{"id":266,"date":"2015-12-16T12:59:21","date_gmt":"2015-12-16T18:59:21","guid":{"rendered":"http:\/\/www.ece.iastate.edu\/kcsl\/?p=266"},"modified":"2019-02-28T13:57:17","modified_gmt":"2019-02-28T19:57:17","slug":"iciss2015-flowminer","status":"publish","type":"post","link":"https:\/\/www.ece.iastate.edu\/kcsl\/iciss2015-flowminer\/","title":{"rendered":"ICISS 2015 &#8211; FlowMiner: Automatic Summarization of Library Data-Flow for Malware Analysis"},"content":{"rendered":"<p><strong>Abstract:<\/strong><\/p>\n<p>FlowMiner is a tool for automatically mining expressive, fine-grained data-flow summaries from Java library\u00a0bytecode. FlowMiner captures enough information to enable\u00a0context, type, field, object and flow-sensitive partial program\u00a0analysis of applications using the library. FlowMiner\u2019s summaries are compact- flow details of a library that are non-critical for future partial program analysis of applications are\u00a0elided into simple edges between elements that are accuracy-critical. Hence, summaries extracted by FlowMiner are an\u00a0order of magnitude smaller than the original library. We present\u00a0(i) novel algorithms to extract expressive, fine-grained, compact\u00a0summary data-flows from a Java library, (ii) graph summarization paradigm that uses a multi-attributed directed graph as the\u00a0mathematical abstraction to represent summaries, (iii) open-source implementation (FlowMiner tool) of the above that saves\u00a0summaries in a portable format usable by existing analysis\u00a0tools, and (iv) experiments with recent versions of Android\u00a0showing that FlowMiner\u00a0significantly advances the state-of-the-art tooling in accuracy.<\/p>\n<p><strong>Venue:\u00a0<\/strong><em><a href=\"http:\/\/www.iciss.org.in\/iciss-2015\/iciss\/tutorials.html\">11th\u00a0International Conference on Information Systems Security (ICISS 2015)<\/a>,\u00a0<\/em><span style=\"color: #414141\">Jadavpur University, Kolkata, India, December\u00a016-20 2015<\/span><\/p>\n<p><strong>Author:<\/strong> <span style=\"font-weight: 400\">Tom Deering, Ganesh Ram Santhanam, <\/span><span style=\"font-weight: 400\">Suresh Kothari<\/span><\/p>\n<h4>Paper (PDF):\u00a0<a href=\"https:\/\/www.ece.iastate.edu\/kcsl\/files\/2016\/10\/FlowMiner-ICISS2015.pdf\">FlowMiner-ICISS2015.pdf<\/a><\/h4>\n<h4>Slides (PDF):\u00a0<a href=\"https:\/\/www.ece.iastate.edu\/kcsl\/files\/2016\/10\/FlowMiner-ICISS2015-slides.pdf\">FlowMiner-ICISS2015-slides.pdf<\/a><\/h4>\n<h4>Tool: <a href=\"http:\/\/powerofpi.github.io\/FlowMiner\/\">http:\/\/powerofpi.github.io\/FlowMiner\/<\/a><\/h4>\n<h4>Source Code:\u00a0<a href=\"https:\/\/github.com\/powerofpi\/FlowMiner\">https:\/\/github.com\/powerofpi\/FlowMiner<\/a><\/h4>\n<h4>Bibtex:<\/h4>\n<p><code>@incollection{<br \/>\nyear={2015},<br \/>\nbooktitle={Proceedings of the International Conference on Information Systems Security},<br \/>\nvolume={9478},<br \/>\nseries={Lecture Notes in Computer Science},<br \/>\neditor={Jajodia, Sushil and Mazumdar, Chandan},<br \/>\ntitle={FlowMiner: Automatic Summarization of Library Data-Flow for Malware Analysis},<br \/>\npublisher={Springer International Publishing},<br \/>\nauthor={Tom Deering and Ganesh Ram Santhanam and Suresh Kothari},<br \/>\nlanguage={English}<br \/>\n}<\/code><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Abstract: FlowMiner is a tool for automatically mining expressive, fine-grained data-flow summaries from Java library\u00a0bytecode. FlowMiner captures enough information to enable\u00a0context, type, field, object and flow-sensitive partial program\u00a0analysis of applications using the library. FlowMiner\u2019s summaries are compact- flow details of a library that are non-critical for future partial program analysis of applications are\u00a0elided into simple [&hellip;]<\/p>\n","protected":false},"author":410,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[15,11,19],"class_list":["post-266","post","type-post","status-publish","format-standard","hentry","category-papers","tag-ganesh-ram-santhanam","tag-suresh-kothari","tag-tom-deering"],"_links":{"self":[{"href":"https:\/\/www.ece.iastate.edu\/kcsl\/wp-json\/wp\/v2\/posts\/266","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ece.iastate.edu\/kcsl\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ece.iastate.edu\/kcsl\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ece.iastate.edu\/kcsl\/wp-json\/wp\/v2\/users\/410"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ece.iastate.edu\/kcsl\/wp-json\/wp\/v2\/comments?post=266"}],"version-history":[{"count":1,"href":"https:\/\/www.ece.iastate.edu\/kcsl\/wp-json\/wp\/v2\/posts\/266\/revisions"}],"predecessor-version":[{"id":268,"href":"https:\/\/www.ece.iastate.edu\/kcsl\/wp-json\/wp\/v2\/posts\/266\/revisions\/268"}],"wp:attachment":[{"href":"https:\/\/www.ece.iastate.edu\/kcsl\/wp-json\/wp\/v2\/media?parent=266"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ece.iastate.edu\/kcsl\/wp-json\/wp\/v2\/categories?post=266"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ece.iastate.edu\/kcsl\/wp-json\/wp\/v2\/tags?post=266"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}