专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08453125B2 Generating inputs for client-server programs for fault-detection and localization 失效
标题翻译：为客户机 - 服务器程序生成输入以进行故障检测和本地化
公开(公告)号：US08453125B2
公开(公告)日：2013-05-28
申请号：US12966556
申请日：2010-12-13
申请人： Shay Artzi , Julian Dolby , Marco Pistoia , Frank Tip
发明人： Shay Artzi , Julian Dolby , Marco Pistoia , Frank Tip
IPC分类号： G06F9/44
CPC分类号： G06F11/3684 , H04L69/40
摘要： The present invention provides a system, computer program product, and a computer implemented method for analyzing a set of two or more communicating applications. The method begins with receiving a first second application that communicates with each other during execution. Next, an initial input for executing the first application and the second application is received. The initial input is added to a set of inputs. An iterative execution loop is performed at least once. The loop begins with selecting inputs out of the set of inputs for execution. Next, using the selected inputs, the first and/or the second application is executed while information regarding the execution and information communicated to the other application are recorded. A set of one or more new application inputs for either applications is generated based the second application recorded information and the first application information. These new inputs are added to the set of inputs.
摘要翻译：本发明提供了一种系统，计算机程序产品和用于分析一组两个或多个通信应用的计算机实现的方法。该方法开始于在执行期间接收彼此通信的第一个第二应用程序。接下来，接收用于执行第一应用和第二应用的初始输入。初始输入被添加到一组输入。执行迭代执行循环至少一次。循环从选择输入集合中的输入开始执行。接下来，使用所选择的输入，执行第一和/或第二应用，同时记录关于执行的信息和传送给其他应用的信息。基于第二应用记录信息和第一应用信息生成用于任一应用的一组或多个新的应用输入。这些新的输入被添加到该组输入。

2. 发明授权

US09135147B2 Automated testing of applications with scripting code 有权
标题翻译：使用脚本代码自动测试应用程序
公开(公告)号：US09135147B2
公开(公告)日：2015-09-15
申请号：US13457083
申请日：2012-04-26
申请人： Shay Artzi , Julian Dolby , Salvatore A. Guarnieri , Simon H. Jensen , Marco Pistoia , Manu Sridharan , Frank Tip , Omer Tripp
发明人： Shay Artzi , Julian Dolby , Salvatore A. Guarnieri , Simon H. Jensen , Marco Pistoia , Manu Sridharan , Frank Tip , Omer Tripp
IPC分类号： G06F9/44 , G06F11/36 , G06F11/34
CPC分类号： G06F11/3676 , G06F11/3466 , G06F11/3684 , G06F11/3688
摘要： A novel system, computer program product, and method are disclosed for feedback-directed automated test generation for programs, such as JavaScript, in which execution is monitored to collect information that directs the test generator towards inputs that yield increased coverage. Several instantiations of the framework are implemented, corresponding to variations on feedback-directed random testing, in a tool called Artemis.
摘要翻译：公开了一种新颖的系统，计算机程序产品和方法用于诸如JavaScript的程序的反馈定向的自动测试生成，其中执行被监视以收集将测试发生器引导到产生增加的覆盖的输入的信息。在一个名为Artemis的工具中，实现了框架的几个实例，对应于反馈导向随机测试的变化。

3. 发明申请

US20120054552A1 FAULT LOCALIZATION USING DIRECTED TEST GENERATION 失效
标题翻译：使用指导性测试生成的故障本地化
公开(公告)号：US20120054552A1
公开(公告)日：2012-03-01
申请号：US12873816
申请日：2010-09-01
申请人： Shay Artzi , Julian Dolby , Marco Pistoia , Frank Tip
发明人： Shay Artzi , Julian Dolby , Marco Pistoia , Frank Tip
IPC分类号： G06F11/36
CPC分类号： G06F11/3684 , G06F11/3688
摘要： Disclosed is a novel computer implemented system, on demand service, computer program product and a method for fault-localization techniques that apply statistical analyses to execution data gathered from multiple tests. The present invention determines the fault-localization effectiveness of test suites generated according to several test-generation techniques based on combined concrete and symbolic (concolic) execution. These techniques are evaluated by applying the Ochiai fault-localization technique to generated test suites in order to localize 35 faults in four PHPWeb applications. The results show that the test-generation techniques under consideration produce test suites with similar high fault-localization effectiveness, when given a large time budget.
摘要翻译：公开了一种新颖的计算机实现系统，按需服务，计算机程序产品和用于故障定位技术的方法，其将统计分析应用于从多个测试收集的执行数据。本发明确定了基于组合的具体和符号（concolic）执行的几种测试生成技术产生的测试套件的故障定位有效性。通过将Ochiai故障定位技术应用于生成的测试套件来评估这些技术，以便在四个PHPWeb应用程序中定位35个故障。结果表明，考虑到的测试生成技术产生具有类似高故障定位效果的测试套件，当给予大的时间预算时。

4. 发明授权

US09043761B2 Fault localization using condition modeling and return value modeling 有权
标题翻译：使用条件建模和返回值建模的故障定位
公开(公告)号：US09043761B2
公开(公告)日：2015-05-26
申请号：US12873843
申请日：2010-09-01
申请人： Shay Artzi , Julian Dolby , Marco Pistoia , Frank Tip
发明人： Shay Artzi , Julian Dolby , Marco Pistoia , Frank Tip
IPC分类号： G06F9/44 , G06F11/36
CPC分类号： G06F11/3688 , G06F11/3692
摘要： Disclosed is a novel computer implemented system, on demand service, computer program product and a method that leverages combined concrete and symbolic execution and several fault-localization techniques to automatically detects failures and localizes faults in PHP Hypertext Preprocessor (“PHP”) Web applications.
摘要翻译：公开了一种新颖的计算机实现系统，按需服务，计算机程序产品和利用组合的具体和符号执行以及多种故障定位技术来自动检测PHP超文本预处理器（“PHP”）Web应用程序中的故障和本地化故障的方法。

5. 发明授权

US08516449B2 Detecting and localizing security vulnerabilities in client-server application 失效
标题翻译：检测和本地化客户端 - 服务器应用程序中的安全漏洞
公开(公告)号：US08516449B2
公开(公告)日：2013-08-20
申请号：US12902423
申请日：2010-10-12
申请人： Shay Artzi , Julian Dolby , Marco Pistoia , Frank Tip , Omer Tripp
发明人： Shay Artzi , Julian Dolby , Marco Pistoia , Frank Tip , Omer Tripp
IPC分类号： G06F9/44
CPC分类号： G06F11/3604
摘要： The present invention provides a system, computer program product, and a computer implemented method for analyzing a set of two or more communicating applications. The method includes executing a first application, such as a client application, and executing a second application, such as a server application. The applications are communicating with each other. A correlation is recorded between the applications and an execution characteristic exhibited on execution. An oracle is used to determine an analysis of the first application that has been executed. The execution of the first application causes a change of state in the second application and/or a change control flow in the second application. Code fragment in the first application and/or the second application are prioritized based on an evaluation produced by the oracle, and based on the correlation between the code fragments that have been executed and the execution characteristic exhibited by the code fragments.
摘要翻译：本发明提供了一种系统，计算机程序产品和用于分析一组两个或多个通信应用的计算机实现的方法。该方法包括执行诸如客户端应用的第一应用，以及执行诸如服务器应用的第二应用。应用程序正在彼此通信。应用之间记录相关性，执行时执行特性。使用oracle来确定已执行的第一个应用程序的分析。第一应用的执行导致第二应用中的状态改变和/或第二应用中的改变控制流。第一应用程序和/或第二应用程序中的代码片段基于由oracle生成的评估，并且基于已执行的代码片段与代码片段所呈现的执行特性之间的相关性进行优先级排序。

6. 发明授权

US08387018B2 Fault localization using directed test generation 失效
标题翻译：使用定向测试生成的故障定位
公开(公告)号：US08387018B2
公开(公告)日：2013-02-26
申请号：US12873816
申请日：2010-09-01
申请人： Shay Artzi , Julian Dolby , Marco Pistoia , Frank Tip
发明人： Shay Artzi , Julian Dolby , Marco Pistoia , Frank Tip
IPC分类号： G06F9/44 , G06F11/00
CPC分类号： G06F11/3684 , G06F11/3688
摘要： Disclosed is a novel computer implemented system, on demand service, computer program product and a method for fault-localization techniques that apply statistical analyses to execution data gathered from multiple tests. The present invention determines the fault-localization effectiveness of test suites generated according to several test-generation techniques based on combined concrete and symbolic (concolic) execution. These techniques are evaluated by applying the Ochiai fault-localization technique to generated test suites in order to localize 35 faults in four PHPWeb applications. The results show that the test-generation techniques under consideration produce test suites with similar high fault-localization effectiveness, when given a large time budget.
摘要翻译：公开了一种新颖的计算机实现系统，按需服务，计算机程序产品和用于故障定位技术的方法，其将统计分析应用于从多个测试收集的执行数据。本发明确定了基于组合的具体和符号（concolic）执行的几种测试生成技术产生的测试套件的故障定位有效性。通过将Ochiai故障定位技术应用于生成的测试套件来评估这些技术，以便在四个PHPWeb应用程序中定位35个故障。结果表明，考虑到的测试生成技术产生具有类似高故障定位效果的测试套件，当给予大的时间预算时。

7. 发明申请

US20120054553A1 FAULT LOCALIZATION USING CONDITION MODELING AND RETURN VALUE MODELING 有权
标题翻译：使用条件建模和返回值建模的故障定位
公开(公告)号：US20120054553A1
公开(公告)日：2012-03-01
申请号：US12873843
申请日：2010-09-01
申请人： Shay ARTZI , Julian Dolby , Marco Pistoia , Frank Tip
发明人： Shay ARTZI , Julian Dolby , Marco Pistoia , Frank Tip
IPC分类号： G06F11/36
CPC分类号： G06F11/3688 , G06F11/3692
摘要： Disclosed is a novel computer implemented system, on demand service, computer program product and a method that leverages combined concrete and symbolic execution and several fault-localization techniques to create a uniquely powerful tool that automatically detects failures and localizes faults in PHP Web applications. The fault-localization techniques evaluated combine variations on the Tarantula algorithm with a technique based on maintaining a mapping between executed statements and the fragments of output they produce, mapping of conditional results, and values returned from function calls. These techniques have been implemented in a tool called Apollo, and evaluated by localizing 75 randomly selected faults that were exposed by automatically generated tests in four PHP applications. Our findings indicate that, using our best technique, 87.7% of the faults under consideration are localized to within 1% of all executed statements, which constitutes an almost five-fold improvement over the Tarantula algorithm.
摘要翻译：公开了一种新颖的计算机实现系统，按需服务，计算机程序产品和利用组合的具体和符号执行以及多种故障定位技术的方法来创建一个独特强大的工具，可自动检测故障并定位PHP Web应用程序中的故障。评估的故障定位技术将Tarantula算法的变化与基于维护执行语句之间的映射及其产生的输出片段，条件结果映射以及函数调用返回值的技术相结合。这些技术已经在一个名为Apollo的工具中实现，并通过将四个PHP应用程序中自动生成的测试暴露的75个随机选择的故障进行本地化评估。我们的研究结果表明，使用我们最好的技术，所考虑的故障的87.7％被定位在所有执行语句的1％内，这比Tarantula算法提高了近5倍。

8. 发明申请

US20120151454A1 GENERATING INPUTS FOR CLIENT-SERVER PROGRAMS FOR FAULT DETECTION AND LOCALIZATION 失效
标题翻译：为客户服务器程序生成用于故障检测和本地化的程序
公开(公告)号：US20120151454A1
公开(公告)日：2012-06-14
申请号：US12966556
申请日：2010-12-13
申请人： Shay ARTZI , Julian Dolby , Marco Pistoia , Frank Tip
发明人： Shay ARTZI , Julian Dolby , Marco Pistoia , Frank Tip
IPC分类号： G06F9/44
CPC分类号： G06F11/3684 , H04L69/40
摘要： The present invention provides a system, computer program product, and a computer implemented method for analyzing a set of two or more communicating applications. The method begins with receiving a first second application that communicates with each other during execution. Next, an initial input for executing the first application and the second application is received. The initial input is added to a set of inputs. An iterative execution loop is performed at least once. The loop begins with selecting inputs out of the set of inputs for execution. Next, using the selected inputs, the first and/or the second application is executed while information regarding the execution and information communicated to the other application are recorded. A set of one or more new application inputs for either applications is generated based the second application recorded information and the first application information. These new inputs are added to the set of inputs.
摘要翻译：本发明提供了一种系统，计算机程序产品和用于分析一组两个或多个通信应用的计算机实现的方法。该方法开始于在执行期间接收彼此通信的第一个第二应用程序。接下来，接收用于执行第一应用和第二应用的初始输入。初始输入被添加到一组输入。执行迭代执行循环至少一次。循环从选择输入集合中的输入开始执行。接下来，使用所选择的输入，执行第一和/或第二应用，同时记录关于执行的信息和传送给其他应用的信息。基于第二应用记录信息和第一应用信息生成用于任一应用的一组或多个新的应用输入。这些新的输入被添加到该组输入。

9. 发明申请

US20110030061A1 DETECTING AND LOCALIZING SECURITY VULNERABILITIES IN CLIENT-SERVER APPLICATION 失效
标题翻译：检测和本地化客户端服务器应用程序中的安全漏洞
公开(公告)号：US20110030061A1
公开(公告)日：2011-02-03
申请号：US12902423
申请日：2010-10-12
申请人： SHAY ARTZI , Julian Dolby , Marco Pistoia , Frank Tip , Omer Tripp
发明人： SHAY ARTZI , Julian Dolby , Marco Pistoia , Frank Tip , Omer Tripp
IPC分类号： G06F11/36 , G06F11/00 , G06F9/44
CPC分类号： G06F11/3604
摘要： The present invention provides a system, computer program product, and a computer implemented method for analyzing a set of two or more communicating applications. The method includes executing a first application, such as a client application, and executing a second application, such as a server application. The applications are communicating with each other. A correlation is recorded between the applications and an execution characteristic exhibited on execution. An oracle is used to determine an analysis of the first application that has been executed. The execution of the first application causes a change of state in the second application and/or a change control flow in the second application. Code fragment in the first application and/or the second application are prioritized based on an evaluation produced by the oracle, and based on the correlation between the code fragments that have been executed and the execution characteristic exhibited by the code fragments.
摘要翻译：本发明提供了一种系统，计算机程序产品和用于分析一组两个或多个通信应用的计算机实现的方法。该方法包括执行诸如客户端应用的第一应用，以及执行诸如服务器应用的第二应用。应用程序正在彼此通信。应用之间记录相关性，执行时执行特性。使用oracle来确定已执行的第一个应用程序的分析。第一应用的执行导致第二应用中的状态改变和/或第二应用中的改变控制流。第一应用程序和/或第二应用程序中的代码片段基于由oracle生成的评估，并且基于已执行的代码片段与代码片段所呈现的执行特性之间的相关性进行优先级排序。

10. 发明申请

US20110016456A1 GENERATING ADDITIONAL USER INPUTS FOR FAULT DETECTION AND LOCALIZATION IN DYNAMIC SOFTWARE APPLICATIONS 审中-公开
标题翻译：在动态软件应用程序中生成用于故障检测和本地化的附加用户输入
公开(公告)号：US20110016456A1
公开(公告)日：2011-01-20
申请号：US12502545
申请日：2009-07-14
申请人： SHAY ARTZI , Julian Dolby , Frank Tip
发明人： SHAY ARTZI , Julian Dolby , Frank Tip
IPC分类号： G06F9/44
CPC分类号： G06F11/3692 , G06F11/3684
摘要： The present invention provides a system, computer program product and a computer implemented method for prioritizing code fragments based on the use of a software oracle and on a correlation between the executed code fragments and the output they produce. Also described is a computer-implemented method generates additional user inputs based on execution information associated with path constraints and based on information from the oracle. Advantageously, the embodiment is useful in a test generation tool that generated many similar inputs when a failure-inducing input is found, in order to enhance fault localization. Further, described is a computer-implemented flow for extending the existing idea of concolic testing to applications that interact with persistent state.
摘要翻译：本发明提供了一种系统，计算机程序产品和计算机实现的方法，用于基于使用软件oracle以及所执行的代码片段与其产生的输出之间的相关性对代码片段进行优先级排序。还描述了一种基于计算机实现的方法，其基于与路径约束相关联的执行信息并且基于来自oracle的信息生成额外的用户输入。有利地，该实施例对于在发现故障诱导输入时产生许多相似输入的测试生成工具中是有用的，以便增强故障定位。此外，描述了一种计算机实现的流程，用于将现有的concolic测试思想扩展到与持久状态交互的应用程序。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式