Blogs (1) >>
ASE 2019
Sun 10 - Fri 15 November 2019 San Diego, California, United States
ASE 2019 (series) / EXPLAIN 2019 (series) / EXPLAIN 2019 /

Explaining Static Analysis - A Perspective

Marcus Nachtigall, Lisa Nguyen Quang Do, Eric Bodden
EXPLAIN 2019
Fri 15 Nov 2019 11:00 - 11:30 at Cortez 1B - Explainability and Code Chair(s): Ilias Gerostathopoulos

Static code analysis is widely used to support the development of secure software. It helps developers detect potential bugs and security vulnerabilities in a program’s source code without executing it. While the potential benefits of static analysis tools are beyond question, their usability is often criticised and prevents software developers from using static analysis to its full potential. In the past decade, researchers have studied developer needs and opposed them to available static analysis tool functionalities. In this paper, we summarize the main design challenges for building usable static analysis tools, and show that they revolve around the notion of explainability. We present existing analysis tools and current research in static analysis usability, and detail how they approach those challenges. This leads us to proposing potential lines of future work in explainability for static analysis, namely turning static analysis tools into assistants and teachers.

small-avatar
Marcus Nachtigall
Germany
Lisa Nguyen Quang Do
Lisa Nguyen Quang Do
Google
Switzerland
Eric Bodden
Eric Bodden
Heinz Nixdorf Institut, Paderborn University and Fraunhofer IEM

Fri 15 Nov

explain-2019-papers
11:00 - 12:30: EXPLAIN 2019 - Explainability and Code at Cortez 1B
Chair(s): Ilias GerostathopoulosTechnical University of Munich
explain-2019-papers11:00 - 11:30
Talk		Explaining Static Analysis - A Perspective
Marcus Nachtigall, Lisa Nguyen Quang DoGoogle, Eric BoddenHeinz Nixdorf Institut, Paderborn University and Fraunhofer IEM
explain-2019-papers11:30 - 12:00
Talk		A Hybrid Editor for Fast Robot Mission Prototyping
Thomas WitteUlm University, Matthias TichyUlm University, Germany
explain-2019-papers12:00 - 12:30
Talk		Explaining Business Process Software with Fulib-Scenarios
Albert ZündorfKassel University, Sebastian CopeiKassel University, Ira DiethelmCarl von Ossietzky Universität Oldenburg / University of Oldenburg, Claude DraudeKassel University, Adrian KunzKassel University, Ulrich NorbisrathUniversity of Applied Sciences Upper Austria

Explaining Static Analysis - A Perspective EXPLAIN 2019

Session: Explainability and Code Chair(s): Ilias GerostathopoulosTechnical University of Munich

Static code analysis is widely used to support the development of secure software. It helps developers detect potential bugs and security vulnerabilities in a program’s source code without executing it. While the potential benefits of static analysis tools are beyond question, their usability is often criticised and prevents software developers from using static analysis to its full potential. In the past decade, researchers have studied developer needs and opposed them to available static analysis tool functionalities. In this paper, we summarize the main design challenges for building usable static analysis tools, and show that they revolve around the notion of explainability. We present existing analysis tools and current research in static analysis usability, and detail how they approach those challenges. This leads us to proposing potential lines of future work in explainability for static analysis, namely turning static analysis tools into assistants and teachers.

small-avatar
Marcus Nachtigall
Germany
Lisa Nguyen Quang Do
Lisa Nguyen Quang Do
Google
Switzerland
Eric Bodden
Eric Bodden
Heinz Nixdorf Institut, Paderborn University and Fraunhofer IEM
All Details Close

A Hybrid Editor for Fast Robot Mission Prototyping EXPLAIN 2019

Session: Explainability and Code Chair(s): Ilias GerostathopoulosTechnical University of Munich

We present an editor that creates an interactive live preview for simple quadcopter missions. The preview provides instant feedback and the imperative script can be adapted through direct manipulation of the visualization. While the program is executed to draw the preview, it traces the source locations of all values. If a value is changed in the visualization, the change can be traced back to the source to produce the desired result. An application prototype demonstrates that our approach produces sensible and generalizing results even in the presence of control flow structures in our DSL.

small-avatar
Thomas Witte
Ulm University
Germany
Matthias Tichy
Matthias Tichy
Ulm University, Germany
All Details Close

Explaining Business Process Software with Fulib-Scenarios EXPLAIN 2019

Session: Explainability and Code Chair(s): Ilias GerostathopoulosTechnical University of Munich

This paper proposes Fulib-Scenarios as means to explain data modelling, GUI Mockups, and simple algorithms to non-IT people.

small-avatar
Albert Zündorf
Kassel University
small-avatar
Sebastian Copei
Kassel University
small-avatar
Ira Diethelm
Carl von Ossietzky Universität Oldenburg / University of Oldenburg
small-avatar
Claude Draude
Kassel University
Germany
small-avatar
Adrian Kunz
Kassel University
Germany
small-avatar
Ulrich Norbisrath
University of Applied Sciences Upper Austria
Austria
All Details Close