Your search keyword '"Shriram Krishnamurthi"' showing total 5 results

1. Synthesizing Mutable Configurations: Setting up Systems for Success

Author

Shriram Krishnamurthi, Natasha Danas, Theophilos Giannakopoulos, and Tim Nelson

Subjects

Structure (mathematical logic), Exploit, Computer science, Distributed computing, Server, 0202 electrical engineering, electronic engineering, information engineering, Relational model, 020207 software engineering, 02 engineering and technology, System configuration, Industrial control system, Privilege escalation, System model

Abstract

Numerous devices, from network switches and servers to industrial control systems, can be unreliable if they are not configured properly. Even if a device's implementation has been proven correct, it must still be configured to meet the specific functional and security requirements of its stakeholders. However, manual configuration remains labor intensive and error-prone even for experts. Automated configuration synthesis presents a promising way forward. Unfortunately, as we show, existing counterexample-guided algorithms can perform poorly if the system model allows configuration changes during execution. Yet disallowing such changes can hide significant problems, such as privilege escalation. We present a new synthesis algorithm that exploits structure inherent in state-machine models where the system configuration changes. We implement it using the Kodkod relational model finder, and show that it favorably solves a number of configuration-synthesis tasks.

Published

2019

2. Detecting latent cross-platform API violations

Author

Shriram Krishnamurthi, Yuriy Brun, Eleni Gessiou, Jeff Rasley, Tony Ohmann, and Justin Cappos

Subjects

Computer science, business.industry, JavaScript, computer.software_genre, Software portability, Software, Software deployment, POSIX, Portability testing, Cross-platform, Operating system, Software engineering, business, computer, Implementation, computer.programming_language

Abstract

Many APIs enable cross-platform system development by abstracting over the details of a platform, allowing application developers to write one implementation that will run on a wide variety of platforms. Unfortunately, subtle differences in the behavior of the underlying platforms make cross-platform behavior difficult to achieve. As a result, applications using these APIs can be plagued by bugs difficult to observe before deployment. These portability bugs can be particularly difficult to diagnose and fix because they arise from the API implementation, the operating system, or hardware, rather than application code. This paper describes CheckAPI, a technique for detecting violations of cross-platform portability. CheckAPI compares an application's interactions with the API implementation to its interactions with a partial specification-based API implementation, and does so efficiently enough to be used in real production systems and at runtime. CheckAPI finds latent errors that escape pre-release testing. This paper discusses the subtleties of different kinds of API calls and strategies for effectively producing the partial implementations. Validating CheckAPI on JavaScript, the Seattle project's Repy VM, and POSIX detects dozens of violations that are confirmed bugs in widely-used software.

Published

2015

3. Blocks versus text: Ongoing lessons from bootstrap

Author

Emmanuel Schanzer, Shriram Krishnamurthi, and Kathi Fisler

Subjects

Multimedia, Computer science, Process (engineering), Block (programming), Professional development, Mathematics education, Context (language use), computer.software_genre, computer, Curriculum, Programming profession

Abstract

Block languages need to be studied from many perspectives. One important viewpoint that we do not believe has been explored in the literature is the effect on teachers during professional development workshops. We have acquiring experience comparing the use of block languages against (parenthetical) textual ones in the process of training teachers for the Bootstrap curriculum. We believe our observations are not only interesting in context, but might also lead to discovering interesting new subtleties about the use of blocks.

Published

2015

4. Aluminum: Principled scenario exploration through minimality

Author

Tim Nelson, Salman Saghafi, Daniel J. Dougherty, Kathi Fisler, and Shriram Krishnamurthi

Published

2013

5. Verifying interactive web programs

Author

Daniel R Licata and Shriram Krishnamurthi

Published

2004