Efficient symbolic execution of strings for validating web applications

Authors:
D. Shannon;I. Ghosh;S. Rajan;S. Khurshid
Affiliations:
Univ. of Texas at Austin, Austin, TX;Fujitsu Labs. of America, Sunnyvale, CA;Fujitsu Labs. of America, Sunnyvale, CA;Univ. of Texas at Austin, Austin, TX
Venue:
Proceedings of the 2nd International Workshop on Defects in Large Software Systems: Held in conjunction with the ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA 2009)
Year:
2009

Citing 6
Cited 6

Symbolic execution and program testing

Communications of the ACM
Soot - a Java bytecode optimization framework

CASCON '99 Proceedings of the 1999 conference of the Centre for Advanced Studies on Collaborative research
Abstracting Symbolic Execution with String Analysis

TAICPART-MUTATION '07 Proceedings of the Testing: Academic and Industrial Conference Practice and Research Techniques - MUTATION
Precise analysis of string expressions

SAS'03 Proceedings of the 10th international conference on Static analysis
Type-dependence analysis and program transformation for symbolic execution

TACAS'07 Proceedings of the 13th international conference on Tools and algorithms for the construction and analysis of systems
JPF-SE: a symbolic execution extension to Java PathFinder

TACAS'07 Proceedings of the 13th international conference on Tools and algorithms for the construction and analysis of systems

Automated driver generation for analysis of web applications

FASE'11/ETAPS'11 Proceedings of the 14th international conference on Fundamental approaches to software engineering: part of the joint European conferences on theory and practice of software
Path- and index-sensitive string analysis based on monadic second-order logic

Proceedings of the 2011 International Symposium on Software Testing and Analysis
Symbolic execution of programs with strings

Proceedings of the South African Institute for Computer Scientists and Information Technologists Conference
JST: an automatic test generation tool for industrial Java applications with strings

Proceedings of the 2013 International Conference on Software Engineering
Z3-str: a z3-based string solver for web application analysis

Proceedings of the 2013 9th Joint Meeting on Foundations of Software Engineering
Path- and index-sensitive string analysis based on monadic second-order logic

ACM Transactions on Software Engineering and Methodology (TOSEM) - Testing, debugging, and error handling, formal methods, lifecycle concerns, evolution and maintenance

Quantified Score

Hi-index	0.00

Visualization

Abstract

Symbolic execution is a popular technique used in formal verification of software and hardware systems. In this paper we examine three different ways of performing symbolic execution for the purpose of formal model checking, on web application software implemented with the Java programming language. We evaluate the different techniques on real industrial applications and compare them on issues of performance, implementation ease, and ease-of-use. There are some special characteristics of web applications like extensive use of string inputs that need to be tackled before traditional symbolic execution techniques become feasible. We provide details of how we have solved those issues.