Your search keyword '"Han, Tingxu"' showing total 14 results

1. Security of Language Models for Code: A Systematic Literature Review

Author

Chen, Yuchen, Sun, Weisong, Fang, Chunrong, Chen, Zhenpeng, Ge, Yifei, Han, Tingxu, Zhang, Quanjun, Liu, Yang, Chen, Zhenyu, and Xu, Baowen

Subjects

Computer Science - Software Engineering, Computer Science - Cryptography and Security

Abstract

Language models for code (CodeLMs) have emerged as powerful tools for code-related tasks, outperforming traditional methods and standard machine learning approaches. However, these models are susceptible to security vulnerabilities, drawing increasing research attention from domains such as software engineering, artificial intelligence, and cybersecurity. Despite the growing body of research focused on the security of CodeLMs, a comprehensive survey in this area remains absent. To address this gap, we systematically review 67 relevant papers, organizing them based on attack and defense strategies. Furthermore, we provide an overview of commonly used language models, datasets, and evaluation metrics, and highlight open-source tools and promising directions for future research in securing CodeLMs.

Published

2024

2. Mutual Information Guided Backdoor Mitigation for Pre-trained Encoders

Author

Han, Tingxu, Sun, Weisong, Ding, Ziqi, Fang, Chunrong, Qian, Hanwei, Li, Jiaxun, Chen, Zhenyu, and Zhang, Xiangyu

Subjects

Computer Science - Machine Learning, Computer Science - Artificial Intelligence, Computer Science - Cryptography and Security

Abstract

Self-supervised learning (SSL) is increasingly attractive for pre-training encoders without requiring labeled data. Downstream tasks built on top of those pre-trained encoders can achieve nearly state-of-the-art performance. The pre-trained encoders by SSL, however, are vulnerable to backdoor attacks as demonstrated by existing studies. Numerous backdoor mitigation techniques are designed for downstream task models. However, their effectiveness is impaired and limited when adapted to pre-trained encoders, due to the lack of label information when pre-training. To address backdoor attacks against pre-trained encoders, in this paper, we innovatively propose a mutual information guided backdoor mitigation technique, named MIMIC. MIMIC treats the potentially backdoored encoder as the teacher net and employs knowledge distillation to distill a clean student encoder from the teacher net. Different from existing knowledge distillation approaches, MIMIC initializes the student with random weights, inheriting no backdoors from teacher nets. Then MIMIC leverages mutual information between each layer and extracted features to locate where benign knowledge lies in the teacher net, with which distillation is deployed to clone clean features from teacher to student. We craft the distillation loss with two aspects, including clone loss and attention loss, aiming to mitigate backdoors and maintain encoder performance at the same time. Our evaluation conducted on two backdoor attacks in SSL demonstrates that MIMIC can significantly reduce the attack success rate by only utilizing <5% of clean data, surpassing seven state-of-the-art backdoor mitigation techniques.

Published

2024

3. Towards Imperceptible Backdoor Attack in Self-supervised Learning

Author

Zhang, Hanrong, Wang, Zhenting, Han, Tingxu, Jin, Mingyu, Zhan, Chenlu, Du, Mengnan, Wang, Hongwei, and Ma, Shiqing

Subjects

Computer Science - Computer Vision and Pattern Recognition

Abstract

Self-supervised learning models are vulnerable to backdoor attacks. Existing backdoor attacks that are effective in self-supervised learning often involve noticeable triggers, like colored patches, which are vulnerable to human inspection. In this paper, we propose an imperceptible and effective backdoor attack against self-supervised models. We first find that existing imperceptible triggers designed for supervised learning are not as effective in compromising self-supervised models. We then identify this ineffectiveness is attributed to the overlap in distributions between the backdoor and augmented samples used in self-supervised learning. Building on this insight, we design an attack using optimized triggers that are disentangled to the augmented transformation in the self-supervised learning, while also remaining imperceptible to human vision. Experiments on five datasets and seven SSL algorithms demonstrate our attack is highly effective and stealthy. It also has strong resistance to existing backdoor defenses. Our code can be found at https://github.com/Zhang-Henry/IMPERATIVE.

Published

2024

4. On the Effectiveness of Distillation in Mitigating Backdoors in Pre-trained Encoder

Author

Han, Tingxu, Huang, Shenghan, Ding, Ziqi, Sun, Weisong, Feng, Yebo, Fang, Chunrong, Li, Jun, Qian, Hanwei, Wu, Cong, Zhang, Quanjun, Liu, Yang, and Chen, Zhenyu

Subjects

Computer Science - Machine Learning

Abstract

In this paper, we study a defense against poisoned encoders in SSL called distillation, which is a defense used in supervised learning originally. Distillation aims to distill knowledge from a given model (a.k.a the teacher net) and transfer it to another (a.k.a the student net). Now, we use it to distill benign knowledge from poisoned pre-trained encoders and transfer it to a new encoder, resulting in a clean pre-trained encoder. In particular, we conduct an empirical study on the effectiveness and performance of distillation against poisoned encoders. Using two state-of-the-art backdoor attacks against pre-trained image encoders and four commonly used image classification datasets, our experimental results show that distillation can reduce attack success rate from 80.87% to 27.51% while suffering a 6.35% loss in accuracy. Moreover, we investigate the impact of three core components of distillation on performance: teacher net, student net, and distillation loss. By comparing 4 different teacher nets, 3 student nets, and 6 distillation losses, we find that fine-tuned teacher nets, warm-up-training-based student nets, and attention-based distillation loss perform best, respectively.

Published

2024

5. An Extractive-and-Abstractive Framework for Source Code Summarization

Author

Sun, Weisong, Fang, Chunrong, Chen, Yuchen, Zhang, Quanjun, Tao, Guanhong, Han, Tingxu, Ge, Yifei, You, Yudu, and Luo, Bin

Subjects

Computer Science - Software Engineering, Computer Science - Artificial Intelligence, D.2.3, I.2.7

Abstract

(Source) Code summarization aims to automatically generate summaries/comments for a given code snippet in the form of natural language. Such summaries play a key role in helping developers understand and maintain source code. Existing code summarization techniques can be categorized into extractive methods and abstractive methods. The extractive methods extract a subset of important statements and keywords from the code snippet using retrieval techniques, and generate a summary that preserves factual details in important statements and keywords. However, such a subset may miss identifier or entity naming, and consequently, the naturalness of generated summary is usually poor. The abstractive methods can generate human-written-like summaries leveraging encoder-decoder models from the neural machine translation domain. The generated summaries however often miss important factual details. To generate human-written-like summaries with preserved factual details, we propose a novel extractive-and-abstractive framework. The extractive module in the framework performs a task of extractive code summarization, which takes in the code snippet and predicts important statements containing key factual details. The abstractive module in the framework performs a task of abstractive code summarization, which takes in the entire code snippet and important statements in parallel and generates a succinct and human-written-like natural language summary. We evaluate the effectiveness of our technique, called EACS, by conducting extensive experiments on three datasets involving six programming languages. Experimental results show that EACS significantly outperforms state-of-the-art techniques in terms of all three widely used metrics, including BLEU, METEOR, and ROUGH-L., Comment: Accepted to ACM Transactions on Software Engineering and Methodology (TOSEM)

Published

2022

6. Code Search based on Context-aware Code Translation

Author

Sun, Weisong, Fang, Chunrong, Chen, Yuchen, Tao, Guanhong, Han, Tingxu, and Zhang, Quanjun

Subjects

Computer Science - Software Engineering, Computer Science - Artificial Intelligence, D.2

Abstract

Code search is a widely used technique by developers during software development. It provides semantically similar implementations from a large code corpus to developers based on their queries. Existing techniques leverage deep learning models to construct embedding representations for code snippets and queries, respectively. Features such as abstract syntactic trees, control flow graphs, etc., are commonly employed for representing the semantics of code snippets. However, the same structure of these features does not necessarily denote the same semantics of code snippets, and vice versa. In addition, these techniques utilize multiple different word mapping functions that map query words/code tokens to embedding representations. This causes diverged embeddings of the same word/token in queries and code snippets. We propose a novel context-aware code translation technique that translates code snippets into natural language descriptions (called translations). The code translation is conducted on machine instructions, where the context information is collected by simulating the execution of instructions. We further design a shared word mapping function using one single vocabulary for generating embeddings for both translations and queries. We evaluate the effectiveness of our technique, called TranCS, on the CodeSearchNet corpus with 1,000 queries. Experimental results show that TranCS significantly outperforms state-of-the-art techniques by 49.31% to 66.50% in terms of MRR (mean reciprocal rank)., Comment: to be published in the 44th IEEE/ACM International Conference on Software Engineering (ICSE 2022) (ICSE'22)

Published

2022

7. An Extractive-and-Abstractive Framework for Source Code Summarization.

Author

Sun, Weisong, Fang, Chunrong, Chen, Yuchen, Zhang, Quanjun, Tao, Guanhong, You, Yudu, Han, Tingxu, Ge, Yifei, Hu, Yuling, Luo, Bin, and Chen, Zhenyu

Subjects

TEXT summarization, AUTOMATIC summarization, PROGRAMMING languages, NATURAL languages, METEORS

Abstract

(Source) Code summarization aims to automatically generate summaries/comments for given code snippets in the form of natural language. Such summaries play a key role in helping developers understand and maintain source code. Existing code summarization techniques can be categorized into extractive methods and abstractive methods. The extractive methods extract a subset of important statements and keywords from the code snippet using retrieval techniques and generate a summary that preserves factual details in important statements and keywords. However, such a subset may miss identifier or entity naming, and consequently, the naturalness of the generated summary is usually poor. The abstractive methods can generate human-written-like summaries leveraging encoder-decoder models. However, the generated summaries often miss important factual details. To generate human-written-like summaries with preserved factual details, we propose a novel extractive-and-abstractive framework. The extractive module in the framework performs the task of extractive code summarization, which takes in the code snippet and predicts important statements containing key factual details. The abstractive module in the framework performs the task of abstractive code summarization, which takes in the code snippet and important statements in parallel and generates a succinct and human-written-like natural language summary. We evaluate the effectiveness of our technique, called EACS, by conducting extensive experiments on three datasets involving six programming languages. Experimental results show that EACS significantly outperforms state-of-the-art techniques for all three widely used metrics, including BLEU, METEOR, and ROUGH-L. In addition, the human evaluation demonstrates that the summaries generated by EACS have higher naturalness and informativeness and are more relevant to given code snippets. [ABSTRACT FROM AUTHOR]

Published

2024

8. An Extractive-and-Abstractive Framework for Source Code Summarization

Author

Sun, Weisong, primary, Fang, Chunrong, additional, Chen, Yuchen, additional, Zhang, Quanjun, additional, Tao, Guanhong, additional, You, Yudu, additional, Han, Tingxu, additional, Ge, Yifei, additional, Hu, Yuling, additional, Luo, Bin, additional, and Chen, Zhenyu, additional

Published

2023

9. RULER: discriminative and iterative adversarial training for deep neural network fairness

Author

Tao, Guanhong, primary, Sun, Weisong, additional, Han, Tingxu, additional, Fang, Chunrong, additional, and Zhang, Xiangyu, additional

Published

2022

10. Code search based on context-aware code translation

Author

Sun, Weisong, primary, Fang, Chunrong, additional, Chen, Yuchen, additional, Tao, Guanhong, additional, Han, Tingxu, additional, and Zhang, Quanjun, additional

Published

2022

11. Ruler

Author

Sun, Weisong, Tao, Guanhong, Han, Tingxu, Fang, Chunrong, and Zhang, Xiangyu

Abstract

The artifact of paper ' Ruler: Discriminative and Iterative Adversarial Training for Deep Neural Network Fairness ', published on ESEC/FSE 2022.

Published

2022

12. Ruler-v3

Author

Tao, Guanhong, Sun, Weisong, Han, Tingxu, Fang, Chunrong, and Zhang, Xiangyu

Abstract

The artifact of paper ' Ruler: Discriminative and Iterative Adversarial Training for Deep Neural Network Fairness ', published on ESEC/FSE 2022.

Published

2022

13. TranCS

Author

Sun, Weisong, Fang, Chunrong, Chen, Yuchen, Tao, Guanhong, Han, Tingxu, and Zhang, Quanjun

Abstract

This is the replication package for the paper "Code search based on Context-aware Code Translation", accepted at ICSE 2022.

Published

2022

14. Diagnostic value of negative enrichment and immune fluorescence in situ hybridization for intraperitoneal free cancer cells of gastric cancer.

Author

Wang A, Li Z, Wang Q, Bai Y, Ji X, Fu T, Ji K, Xue Y, Han T, Wu X, Zhang J, Yang Y, Xu G, Bu Z, and Ji J

Abstract

Objective: To explore the intraperitoneal free cancer cell (IFCC) detection value of negative enrichment and immune fluorescence in situ hybridization (NEimFISH) on chromosomes (CEN) 8/17., Methods: To verify the reliability of NEimFISH, 29 gastric cancer tumors, their adjacent tissues and greater omental tissues were tested. Our study then included 105 gastric cancer patients for IFCC. We defined patients as IFCC-positive if a signal was detected, regardless of the detailed cancer cell numbers. A comparison of clinicopathological features was conducted among IFCC groups. We also compared the diagnosis value and peritoneal recurrence predictive value among different detection methods. The comparison of IFCC number was also conducted among different groups., Results: A cutoff of 2.5 positive cells could distinguish all benign tissue samples and 97% of malignant tissue samples in our study. Compared to intestinal gastric cancer, patients with diffuse gastric cancer tended to have more IFCCs (6 vs . 4, P=0.002). The IFCC counts were often higher in the lymphovascular invasion positive group than negative group (3 vs . 1, P=0.022). All IFCC samples that were considered positive using conventional cytology were also found to be positive using NEimFISH. When compared to conventional cytology and paraffin pathology, NEimFISH had a higher IFCC positive rate (68.9%) and higher one-year peritoneal recurrence predictive value with area under the curve (AUC) of 0.922., Conclusions: Gastric cancer could be effectively diagnosed by NEimFISH. The IFCC number found using NEimFISH on CEN8/17 is closely associated with Lauren type and vascular invasion of cancer. NEimFISH is a reliable detection modality with a higher positive detection rate, higher one-year peritoneal recurrence predictive value and quantitative features for IFCC of gastric cancer., (Copyright © 2019 Chinese Journal of Cancer Research. All rights reserved.)

Published

2019