CFGExplorer: Designing a Visual Control Flow Analytics System around Basic Program Analysis Operations

Devkota, Sabin; Isaacs, Katherine E.

doi:10.1111/cgf.13433

Cited by 16 publications

(14 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It uses the CVS version control system to get the information about how a program has been changed or evolved over time and visualizes it as a dynamic graph. CFGExplorer [29] visualizes the control flow graph of a program to represent the program structure for dynamic binary analysis. It provides interactive features where users can find specific memory addresses, loops, and functions that they are interested to analyze the system.…”

Section: Related Workmentioning

confidence: 99%

Visualizing The Intermediate Representation of Just-in-Time Compilers

Lim¹,

Kobourov²

2021

Preprint

View full text Add to dashboard Cite

Just-in-time (JIT) compilers are used by many modern programming systems in order to improve performance. Bugs in JIT compilers provide exploitable security vulnerabilities and debugging them is difficult as they are large, complex, and dynamic. Current debugging and visualization tools deal with static code and are not suitable in this domain. We describe a new approach for simplifying the large and complex intermediate representation, generated by a JIT compiler and visualize it with a metro map metaphor to aid developers in debugging. Experiments using our prototype implementation on Google's V8 JavaScript interpreter and TurboFan JIT compiler demonstrate that it can help identify and localize buggy code.

show abstract

Section: Related Workmentioning

confidence: 99%

Visualizing The Intermediate Representation of Just-in-Time Compilers

Lim¹,

Kobourov²

2021

Preprint

View full text Add to dashboard Cite

show abstract

“…They designed and evaluated RetainVis via iterative design process and participation with medical experts and artificial intelligence scientists. Devkota and Isaacs (2018) collaborated with computer scientists in abstracting design requirements for visualizing control flow graphs that represent the program's execution path. They examine the scientist's analysis tasks and use of visualization via questionnaires, interviews, and a year-long observation.…”

Section: Related Workmentioning

confidence: 99%

Problem characterization for visual analytics in MOOC learner's support monitoring: A case of Malaysian MOOC

Asli

Hamzah

Ibrahim

et al. 2020

Heliyon

View full text Add to dashboard Cite

Malaysia and many other developing countries progressively adopting massively open online course (MOOC) in their national higher education approach. We have observed an increasing need for facilitating MOOC monitoring that is associated with the rising adoption of MOOCs. Our observation suggests that recent adoption cases led analyst and instructors to focus on monitoring enrolment and learning activities. Visual analytics in MOOC support education analysts in analyzing MOOC data via interactive visualization. Existing literature on MOOC visualization focuses on enabling visual analysis on MOOC data from forum and course material. We found limited studies that investigate and characterize domain problems or design requirements of visual analytics for MOOC. This paper aims to present the empirical problem characterization and abstraction for visual analytics in MOOC learner's support monitoring. Detailed characterization and abstraction of the domain problem help visualization designer to derive design requirements in generating appropriate visualization solution. We examined the literature and conducted a case study to elicit a problem abstraction based on data, users, and tasks. We interviewed five Malaysian MOOC experts from three higher education institutes using semistructured questions. Our case study reveals the priority of enabling MOOC analysis on learner's progression and course completion. There is an association between design and analysis priority with the pedagogical type of implemented MOOC and users. The characterized domain problems and requirements offer a design foundation for visual analytics in MOOC monitoring analysis.

show abstract

“…Visualization techniques have helped in several research problems from the software visualization and code execution analysis domains, e.g., static and dynamic code analysis [6,18,21], trace analysis and results explanation [7], and performance analysis [2], being some of them tailored to the cyber-security domain (e.g. analysis of malware [33], static analysis of vulnerabilities [4], writing ROP exploits [3]).…”

Section: Related Workmentioning

confidence: 99%

“…Regarding the CFG, we have evaluated nodes-links and matrixbased representations, choosing the former in light of a) the need to display complex information at node level, b) the need to support tasks like following path(s) (see, e.g., [19]), c) evidences collected from related proposals (see, e.g., [18]) and d) the clear preferences of our users, collected during project meetings comparing proposed matrix-based and nodes-links based representations of the same CFG. Figure 4: Control Flow Graph Environment.…”

Section: Control Flow Graph Environmentmentioning

confidence: 99%

SymNav: Visually Assisting Symbolic Execution

Angelini

Blasilli

Borzacchiello

et al. 2019

2019 IEEE Symposium on Visualization for Cyber Security (VizSec)

View full text Add to dashboard Cite

Modern software systems require the support of automatic program analyses to answer questions about their correctness, reliability, and safety. In recent years, symbolic execution techniques have played a pivotal role in this field, backing research in different domains such as software testing and software security. Like other powerful machine analyses, symbolic execution is often affected by efficiency and scalability issues that can be mitigated when a domain expert interacts with its working, steering the computation to achieve the desired goals faster. In this paper we explore how visual analytics techniques can help the user to grasp properties of the ongoing analysis and use such insights to refine the symbolic exploration process. To this end, we discuss two real-world usage scenarios from the malware analysis and the vulnerability detection domains, showing how our prototype system can help users make a wiser use of symbolic exploration techniques in the analysis of binary code.

show abstract

CFGExplorer: Designing a Visual Control Flow Analytics System around Basic Program Analysis Operations

Cited by 16 publications

References 23 publications

Visualizing The Intermediate Representation of Just-in-Time Compilers

Visualizing The Intermediate Representation of Just-in-Time Compilers

Problem characterization for visual analytics in MOOC learner's support monitoring: A case of Malaysian MOOC

SymNav: Visually Assisting Symbolic Execution

Contact Info

Product

Resources

About