Benzene: A Practical Root Cause Analysis System with an Under-Constrained State Mutation

Younggi Park; Hwiwon Lee; Jinho Jung; Hyungjoon Koo; Huy Kang Kim

doi:10.1109/SP54263.2024.00074

Benzene: A Practical Root Cause Analysis System with an Under-Constrained State Mutation

Younggi Park
, Hwiwon Lee
, Jinho Jung
, Hyungjoon Koo^*
, Huy Kang Kim

^*Corresponding author for this work

School of Cybersecurity

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

7 Citations (Scopus)

Abstract

Fuzzing has demonstrated great success in bug discovery, and plays a crucial role in software testing today. Despite the increasing popularity of fuzzing, automated root cause analysis (RCA) has drawn less attention. One of the recent advances in RCA is crash-based statistical debugging, which leverages the behavioral differences in program execution between crash-triggered and non-crashing inputs. Hence, obtaining non-crashing behaviors close to the original crash is crucial but challenging with previous approaches (e.g., fuzzing). In this paper, we present Benzene, a practical end-to-end RCA system that facilitates an automated crash diagnosis. To this end, we introduce a novel technique, called under-constrained state mutation, that generates both crashing and non-crashing behaviors for effective and efficient RCA. We design and implement the Benzene prototype, and evaluate it with 60 vulnerabilities in the wild. Our empirical results demonstrate that Benzene not only surpasses in performance (i.e., root cause ranking), but also achieves superior results in both speed (4.6 times faster) and memory footprint (31.4 times less) on average than prior approaches.

Original language	English
Title of host publication	Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	1865-1883
Number of pages	19
ISBN (Electronic)	9798350331301
DOIs	https://doi.org/10.1109/SP54263.2024.00074
Publication status	Published - 2024
Event	45th IEEE Symposium on Security and Privacy, SP 2024 - San Francisco, United States Duration: 2024 May 20 → 2024 May 23

Publication series

Name	Proceedings - IEEE Symposium on Security and Privacy
ISSN (Print)	1081-6011

Conference

Conference	45th IEEE Symposium on Security and Privacy, SP 2024
Country/Territory	United States
City	San Francisco
Period	24/5/20 → 24/5/23

Bibliographical note

Publisher Copyright:
© 2024 IEEE.

Keywords

Root cause analysis
Vulnerability analysis

ASJC Scopus subject areas

Safety, Risk, Reliability and Quality
Software
Computer Networks and Communications

Access to Document

10.1109/SP54263.2024.00074

Cite this

Park, Y., Lee, H., Jung, J., Koo, H., & Kim, H. K. (2024). Benzene: A Practical Root Cause Analysis System with an Under-Constrained State Mutation. In Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024 (pp. 1865-1883). (Proceedings - IEEE Symposium on Security and Privacy). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SP54263.2024.00074

Benzene: A Practical Root Cause Analysis System with an Under-Constrained State Mutation. / Park, Younggi; Lee, Hwiwon; Jung, Jinho et al.
Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024. Institute of Electrical and Electronics Engineers Inc., 2024. p. 1865-1883 (Proceedings - IEEE Symposium on Security and Privacy).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Park, Y, Lee, H, Jung, J, Koo, H & Kim, HK 2024, Benzene: A Practical Root Cause Analysis System with an Under-Constrained State Mutation. in Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024. Proceedings - IEEE Symposium on Security and Privacy, Institute of Electrical and Electronics Engineers Inc., pp. 1865-1883, 45th IEEE Symposium on Security and Privacy, SP 2024, San Francisco, United States, 24/5/20. https://doi.org/10.1109/SP54263.2024.00074

@inproceedings{5bf32e5d9e224c8cb96d507d4b10686b,

title = "Benzene: A Practical Root Cause Analysis System with an Under-Constrained State Mutation",

abstract = "Fuzzing has demonstrated great success in bug discovery, and plays a crucial role in software testing today. Despite the increasing popularity of fuzzing, automated root cause analysis (RCA) has drawn less attention. One of the recent advances in RCA is crash-based statistical debugging, which leverages the behavioral differences in program execution between crash-triggered and non-crashing inputs. Hence, obtaining non-crashing behaviors close to the original crash is crucial but challenging with previous approaches (e.g., fuzzing). In this paper, we present Benzene, a practical end-to-end RCA system that facilitates an automated crash diagnosis. To this end, we introduce a novel technique, called under-constrained state mutation, that generates both crashing and non-crashing behaviors for effective and efficient RCA. We design and implement the Benzene prototype, and evaluate it with 60 vulnerabilities in the wild. Our empirical results demonstrate that Benzene not only surpasses in performance (i.e., root cause ranking), but also achieves superior results in both speed (4.6 times faster) and memory footprint (31.4 times less) on average than prior approaches.",

keywords = "Root cause analysis, Vulnerability analysis",

author = "Younggi Park and Hwiwon Lee and Jinho Jung and Hyungjoon Koo and Kim, \{Huy Kang\}",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 45th IEEE Symposium on Security and Privacy, SP 2024 ; Conference date: 20-05-2024 Through 23-05-2024",

year = "2024",

doi = "10.1109/SP54263.2024.00074",

language = "English",

series = "Proceedings - IEEE Symposium on Security and Privacy",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "1865--1883",

booktitle = "Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024",

}

TY - GEN

T1 - Benzene

T2 - 45th IEEE Symposium on Security and Privacy, SP 2024

AU - Park, Younggi

AU - Lee, Hwiwon

AU - Jung, Jinho

AU - Koo, Hyungjoon

AU - Kim, Huy Kang

PY - 2024

Y1 - 2024

N2 - Fuzzing has demonstrated great success in bug discovery, and plays a crucial role in software testing today. Despite the increasing popularity of fuzzing, automated root cause analysis (RCA) has drawn less attention. One of the recent advances in RCA is crash-based statistical debugging, which leverages the behavioral differences in program execution between crash-triggered and non-crashing inputs. Hence, obtaining non-crashing behaviors close to the original crash is crucial but challenging with previous approaches (e.g., fuzzing). In this paper, we present Benzene, a practical end-to-end RCA system that facilitates an automated crash diagnosis. To this end, we introduce a novel technique, called under-constrained state mutation, that generates both crashing and non-crashing behaviors for effective and efficient RCA. We design and implement the Benzene prototype, and evaluate it with 60 vulnerabilities in the wild. Our empirical results demonstrate that Benzene not only surpasses in performance (i.e., root cause ranking), but also achieves superior results in both speed (4.6 times faster) and memory footprint (31.4 times less) on average than prior approaches.

AB - Fuzzing has demonstrated great success in bug discovery, and plays a crucial role in software testing today. Despite the increasing popularity of fuzzing, automated root cause analysis (RCA) has drawn less attention. One of the recent advances in RCA is crash-based statistical debugging, which leverages the behavioral differences in program execution between crash-triggered and non-crashing inputs. Hence, obtaining non-crashing behaviors close to the original crash is crucial but challenging with previous approaches (e.g., fuzzing). In this paper, we present Benzene, a practical end-to-end RCA system that facilitates an automated crash diagnosis. To this end, we introduce a novel technique, called under-constrained state mutation, that generates both crashing and non-crashing behaviors for effective and efficient RCA. We design and implement the Benzene prototype, and evaluate it with 60 vulnerabilities in the wild. Our empirical results demonstrate that Benzene not only surpasses in performance (i.e., root cause ranking), but also achieves superior results in both speed (4.6 times faster) and memory footprint (31.4 times less) on average than prior approaches.

KW - Root cause analysis

KW - Vulnerability analysis

UR - https://www.scopus.com/pages/publications/85201643136

U2 - 10.1109/SP54263.2024.00074

DO - 10.1109/SP54263.2024.00074

M3 - Conference contribution

AN - SCOPUS:85201643136

T3 - Proceedings - IEEE Symposium on Security and Privacy

SP - 1865

EP - 1883

BT - Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 20 May 2024 through 23 May 2024

ER -

Benzene: A Practical Root Cause Analysis System with an Under-Constrained State Mutation

Abstract

Publication series

Conference

Bibliographical note

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this