Write a Blog >>
ASE 2020
Mon 21 - Fri 25 September 2020 Melbourne, Australia
ASE 2020 (series) /

PlenaryASE 2020

No information available yet.

Dates
You're viewing the program in a time zone which is different from your device's time zone -

Tue 22 Sep
Times are displayed in time zone: (UTC) Coordinated Universal Time

00:00 - 01:00: Opening CeremonyPlenary at Kangaroo
00:00 - 01:00
Day opening		ASE2020 Opening & Awards
Plenary
John GrundyMonash University, David LoSingapore Management University, Claire Le GouesCarnegie Mellon University
01:10 - 02:10: Keynote - Mahesh KrishnanPlenary at Kangaroo
Chair(s): Claire Le GouesCarnegie Mellon University
01:10 - 02:10
Keynote		Evolution in the automation of CI/CD
Plenary
Mahesh Krishnan

Wed 23 Sep
Times are displayed in time zone: (UTC) Coordinated Universal Time

08:00 - 09:00: Keynote - Marta KwiatkowskaPlenary at Kangaroo
Chair(s): John GrundyMonash University, Australia
08:00 - 09:00
Keynote		Safety and Robustness for Deep Learning with Provable Guarantees
Plenary
Marta KwiatkowskaUniversity of Oxford

Thu 24 Sep
Times are displayed in time zone: (UTC) Coordinated Universal Time

00:00 - 01:00: Keynote - Gail C. MurphyPlenary at Kangaroo
Chair(s): David LoSingapore Management University
00:00 - 01:00
Keynote		Is Software Engineering Research Addressing Software Engineering Problems?
Plenary
Gail MurphyUniversity of British Columbia
17:10 - 18:40: Most Influential Paper & ClosingPlenary at Kangaroo
Chair(s): Elisabetta Di NittoPolitecnico di Milano
17:10 - 18:10
Talk		AMNESIA: Analysis and Monitoring for NEutralizing SQL-Injection Attacks
Plenary
William G.J. HalfondUniversity of Southern California, Alessandro OrsoGeorgia Tech
18:10 - 18:40
Day closing		ASE2020 Closing & ASE2021
Plenary

Accepted Papers

Title
AMNESIA: Analysis and Monitoring for NEutralizing SQL-Injection Attacks
Plenary
William G.J. Halfond, Alessandro Orso
ASE2020 Closing & ASE2021
Plenary
ASE2020 Opening & Awards
Plenary
John Grundy, David Lo, Claire Le Goues
Evolution in the automation of CI/CD
Plenary
Mahesh Krishnan
Is Software Engineering Research Addressing Software Engineering Problems?
Plenary
Gail Murphy
Safety and Robustness for Deep Learning with Provable Guarantees
Plenary
Marta Kwiatkowska

ASE2020 Opening & Awards Plenary

Session: Opening Ceremony Tue 22 Sep 2020 00:00 - 01:00

John Grundy
John Grundy
Monash University
Australia
David Lo
David Lo
Singapore Management University
Singapore
Claire Le Goues
Claire Le Goues
Carnegie Mellon University
United States
All Details Close

Evolution in the automation of CI/CD Plenary

Session: Keynote - Mahesh Krishnan Tue 22 Sep 2020 01:10 - 02:10 Chair(s): Claire Le GouesCarnegie Mellon University

There was a time when developers wrote a document containing the steps needed to install new software and handed it over to the Operations folk to deploy. We’ve come a long way from those days as we’ve moved away from infrequent, manual deployment to frequent, high quality, automated deployments. This talk covers the evolution of automation in Continuous Integration and Continuous Deployment, the problems we have solved and the new kind of challenges we face, as we move from on-prem installations to the cloud.

micro-avatar
Mahesh Krishnan
All Details Close

Safety and Robustness for Deep Learning with Provable Guarantees Plenary

Session: Keynote - Marta Kwiatkowska Wed 23 Sep 2020 08:00 - 09:00 Chair(s): John GrundyMonash University, Australia

Computing systems are becoming ever more complex, with decisions increasingly often based on deep learning components. A wide variety of applications are being developed, many of them safety-critical, such as self-driving cars and medical diagnosis. Since deep learning is unstable with respect to adversarial perturbations, there is a need for rigorous software development methodologies that encompass machine learning components. This lecture will describe progress with developing automated verification and testing techniques for deep neural networks to ensure safety and robustness of their decisions with respect to input perturbations. The techniques exploit Lipschitz continuity of the networks and aim to approximate, for a given set of inputs, the reachable set of network outputs in terms of lower and upper bounds, in anytime manner, with provable guarantees. We develop novel algorithms based on feature-guided search, games, global optimisation and Bayesian methods, and evaluate them on state-of-the-art networks. The lecture will conclude with an overview of the challenges in this field.

micro-avatar
Marta Kwiatkowska
University of Oxford
All Details Close

Is Software Engineering Research Addressing Software Engineering Problems? Plenary

Session: Keynote - Gail C. Murphy Thu 24 Sep 2020 00:00 - 01:00 Chair(s): David LoSingapore Management University

Brian Randell described software engineering as “the multi-person development of multi-version programs”. David Parnas has expressed that this “pithy phrase implies everything that differentiates software engineering from other programming”. How does current software engineering research compare against this definition? Is there currently too much focus on research into problems and techniques more associated with programming than software engineering? Are there opportunities to use Randell’s description of software engineering to guide the community to new research directions? In this talk, I will explore these questions and discuss how a consideration of the development streams used by multiple individuals to produce multiple versions of software opens up new avenues for impactful software engineering research.

Gail Murphy
Gail Murphy
University of British Columbia
Canada
All Details Close

AMNESIA: Analysis and Monitoring for NEutralizing SQL-Injection Attacks Plenary

Session: Most Influential Paper & Closing Thu 24 Sep 2020 17:10 - 18:40 Chair(s): Elisabetta Di NittoPolitecnico di Milano

The use of web applications has become increasingly popular in our routine activities, such as reading the news, paying bills, and shopping on-line. As the availability of these services grows, we are witnessing an increase in the number and sophistication of at- tacks that target them. In particular, SQL injection, a class of code- injection attacks in which specially crafted input strings result in illegal queries to a database, has become one of the most serious threats to web applications. In this paper we present and evalu- ate a new technique for detecting and preventing SQL injection at- tacks. Our technique uses a model-based approach to detect illegal queries before they are executed on the database. In its static part, the technique uses program analysis to automatically build a model of the legitimate queries that could be generated by the applica- tion. In its dynamic part, the technique uses runtime monitoring to inspect the dynamically-generated queries and check them against the statically-built model. We developed a tool, AMNESIA, that implements our technique and used the tool to evaluate the tech- nique on seven web applications. In the evaluation we targeted the subject applications with a large number of both legitimate and malicious inputs and measured how many attacks our technique de- tected and prevented. The results of the study show that our tech- nique was able to stop all of the attempted attacks without generat- ing any false positives.

William G.J. Halfond
William G.J. Halfond
University of Southern California
United States
Alessandro Orso
Alessandro Orso
Georgia Tech
United States
All Details Close

ASE2020 Closing & ASE2021 Plenary

Session: Most Influential Paper & Closing Thu 24 Sep 2020 17:10 - 18:40 Chair(s): Elisabetta Di NittoPolitecnico di Milano

All Details Close