{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,8]],"date-time":"2026-05-08T03:36:59Z","timestamp":1778211419511,"version":"3.51.4"},"publisher-location":"New York, NY, USA","reference-count":81,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,7,1]],"date-time":"2024-07-01T00:00:00Z","timestamp":1719792000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"DOI":"10.13039\/100000001","name":"NSF (National Science Foundation)","doi-asserted-by":"publisher","award":["CNS-2247686"],"award-info":[{"award-number":["CNS-2247686"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000185","name":"Defense Advanced Research Projects Agency","doi-asserted-by":"publisher","award":["N6600120C4031"],"award-info":[{"award-number":["N6600120C4031"]}],"id":[{"id":"10.13039\/100000185","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000185","name":"Defense Advanced Research Projects Agency","doi-asserted-by":"publisher","award":["N660012224037"],"award-info":[{"award-number":["N660012224037"]}],"id":[{"id":"10.13039\/100000185","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Amazon Rosearch Awards (ARA)"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,7]]},"DOI":"10.1145\/3634737.3637650","type":"proceedings-article","created":{"date-parts":[[2024,6,28]],"date-time":"2024-06-28T11:51:38Z","timestamp":1719575498000},"page":"1495-1509","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":5,"title":["Fuzzing API Error Handling Behaviors using Coverage Guided Fault Injection"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0005-4149-884X","authenticated-orcid":false,"given":"Shashank","family":"Sharma","sequence":"first","affiliation":[{"name":"Purdue University, West Lafayette, Indiana, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0008-6428-0511","authenticated-orcid":false,"given":"Sai Ritvik","family":"Tanksalkar","sequence":"additional","affiliation":[{"name":"Purdue University, West Lafayette, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0002-7199-1879","authenticated-orcid":false,"given":"Sourag","family":"Cherupattamoolayil","sequence":"additional","affiliation":[{"name":"Purdue University, West Lafayette, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5124-6818","authenticated-orcid":false,"given":"Aravind","family":"Machiry","sequence":"additional","affiliation":[{"name":"Purdue University, West Lafayette, United States of America"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2024,7]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2023. AWS IOT Device SDK: always false condition. https:\/\/github.com\/aws\/aws-iot-device-sdk-embedded-C\/pull\/1861\/commits\/f312ea3eaaec04d09cfbe4fda0daf89e995da454"},{"key":"e_1_3_2_1_2_1","unstructured":"2023. Nvidia open-gpu kernel modules: always false condition. https:\/\/github.com\/NVIDIA\/open-gpu-kernel-modules\/pull\/493\/commits\/527cb9d50c42a3fa91946e67eaa085f8eeb71ce5"},{"key":"e_1_3_2_1_3_1","volume-title":"Proceedings of the the 6th joint meeting of the European software engineering conference and the ACM SIGSOFT symposium on The Foundations of Software Engineering (FSE). 25--34","author":"Acharya Mithun","year":"2007","unstructured":"Mithun Acharya, Tao Xie, Jian Pei, and Jun Xu. 2007. Mining API patterns as partial orders from source code: from usage scenarios to specifications. In Proceedings of the the 6th joint meeting of the European software engineering conference and the ACM SIGSOFT symposium on The Foundations of Software Engineering (FSE). 25--34."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICCKE48569.2019.8964875"},{"key":"e_1_3_2_1_6_1","volume-title":"30th USENIX Security Symposium (USENIX Security 21)","author":"Ahmadi Mansour","year":"2021","unstructured":"Mansour Ahmadi, Reza Mirzazade Farkhani, Ryan Williams, and Long Lu. 2021. Finding bugs using your own code: detecting functionally-similar yet inconsistent code. In 30th USENIX Security Symposium (USENIX Security 21). 2025--2040."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.5555\/3220904.3221145"},{"key":"e_1_3_2_1_8_1","first-page":"1","article-title":"REDQUEEN: Fuzzing with Input-to-State Correspondence","volume":"19","author":"Aschermann Cornelius","year":"2019","unstructured":"Cornelius Aschermann, Sergej Schumilo, Tim Blazytko, Robert Gawlik, and Thorsten Holz. 2019. REDQUEEN: Fuzzing with Input-to-State Correspondence.. In NDSS, Vol. 19. 1--15.","journal-title":"NDSS"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2016.01.018"},{"key":"e_1_3_2_1_10_1","volume-title":"2016 USENIX Annual Technical Conference (USENIX ATC 16)","author":"Bai Jia-Ju","year":"2016","unstructured":"Jia-Ju Bai, Yu-Ping Wang, Jie Yin, and Shi-Min Hu. 2016. Testing error handling code in device drivers using characteristic fault injection. In 2016 USENIX Annual Technical Conference (USENIX ATC 16). 635--647."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1214\/ss\/1177011077"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/1646353.1646374"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/3236024.3236032"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"crossref","first-page":"984","DOI":"10.1109\/TSE.2018.2816639","article-title":"Detecting bugs by discovering expectations and their violations","volume":"45","author":"Bian Pan","year":"2018","unstructured":"Pan Bian, Bin Liang, Yan Zhang, Chaoqun Yang, Wenchang Shi, and Yan Cai. 2018. Detecting bugs by discovering expectations and their violations. IEEE Transactions on Software Engineering 45, 10 (2018), 984--1001.","journal-title":"IEEE Transactions on Software Engineering"},{"key":"e_1_3_2_1_15_1","volume-title":"Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security (CCS). 1032--1043","author":"B\u00f6hme Marcel","year":"2016","unstructured":"Marcel B\u00f6hme, Van-Thuan Pham, and Abhik Roychoudhury. 2016. Coverage-based greybox fuzzing as markov chain. In Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security (CCS). 1032--1043."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/1541880.1541882"},{"key":"e_1_3_2_1_17_1","volume-title":"Proceedings of the 9th ACM conference on Computer and communications security (CCS). 235--244","author":"Chen Hao","year":"2002","unstructured":"Hao Chen and David Wagner. 2002. MOPS: an infrastructure for examining security properties of software. In Proceedings of the 9th ACM conference on Computer and communications security (CCS). 235--244."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00046"},{"key":"e_1_3_2_1_19_1","volume-title":"Proceedings of the 34th ACM SIGPLAN conference on Programming Language Design and Implementation (PLDI). 197--208","author":"Chen Yang","year":"2013","unstructured":"Yang Chen, Alex Groce, Chaoqiang Zhang, Weng-Keen Wong, Xiaoli Fern, Eric Eide, and John Regehr. 2013. Taming compiler fuzzers. In Proceedings of the 34th ACM SIGPLAN conference on Programming Language Design and Implementation (PLDI). 197--208."},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE55969.2022.00035"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/2970276.2970347"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/2771783.2771811"},{"key":"e_1_3_2_1_23_1","volume-title":"Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security (CCS). 2123--2138","author":"Corina Jake","year":"2017","unstructured":"Jake Corina, Aravind Machiry, Christopher Salls, Yan Shoshitaishvili, Shuang Hao, Christopher Kruegel, and Giovanni Vigna. 2017. Difuze: Interface aware fuzzing for kernel drivers. In Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security (CCS). 2123--2138."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/502059.502041"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/24039.24041"},{"key":"e_1_3_2_1_26_1","volume-title":"14th USENIX Workshop on Offensive Technologies (WOOT 20)","author":"Fioraldi Andrea","year":"2020","unstructured":"Andrea Fioraldi, Dominik Maier, Heiko Ei\u00dffeldt, and Marc Heuse. 2020. {AFL++}: Combining Incremental Steps of Fuzzing Research. In 14th USENIX Workshop on Offensive Technologies (WOOT 20)."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/1007512.1007516"},{"key":"e_1_3_2_1_28_1","unstructured":"Jos\u00e9 Angel Galindo David Benavides and Sergio Segura. 2010. Debian Packages Repositories as Software Product Line Models. Towards Automated Analysis.. In ACoTA. 29--34."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00040"},{"key":"e_1_3_2_1_30_1","unstructured":"GitHub. 2017. Discover vulnerabilities across a codebase with CodeQL. https:\/\/securitylab.github.com\/tools\/codeql."},{"key":"e_1_3_2_1_31_1","unstructured":"GitHub. 2017. Semmle - A code analysis platform for finding zero-days and automating variant analysis. https:\/\/semmle.com\/."},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/3363824"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/1375581.1375607"},{"key":"e_1_3_2_1_34_1","volume-title":"Honggfuzz: A security oriented, feedback-driven, evolutionary, easy-to-use fuzzer. https:\/\/github.com\/google\/honggfuzz.","year":"2022","unstructured":"Google. 2022. Honggfuzz: A security oriented, feedback-driven, evolutionary, easy-to-use fuzzer. https:\/\/github.com\/google\/honggfuzz."},{"key":"e_1_3_2_1_35_1","volume-title":"2019 41st International Conference on Software Engineering: Companion Proceedings (ICSE-Companion). IEEE, 91--94","author":"Gu Zuxing","year":"2019","unstructured":"Zuxing Gu, Jiecheng Wu, Chi Li, Min Zhou, Yu Jiang, Ming Gu, and Jiaguang Sun. 2019. Vetting api usages in c programs with imchecker. In 2019 41st International Conference on Software Engineering: Companion Proceedings (ICSE-Companion). IEEE, 91--94."},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1109\/COMPSAC.2019.00012"},{"key":"e_1_3_2_1_37_1","unstructured":"Red Hat. 2010. Advanced Package Tool. http:\/\/apt-rpm.org\/scripting.shtml."},{"key":"e_1_3_2_1_38_1","volume-title":"29th USENIX Security Symposium (USENIX Security 20)","author":"Jiang Zu-Ming","year":"2020","unstructured":"Zu-Ming Jiang, Jia-Ju Bai, Kangjie Lu, and Shi-Min Hu. 2020. Fuzzing Error Handling Code using Context-Sensitive Software Fault Injection. In 29th USENIX Security Symposium (USENIX Security 20). 2595--2612."},{"key":"e_1_3_2_1_39_1","volume-title":"Proceedings of the Joint Meeting on Foundations of Software Engineering (FSE).","author":"Kang Yuan","year":"2016","unstructured":"Yuan Kang, Baishakhi Ray, and Suman Jana. 2016. APEx: Automated inference of error specifications for C APIs. In Proceedings of the Joint Meeting on Foundations of Software Engineering (FSE)."},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1109\/ISSREW.2014.104"},{"key":"e_1_3_2_1_41_1","volume-title":"Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security (CCS). 2123--2138","author":"Klees George","year":"2018","unstructured":"George Klees, Andrew Ruef, Benji Cooper, Shiyi Wei, and Michael Hicks. 2018. Evaluating fuzz testing. In Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security (CCS). 2123--2138."},{"key":"e_1_3_2_1_42_1","volume-title":"Proceedings of the 7th symposium on Operating systems design and implementation. 161--176","author":"Kremenek Ted","year":"2006","unstructured":"Ted Kremenek, Paul Twohey, Godmar Back, Andrew Ng, and Dawson Engler. 2006. From uncertainty to belief: Inferring the specification within. In Proceedings of the 7th symposium on Operating systems design and implementation. 161--176."},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1145\/3238147.3238176"},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00090"},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1145\/1095430.1081755"},{"key":"e_1_3_2_1_46_1","volume-title":"Vuldeepecker: A deep learning-based system for vulnerability detection. arXiv preprint arXiv:1801.01681","author":"Li Zhen","year":"2018","unstructured":"Zhen Li, Deqing Zou, Shouhuai Xu, Xinyu Ou, Hai Jin, Sujuan Wang, Zhijun Deng, and Yuyi Zhong. 2018. Vuldeepecker: A deep learning-based system for vulnerability detection. arXiv preprint arXiv:1801.01681 (2018)."},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1145\/1543135.1542485"},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1145\/1095430.1081754"},{"key":"e_1_3_2_1_49_1","volume-title":"Computer Security - ESORICS","author":"Lu Kangjie","year":"2019","unstructured":"Kangjie Lu, Aditya Pakki, and Qiushi Wu. 2019. Automatically Identifying Security Checks for Detecting Kernel Semantic Bugs. In Computer Security - ESORICS 2019, Kazue Sako, Steve Schneider, and Peter Y. A. Ryan (Eds.). Springer International Publishing, Cham, 3--25."},{"key":"e_1_3_2_1_50_1","volume-title":"28th USENIX Security Symposium (USENIX Security 19)","author":"Lyu Chenyang","year":"2019","unstructured":"Chenyang Lyu, Shouling Ji, Chao Zhang, Yuwei Li, Wei-Han Lee, Yu Song, and Raheem Beyah. 2019. {MOPT}: Optimized mutation scheduling for fuzzers. In 28th USENIX Security Symposium (USENIX Security 19). 1949--1966."},{"key":"e_1_3_2_1_51_1","volume-title":"2020 IEEE Symposium on Security and Privacy (SP). IEEE, 1562--1579","author":"Machiry Aravind","year":"2020","unstructured":"Aravind Machiry, Nilo Redini, Eric Camellini, Christopher Kruegel, and Giovanni Vigna. 2020. Spider: Enabling fast patch propagation in related software repositories. In 2020 IEEE Symposium on Security and Privacy (SP). IEEE, 1562--1579."},{"key":"e_1_3_2_1_52_1","volume-title":"2009 IEEE\/IFIP International Conference on Dependable Systems & Networks (DSN). 379--388","author":"Paul","unstructured":"Paul D. Marinescu and George Candea. 2009. LFI: A practical and general librarylevel fault injector. In 2009 IEEE\/IFIP International Conference on Dependable Systems & Networks (DSN). 379--388."},{"key":"e_1_3_2_1_53_1","volume-title":"2009 IEEE\/IFIP International Conference on Dependable Systems & Networks (DSN). 379--388","author":"Paul","unstructured":"Paul D. Marinescu and George Candea. 2009. LFI: A practical and general librarylevel fault injector. In 2009 IEEE\/IFIP International Conference on Dependable Systems & Networks (DSN). 379--388."},{"key":"e_1_3_2_1_54_1","unstructured":"MaskRay. 2022. Challenges in Building glibc with clang. https:\/\/maskray.me\/blog\/2021-09-05-build-glibc-with-lld."},{"key":"e_1_3_2_1_55_1","volume-title":"2010 IEEE\/IFIP International Conference on Dependable Systems & Networks (DSN). 437--446","author":"Natella Roberto","year":"2010","unstructured":"Roberto Natella, Domenico Cotroneo, Joao Duraes, and Henrique Madeira. 2010. Representativeness analysis of injected software faults in complex software. In 2010 IEEE\/IFIP International Conference on Dependable Systems & Networks (DSN). 437--446."},{"key":"e_1_3_2_1_56_1","doi-asserted-by":"publisher","DOI":"10.1145\/2841425"},{"key":"e_1_3_2_1_57_1","doi-asserted-by":"publisher","DOI":"10.1145\/2635868.2635924"},{"key":"e_1_3_2_1_58_1","volume-title":"Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security (CCS). 1203--1218","author":"Pakki Aditya","year":"2020","unstructured":"Aditya Pakki and Kangjie Lu. 2020. Exaggerated Error Handling Hurts! An In-Depth Study and Context-Aware Detection. In Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security (CCS). 1203--1218."},{"key":"e_1_3_2_1_59_1","volume-title":"Yves Le Traon, and Mark Harman","author":"Papadakis Mike","year":"2019","unstructured":"Mike Papadakis, Marinos Kintis, Jie Zhang, Yue Jia, Yves Le Traon, and Mark Harman. 2019. Mutation testing advances: an analysis and survey. In Advances in Computers. Vol. 112. Elsevier, 275--378."},{"key":"e_1_3_2_1_60_1","doi-asserted-by":"publisher","DOI":"10.1109\/TKDE.2006.172"},{"key":"e_1_3_2_1_61_1","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813604"},{"key":"e_1_3_2_1_62_1","first-page":"1980","article-title":"Smart greybox fuzzing","volume":"47","author":"Pham Van-Thuan","year":"2019","unstructured":"Van-Thuan Pham, Marcel B\u00f6hme, Andrew E Santosa, Alexandru R\u0103zvan C\u0103ciulescu, and Abhik Roychoudhury. 2019. Smart greybox fuzzing. IEEE Transactions on Software Engineering 47, 9 (2019), 1980--1997.","journal-title":"IEEE Transactions on Software Engineering"},{"key":"e_1_3_2_1_63_1","first-page":"1","article-title":"VUzzer: Application-aware Evolutionary Fuzzing","volume":"17","author":"Rawat Sanjay","year":"2017","unstructured":"Sanjay Rawat, Vivek Jain, Ashish Kumar, Lucian Cojocar, Cristiano Giuffrida, and Herbert Bos. 2017. VUzzer: Application-aware Evolutionary Fuzzing.. In NDSS, Vol. 17. 1--14.","journal-title":"NDSS"},{"key":"e_1_3_2_1_64_1","unstructured":"John Regehr. 2013. Use of Goto in Systems Code. https:\/\/blog.regehr.org\/archives\/894"},{"key":"e_1_3_2_1_65_1","volume-title":"FTCS-23 The Twenty-Third International Symposium on Fault-Tolerant Computing. IEEE, 208--217","author":"Rosenberg Harold A","year":"1993","unstructured":"Harold A Rosenberg and Kang G Shin. 1993. Software fault injection and its application in distributed systems. In FTCS-23 The Twenty-Third International Symposium on Fault-Tolerant Computing. IEEE, 208--217."},{"key":"e_1_3_2_1_66_1","volume-title":"2020 IEEE Conference on Communications and Network Security (CNS). IEEE, 1--9.","author":"Salls Christopher","year":"2020","unstructured":"Christopher Salls, Aravind Machiry, Adam Doupe, Yan Shoshitaishvili, Christopher Kruegel, and Giovanni Vigna. 2020. Exploring abstraction functions in fuzzing. In 2020 IEEE Conference on Communications and Network Security (CNS). IEEE, 1--9."},{"key":"e_1_3_2_1_67_1","first-page":"1","article-title":"Driller: Augmenting fuzzing through selective symbolic execution","volume":"16","author":"Stephens Nick","year":"2016","unstructured":"Nick Stephens, John Grosen, Christopher Salls, Andrew Dutcher, Ruoyu Wang, Jacopo Corbetta, Yan Shoshitaishvili, Christopher Kruegel, and Giovanni Vigna. 2016. Driller: Augmenting fuzzing through selective symbolic execution.. In NDSS, Vol. 16. 1--16.","journal-title":"NDSS"},{"key":"e_1_3_2_1_68_1","volume-title":"Advanced C and C++ Compiling","author":"Stevanovic Milan","unstructured":"Milan Stevanovic. 2014. Locating the Libraries. In Advanced C and C++ Compiling. Springer, 115--135."},{"key":"e_1_3_2_1_69_1","doi-asserted-by":"publisher","DOI":"10.1145\/2892208.2892235"},{"key":"e_1_3_2_1_70_1","volume-title":"Proceedings of the Joint Meeting on Foundations of Software Engineering (FSE).","author":"Tian Yuchi","year":"2017","unstructured":"Yuchi Tian and Baishakhi Ray. 2017. Automatically diagnosing and repairing error handling bugs in C. In Proceedings of the Joint Meeting on Foundations of Software Engineering (FSE)."},{"key":"e_1_3_2_1_71_1","unstructured":"travitch. 2015. Whole Program LLVM. https:\/\/github.com\/travitch\/whole-program-llvm."},{"key":"e_1_3_2_1_72_1","volume-title":"Efficient Algorithms for Discovering Association Rules. In KDD Workshop.","author":"Verkamo A Inkeri","year":"1994","unstructured":"A Inkeri Verkamo. 1994. Efficient Algorithms for Discovering Association Rules. In KDD Workshop."},{"key":"e_1_3_2_1_73_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.23"},{"key":"e_1_3_2_1_74_1","volume-title":"2015 IEEE Symposium on Security and Privacy (SP). IEEE, 797--812","author":"Yamaguchi Fabian","year":"2015","unstructured":"Fabian Yamaguchi, Alwin Maier, Hugo Gascon, and Konrad Rieck. 2015. Automatic inference of search patterns for taint-style vulnerabilities. In 2015 IEEE Symposium on Security and Privacy (SP). IEEE, 797--812."},{"key":"e_1_3_2_1_75_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516665"},{"key":"e_1_3_2_1_76_1","doi-asserted-by":"publisher","DOI":"10.1145\/1993498.1993532"},{"key":"e_1_3_2_1_77_1","volume-title":"27th USENIX Security Symposium (USENIX Security 18)","author":"Yun Insu","year":"2018","unstructured":"Insu Yun, Sangho Lee, Meng Xu, Yeongjin Jang, and Taesoo Kim. 2018. {QSYM}: A practical concolic execution engine tailored for hybrid fuzzing. In 27th USENIX Security Symposium (USENIX Security 18). 745--761."},{"key":"e_1_3_2_1_78_1","volume-title":"25th USENIX Security Symposium (USENIX Security 16)","author":"Yun Insu","year":"2016","unstructured":"Insu Yun, Changwoo Min, Xujie Si, Yeongjin Jang, Taesoo Kim, and Mayur Naik. 2016. APISan: Sanitizing {API} Usages through Semantic Cross-Checking. In 25th USENIX Security Symposium (USENIX Security 16). 363--378."},{"key":"e_1_3_2_1_79_1","unstructured":"Michal Zalewski. 2018. AFL Technical Details. https:\/\/lcamtuf.coredump.cx\/afl\/technical_details.txt"},{"key":"e_1_3_2_1_80_1","volume-title":"2012 34th International Conference on Software Engineering (ICSE). IEEE, 595--605","author":"Zhang Pingyu","year":"2012","unstructured":"Pingyu Zhang and Sebastian Elbaum. 2012. Amplifying tests to validate exception handling code. In 2012 34th International Conference on Software Engineering (ICSE). IEEE, 595--605."},{"key":"e_1_3_2_1_81_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2014.02.008"},{"key":"e_1_3_2_1_82_1","doi-asserted-by":"publisher","DOI":"10.1145\/3512345"}],"event":{"name":"ASIA CCS '24: 19th ACM Asia Conference on Computer and Communications Security","location":"Singapore Singapore","acronym":"ASIA CCS '24","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 19th ACM Asia Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3634737.3637650","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T23:44:06Z","timestamp":1750290246000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3634737.3637650"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,7]]},"references-count":81,"alternative-id":["10.1145\/3634737.3637650","10.1145\/3634737"],"URL":"https:\/\/doi.org\/10.1145\/3634737.3637650","relation":{},"subject":[],"published":{"date-parts":[[2024,7]]},"assertion":[{"value":"2024-07-01","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}