62,169],"(Qwen2.5-Coder":[63],"7B,":[64],"Qwen2.5-Coder":[65],"14B,":[66],"and":[67,75,111,141,151,182,203],"Gemini":[68],"2.5":[69],"Pro)":[70],"using":[71],"12":[72],"task":[73,221],"specifications":[74],"10":[76],"fixed":[77],"seeds":[78],"per":[79],"configuration.":[80],"A":[81,223],"benchmark-specific,":[82],"task-aware":[83],"AST-based":[85],"static":[86],"analyzer":[87],"detects":[88],"two":[89],"classes":[90],"of":[91,163,179,216,236],"privacy":[92],"misuse:":[93],"transient-field":[94],"misuse":[95,150],"(ARG),":[96],"where":[97,116],"private":[98],"data":[99,122],"reaching":[100],"PutPrivateData":[101],"originates":[102],"from":[103,133],"function":[104,119],"parameters":[105],"or":[106],"GetArgs()":[107],"rather":[108,267],"than":[109,268],"GetTransient(),":[110],"write-transaction":[112],"return":[113],"leakage":[114],"(RET),":[115],"state-modifying":[118],"returns":[120],"private-source":[121],"its":[124],"response":[125],"value.":[126],"Of":[127],"267":[128],"source-eligible":[129,161],"(i.e.,":[131],"which":[134],"source":[136],"code":[137],"could":[138],"be":[139],"extracted":[140],"parsed":[142],"into":[143],"an":[144],"AST),":[145],"179":[146],"(67.0%)":[147],"exhibit":[148,154],"ARG":[149,158,202],"38":[152],"(14.2%)":[153],"RET":[155,210,217,231],"misuse,":[156],"with":[157,189,208],"rates":[159],"among":[160],"outputs":[162],"100%":[164],"both":[166],"evaluated":[167],"Qwen":[168],"versus":[170],"22.8%":[171],"Gemini.":[173],"The":[174],"detector":[175],"achieves":[176],"F1":[177],"scores":[178],"0.976":[180],"(ARG)":[181],"0.833":[183],"(RET)":[184],"against":[185],"human-adjudicated":[186],"reference":[187],"labels":[188],"independent":[190],"second-labeler":[191],"agreement;":[192],"task-clustered":[193],"bootstrap":[194],"95%":[195],"confidence":[196],"intervals":[197],"[0.938,":[199],"0.997]":[200],"[0.000,":[204],"0.968]":[205],"RET,":[207],"lower":[211],"bound":[212],"reflecting":[213],"concentration":[215],"positives":[218],"four":[220],"clusters.":[222],"deterministic":[224],"template-based":[225],"source-level":[226],"mitigation":[227],"targeting":[228],"matched":[230],"pattern":[232],"succeeds":[233],"on":[234,245],"32":[235],"33":[237],"buildable":[238,248],"targets":[239],"while":[240],"preserving":[241],"build":[243,253],"validity;":[244],"105":[246],"RET-negative":[247],"artifacts,":[249],"it":[250],"causes":[251],"no":[252],"failures":[254],"rewrites":[256],"nine":[257],"public-return":[258],"over-matches,":[259],"so":[260],"result":[262],"build-preservation":[265],"check":[266],"semantic-preservation":[270],"claim.":[271]},"counts_by_year":[],"updated_date":"2026-06-26T08:34:08.712188","created_date":"2026-06-16T00:00:00"}
