Publications

Back-Propagating System Dependency Impact for Attack Investigation.

Pengcheng Fang*, Peng Gao* (* equal contribution), Changlin Liu, Erman Ayday, Kangkook Jee, Ting Wang, Yanfang (Fanny) Ye, Zhuotao Liu, Xusheng Xiao
In Preceedings of the 31th USENIX Security Symposium (USENIX Security 2022), Boston, Aug 2022

A system that identifies the critical component of a dependency graph (i.e., a subgraph) built from system audit logs by properly assigning weights to edges and performing causality analysis.

DEPCOMM: Graph Summarization on System Audit Logs for Attack Investigation.

Zhiqiang Xu, Pengcheng Fang, Changlin Liu, Xusheng Xiao, Yu Wen, Dan Meng
In Preceedings of the 43th IEEE Symposium on Security and Privacy (IEEE S&P 2022), San Diego, May 2022

A graph summarization approach that generates a summary graph from a dependency graph by partitioning a large graph into process-centric communities and presenting summaries for each community.

Download here

Root Cause Localization for Unreproducible Builds via Causality Analysis Over System Call Tracing.

Zhilei Ren, Changlin Liu, Xusheng Xiao, He Jiang, Tao Xie
In Preceedings of the 34th IEEE/ACM International Conference on Automated Software Engineering (ASE 2019), San Diego, Nov 2019

A framework that leverages the uniform interfaces of system call tracing for monitoring executed build commands in diverse build environments and identifies the root causes for unreproducible builds by analyzing the system call traces of the executed build commands.

Download here