Oksana Tkachuk scite author profile

Oksana Tkachuk

5Publications

175Citation Statements Received

96Citation Statements Given

How they've been cited

254

175

How they cite others

Affiliations

Amazon (United States), Ames Research Center, Kansas State University

Publications

Order By: Most citations

Automated environment generation for software model checking

Tkachuk

Dwyer

Păsăreanu

View full text Add to dashboard Cite

A key problem in model checking open systems is environment modeling (i.e., representing the behavior of the execution context of the system under analysis). Sojhare systems are fundamentally open since their behavior is dependent on patterns of invocation of system components and values defined outside the system but referenced within the system. Whether reasoning about the behavior of whole programs or about program components, an abstract model of the environment can be essential in enabling suficiently precise yet tractable verijication.In this papel; we describe an approach to generating environments of Java program fragments. This approach integrates formally specijied assumptions about environment behavior with sound abstractions of environment implementations to form a model of the environment. The approach is implemented in the Bandera Environment Generator (BEG) which we describe along with our experience using BEG to reason about properties of severcl non-trivial concurrent Java programs. 'We treat interfaces in Java as classes which comprise a unit inrefice in our terminology. https://ntrs.nasa.gov/search.

show abstract

Regression Verification Using Impact Summaries

Backes

Person

Rungta

et al. 2013

View full text Add to dashboard Cite

Abstract. Regression verification techniques are used to prove equivalence of closely related program versions. Existing regression verification techniques leverage the similarities between program versions to help improve analysis scalability by using abstraction and decomposition techniques. These techniques are sound but not complete. In this work, we propose an alternative technique to improve scalability of regression verification that leverages change impact information to partition program execution behaviors. Program behaviors in each version are partitioned into (a) behaviors impacted by the changes and (b) behaviors not impacted (unimpacted) by the changes. Our approach uses a combination of static analysis and symbolic execution to generate summaries of program behaviors impacted by the differences. We show in this work that checking equivalence of behaviors in two program versions reduces to checking equivalence of just the impacted behaviors. We prove that our approach is both sound and complete for sequential programs, with respect to the depth bound of symbolic execution; furthermore, our approach can be used with existing approaches to better leverage the similarities between program versions and improve analysis scalability. We evaluate our technique on a set of sequential C artifacts and present preliminary results.

show abstract

Semantic-based Automated Reasoning for AWS Access Policies using SMT

Backes

Bolignano

Cook

et al. 2018

View full text Add to dashboard Cite

Cloud computing provides on-demand access to IT resources via the Internet. Permissions for these resources are defined by expressive access control policies. This paper presents a formalization of the Amazon Web Services (AWS) policy language and a corresponding analysis tool, called ZELKOVA, for verifying policy properties. ZELKOVA encodes the semantics of policies into SMT, compares behaviors, and verifies properties. It provides users a sound mechanism to detect misconfigurations of their policies. ZELKOVA solves a PSPACE-complete problem and is invoked many millions of times daily.

show abstract

Analyzing interaction orderings with model checking

Dwyer¹,

Robby²,

Tkachuk³

et al.

View full text Add to dashboard Cite

Symbolic quantitative information flow

Phan

Malacaria

Tkachuk

et al. 2012

SIGSOFT Softw. Eng. Notes

View full text Add to dashboard Cite

Quantitative Information Flow (QIF) is a powerful approach to quantify leaks of confidential information in a software system. Here we present a novel method that precisely quantifies information leaks. In order to mitigate the state-space explosion problem, we propose a symbolic representation of data, and a general SMT-based framework to explore systematically the state space. Symbolic Execution fits well with our framework, so we implement a method of QIF analysis employing Symbolic Execution. We develop our method as a prototype tool that can perform QIF analysis for a software system developed in Java. The tool is built on top of Java Pathfinder, an open source model checking platform, and it is the first tool in the field to support information-theoretic QIF analysis.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Oksana Tkachuk

Automated environment generation for software model checking

Regression Verification Using Impact Summaries

Semantic-based Automated Reasoning for AWS Access Policies using SMT

Analyzing interaction orderings with model checking

Symbolic quantitative information flow

Contact Info

Product

Resources

About