research-article

Better bug reporting with better privacy

Authors:

Jean-Philippe MartinAuthors Info & Claims

ASPLOS XIII: Proceedings of the 13th international conference on Architectural support for programming languages and operating systems

Pages 319 - 328

https://doi.org/10.1145/1346281.1346322

Published: 01 March 2008 Publication History

Abstract

Software vendors collect bug reports from customers to improve the quality of their software. These reports should include the inputs that make the software fail, to enable vendors to reproduce the bug. However, vendors rarely include these inputs in reports because they may contain private user data. We describe a solution to this problem that provides software vendors with new input values that satisfy the conditions required to make the software follow the same execution path until it fails, but are otherwise unrelated with the original inputs. These new inputs allow vendors to reproduce the bug while revealing less private information than existing approaches. Additionally, we provide a mechanism to measure the amount of information revealed in an error report. This mechanism allows users to perform informed decisions on whether or not to submit reports. We implemented a prototype of our solution and evaluated it with real errors in real programs. The results show that we can produce error reports that allow software vendors to reproduce bugs while revealing almost no private information.

Supplementary Material

JPG File (1346322.jpg)

Download
17.56 KB

index.html (index.html)

Slides from the presentation

Download
.96 KB

ZIP File (p319-costa-slides.zip)

Supplemental material for Better bug reporting with better privacy

Download
12.87 MB

Audio only (1346322.mp3)

Download
9.62 MB

Video (1346322.mp4)

Download
133.13 MB

References

[1]

GHttpd Log() Function Buffer Overflow Vulnerability (Bugtraq ID: 5960). http://www.securityfocus.com/bid/5960.

[2]

Null HTTPd Remote Heap Overflow Vulnerability (Bugtraq ID: 5774). http://www.securityfocus.com/bid/5774.

[3]

Portable network graphics (png) specification and extensions. http://www.libpng.org/pub/png/spec/.

[4]

AGRAWAL, R., AND SRIKANT, R. Privacy-preserving data mining. In SIGMOD '00: Proceedings of the 2000 ACM SIGMOD international conference on Management of data (2000), pp. 439--450.

Digital Library

[5]

BHANSALI, S., CHEN, W.-K., DE JONG, S., EDWARDS, A., MURRAY, R., DRINIC, M., MIHOCKA, D., AND CHAU, J. Framework for instruction-level tracing and analysis of program executuions. In VEE (June 2006).

Digital Library

[6]

BROADWELL, P., HARREN, M., AND SASTRY, N. Scrash: a system for generating secure crash information.

[7]

BRUMLEY, D., NEWSOME, J., SONG, D., WANG, H., AND JHA, S. Towards automatic generation of vulnerability signatures. In IEEE Symposium on Security and Privacy (May 2006).

Digital Library

[8]

CADAR, C., GANESH, V., PAWLOWSKI, P. M., DILL, D. L., AND ENGLER, D. R. EXE: Automatically Generating Inputs of Death. In 13th ACM Conference on Computer and Communications Security (2006).

Digital Library

[9]

CASTRO, M., COSTA, M., AND HARRIS, T. Securing software by enforcing data-flow integrity. In OSDI (Nov. 2006).

Digital Library

[10]

CHEN, S., XU, J., SEZER, E. C., GAURIAR, P., AND IYER, R. K. Non-control-data attacks are realistic threats. In USENIX Security Symposium (July 2005).

Digital Library

[11]

CHIRAYATH, V., LONGPRE, L., AND KREINOVICH, V. Measuring privacy loss in statistical databases. In Workshop on Descriptional Complexity of Formal Systems (June 2006), pp. 16--25.

[12]

COSTA, M., CASTRO, M., ZHOU, L., ZHANG, L., AND PEINADO, M. Bouncer: Securing Software by Blocking Bad Input. In SOSP (Oct. 2007).

Digital Library

[13]

COSTA, M., CROWCROFT, J., CASTRO, M., ROWSTRON, A., ZHOU, L., ZHANG, L., AND BARHAM, P. Vigilante: End-to-End Containment of Internet Worms. In SOSP (Oct. 2005).

Digital Library

[14]

COWAN, C., PU, C., MAIER, D., HINTON, H., WADPOLE, J., BAKKE, P., BEATTIE, S., GRIER, A., WAGLE, P., AND ZHANG, Q. Stackguard: Automatic detection and prevention of buffer-overrun attacks. In USENIX Security Symposium (Jan. 1998).

Digital Library

[15]

CRANDALL, J. R., SU, Z., WU, S. F., AND CHONG, F. T. On deriving unknown vulnerabilities from zero-day polymorphic and metamorphic worm exploits. In ACM CCS (Nov. 2005).

Digital Library

[16]

DE MOURA, L., AND BJORNER, N. Z3: An Efficient SMT Solver. In Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS) (Apr. 2008).

Digital Library

[17]

DUTERTRE, B., AND DE MOURA, L. The YICES SMT Solver. http://yices.csl.sri.com.

[18]

DUTERTRE, B., AND DE MOURA, L. A fast linear-arithemic solver for dpll(t). In CAV06 (Aug. 2006).

Digital Library

[19]

ELNOZAHY, E. N., ALVISI, L., WANG, Y.-M., AND JOHNSON, D. B. A survey of rollback-recovery protocols in message-passing systems. ACM Computing Surveys 34, 3 (Sept. 2002), 375--408.

Digital Library

[20]

GODEFROID, P., KLARLUND, N., AND SEN, K. DART: Directed Automated Random Testing. In PLDI (2005).

Digital Library

[21]

GODEFROID, P., LEVIN, M. Y., AND MOLNAR, D. Automated whitebox fuzz testing. Tech. Rep. MSR-TR-2007-58, Microsoft Research Technical Report, May 2007.

[22]

GOMES, C. P., HOFFMANN, J., SABHARWAL, A., AND SELMAN, B. From sampling to model counting. In IJCAI (2007), pp. 2293--2299.

Digital Library

[23]

GOMES, C. P., SABHARWAL, A., AND SELMAN, B. Model counting: A new strategy for obtaining good bounds. In AAAI (2006).

Digital Library

[24]

MARTIN, J.-P. Upper and lower bounds on the number of solutions. Tech. Rep. MSR-TR-2007-164, Dec. 2007.

[25]

MICROSOFT CORPORATION. Msn messenger. http://messenger.msn.com.

[26]

MICROSOFT CORPORATION. Privacy statement for the microsoft error reporting service, Oct. 2005. http://oca.microsoft.com/en/dcp20.asp.

[27]

MICROSOFT CORPORATION. Description of the end user privacy policy in application error reporting when you are using office. Microsoft Knowledge Base Q283768, Jan. 2007. http://support.microsoft.com/kb/283768.

[28]

MICROSOFT CORPORATION. Dr. watson overview, Jan. 2007. http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/drwatson overview.mspx?mfr=true.

[29]

MITRE CORPORATION. Multiple buffer overflows in libpng 1.2.5. CVE-2004-0597, June 2004. http://cve.mitre.org/cgibin/cvename.cgi?name=CAN-2004-0597.

[30]

MOORE, D., PAXSON, V., SAVAGE, S., SHANNON, C., STANIFORD, S., AND WEAVER, N. Inside the Slammer worm. IEEE Security and Privacy 1, 4 (July 2003).

Digital Library

[31]

QIN, F., TUCEK, J., SUNDARESAN, J., AND ZHOU, Y. Rx: Treating bugs as allergies -- a safe method to survive software failures. In SOSP (Nov. 2005).

Digital Library

[32]

RUWASE, O., AND LAM, M. A practical dynamic buffer overflow detector. In NDSS (Feb. 2004).

[33]

SAMARATI, P., AND SWEENEY, L. Generalizing data to provide anonymity when disclosing information. In Proceedings of the 17th Symposium on Principles of Database Systems (1998), p. 188.

Digital Library

[34]

SANG, T., BEAME, P., AND KAUTZ, H. A. Heuristics for fast exact model counting. In SAT (2005), pp. 226--240.

Digital Library

[35]

SEN, K., MARINOV, D., AND AGHA, G. CUTE: A Concolic Unit Testing Engine for C. In ESEC/FSE (2005).

Digital Library

[36]

SHANNON, C. E. A mathematical theory of communication. SIGMOBILE Mob. Comput. Commun. Rev. 5, 1 (2001), 3--55.

Digital Library

[37]

SWEENEY, L. k-anonymity: a model for protecting privacy. Int. J. Uncertain. Fuzziness Knowl.-Based Syst. 10, 5 (2002), 557--570.

Digital Library

[38]

TUCEK, J., LU, S., HUANG, C., XANTHOS, S., AND ZHOU, Y. Triage: diagnosing production run failures at the user's site. In SOSP (Nov. 2007).

Digital Library

[39]

ZELLER, A., AND HILDEBRANDT, R. Simplifying and isolating failure-inducing input. IEEE Trans. Software Eng. 28, 2 (2002), 183--200.

Digital Library

Cited By

Masserini EGinelli DMicucci DBriola DMariani LSaadatmand MLonetti FBudnik CLi JGuerriero A(2024)Anonymizing Test Data in Android: Does It Hurt?Proceedings of the 5th ACM/IEEE International Conference on Automation of Software Test (AST 2024)10.1145/3644032.3644463(88-98)Online publication date: 15-Apr-2024
https://dl.acm.org/doi/10.1145/3644032.3644463
Köhl MDubslaff CHermanns H(2024)Configuration Monitor SynthesisAutomated Technology for Verification and Analysis10.1007/978-3-031-78750-8_1(3-27)Online publication date: 21-Oct-2024
https://dl.acm.org/doi/10.1007/978-3-031-78750-8_1
Saieva AKaiser G(2022)Update with careJournal of Systems and Software10.1016/j.jss.2022.111381191:COnline publication date: 1-Sep-2022
https://dl.acm.org/doi/10.1016/j.jss.2022.111381
Show More Cited By

Index Terms

Better bug reporting with better privacy

Recommendations

Better bug reporting with better privacy
ASPLOS '08

Software vendors collect bug reports from customers to improve the quality of their software. These reports should include the inputs that make the software fail, to enable vendors to reproduce the bug. However, vendors rarely include these inputs in ...
Better bug reporting with better privacy
ASPLOS '08

Software vendors collect bug reports from customers to improve the quality of their software. These reports should include the inputs that make the software fail, to enable vendors to reproduce the bug. However, vendors rarely include these inputs in ...
Better bug reporting with better privacy
ASPLOS '08

Software vendors collect bug reports from customers to improve the quality of their software. These reports should include the inputs that make the software fail, to enable vendors to reproduce the bug. However, vendors rarely include these inputs in ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

ASPLOS XIII: Proceedings of the 13th international conference on Architectural support for programming languages and operating systems

March 2008

352 pages

ISBN:9781595939586

DOI:10.1145/1346281

General Chair:
Susan Eggers
University of Washington, USA
,
Program Chair:
James Larus
Microsoft Research, USA

ACM SIGPLAN Notices Volume 43, Issue 3
ASPLOS '08
March 2008
339 pages
ISSN:0362-1340
EISSN:1558-1160
DOI:10.1145/1353536
Issue’s Table of Contents
ACM SIGARCH Computer Architecture News Volume 36, Issue 1
ASPLOS '08
March 2008
339 pages
ISSN:0163-5964
DOI:10.1145/1353534
Issue’s Table of Contents
ACM SIGOPS Operating Systems Review Volume 42, Issue 2
ASPLOS '08
March 2008
339 pages
ISSN:0163-5980
DOI:10.1145/1353535
Issue’s Table of Contents

Copyright © 2008 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 01 March 2008

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

ASPLOS08

Sponsor:

ASPLOS08: Architectural Support for Programming Languages and Operating Systems

March 1 - 5, 2008

WA, Seattle, USA

Acceptance Rates

ASPLOS XIII Paper Acceptance Rate 31 of 127 submissions, 24%;

Overall Acceptance Rate 535 of 2,713 submissions, 20%

Upcoming Conference

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

104
Total Citations
View Citations
1,362
Total Downloads

Downloads (Last 12 months)21
Downloads (Last 6 weeks)5

Reflects downloads up to 05 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

Masserini EGinelli DMicucci DBriola DMariani LSaadatmand MLonetti FBudnik CLi JGuerriero A(2024)Anonymizing Test Data in Android: Does It Hurt?Proceedings of the 5th ACM/IEEE International Conference on Automation of Software Test (AST 2024)10.1145/3644032.3644463(88-98)Online publication date: 15-Apr-2024
https://dl.acm.org/doi/10.1145/3644032.3644463
Köhl MDubslaff CHermanns H(2024)Configuration Monitor SynthesisAutomated Technology for Verification and Analysis10.1007/978-3-031-78750-8_1(3-27)Online publication date: 21-Oct-2024
https://dl.acm.org/doi/10.1007/978-3-031-78750-8_1
Saieva AKaiser G(2022)Update with careJournal of Systems and Software10.1016/j.jss.2022.111381191:COnline publication date: 1-Sep-2022
https://dl.acm.org/doi/10.1016/j.jss.2022.111381
Wang HSu WMu YZhao C(2021)Correlation Between Microbial Diversity and Volatile Flavor Compounds of Suan zuo rou, a Fermented Meat Product From Guizhou, ChinaFrontiers in Microbiology10.3389/fmicb.2021.73652512Online publication date: 20-Oct-2021
https://doi.org/10.3389/fmicb.2021.736525
Satvat KShirvanian MHosseini MSaxena NRoussev VThuraisingham BCarminati BKantarcioglu M(2020)CREPEProceedings of the Tenth ACM Conference on Data and Application Security and Privacy10.1145/3374664.3375738(295-306)Online publication date: 16-Mar-2020
https://dl.acm.org/doi/10.1145/3374664.3375738
Ghosh SDey SDasgupta P(2020)Pattern Guided Integrated Scheduling and Routing in Multi-Hop Control NetworksACM Transactions on Embedded Computing Systems10.1145/337213419:2(1-28)Online publication date: 10-Feb-2020
https://dl.acm.org/doi/10.1145/3372134
Latif SHao YZhang HBassily RRountev A(2020)Introducing Differential Privacy Mechanisms for Mobile App Analytics of Dynamic Content2020 IEEE International Conference on Software Maintenance and Evolution (ICSME)10.1109/ICSME46990.2020.00034(267-277)Online publication date: Sep-2020
https://doi.org/10.1109/ICSME46990.2020.00034
Vashist AKeats ADinakarrao SGanguly A(2019)Unified Testing and Security Framework for Wireless Network-on-Chip Enabled Multi-Core ChipsACM Transactions on Embedded Computing Systems10.1145/335821218:5s(1-20)Online publication date: 8-Oct-2019
https://dl.acm.org/doi/10.1145/3358212
Lee DDas SDoppa JPande PChakrabarty K(2019)Impact of Electrostatic Coupling on Monolithic 3D-enabled Network on ChipACM Transactions on Design Automation of Electronic Systems10.1145/335715824:6(1-22)Online publication date: 17-Sep-2019
https://dl.acm.org/doi/10.1145/3357158
Shen LHong RZhang HTian XWang M(2019)Video Retrieval with Similarity-Preserving Deep Temporal HashingACM Transactions on Multimedia Computing, Communications, and Applications10.1145/335631615:4(1-16)Online publication date: 16-Dec-2019
https://dl.acm.org/doi/10.1145/3356316
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten