@inproceedings{5446e1db39ce415ca21ffbfb455876d4,
title = "Automatic Defense through Fault Localization and Dynamic Patch Creation",
abstract = "The US Department of Defense has called for contest on automatic attack and defense. The contest is a competition, called Cyber Grand Challenge (CGC), aimed at developing cyber security systems. In accordance with the competition rules, we developed an automatic cyber reasoning system (CRS) that meets the objectives specified in the CGC. Our CRS combines the techniques of fuzz testing, fault localization, and binary patch creation to construct an automatic defense system. From the sample problems in the CGC, we evaluate our system and the binary patch capability by applying them to real programs. We explore two patching methods in five challenges in CGC with partial successes in availability and security.",
keywords = "Cyber Grand Challenge (CGC), binary patch, cyber reasoning system (CRS), fault localization, fuzz testing",
author = "Chen, {Hsia Hsiang} and Zheng, {Da Qun} and Shih-Kun Huang",
year = "2016",
month = sep,
day = "21",
doi = "10.1109/QRS-C.2016.65",
language = "English",
series = "Proceedings - 2016 IEEE International Conference on Software Quality, Reliability and Security-Companion, QRS-C 2016",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "408--409",
booktitle = "Proceedings - 2016 IEEE International Conference on Software Quality, Reliability and Security-Companion, QRS-C 2016",
address = "United States",
note = "2nd IEEE International Conference on Software Quality, Reliability and Security-Companion, QRS-C 2016 ; Conference date: 01-08-2016 Through 03-08-2016",
}