Question: Question III: [10 marks] a) A program P contains 11 buggy statements: statement# 10, 11, 14, 16, 18, 30, 40, 81, 91, and 99.

Question III: [10 marks] a) A program P contains 11 buggy statements:

statement# 10, 11, 14, 16, 18, 30, 40, 81, 91, and 99.

Three static analysis tools T1, T2, and T3 are used to analyze  

 

Question III: [10 marks] a) A program P contains 11 buggy statements: statement# 10, 11, 14, 16, 18, 30, 40, 81, 91, and 99. Three static analysis tools T1, T2, and T3 are used to analyze P. The analysis results are as follows: T1 reported 5 buggy statements: statement# 10, 11, 15, 16, and 20 T2 reported 6 buggy statements: statement# 11, 14, 15, 16, 20, and 81 T3 reported 7 buggy statements: statement# 12, 13, 15, 16, 40, 50, 81, and 91 You would like to choose the best of the three tools based on the F1_measure evaluation metric. Which tool you will choose? Show your calculations. [3 marks] Note that: F1_measure =(2TP)/ (2TP + FP+ FN) b) Following code fragment shows the Apple goto fail; goto fail; bug... if ((err = SSLHashSHA1.update(&hashCtx, &signedParams)) != 0) goto fail; goto fail; other checks fail: buffer frees (cleanups) return err; 1. What kind of attack was possible because of this vulnerability? [1 mark] 2. Which tool could have found this bug? Is it a security specific tool or non- security specific tool? [2 marks] c) Mention four different types of results/responses that fuzz testing tools can monitor in addition to crash/hang. What is the next step after we find that a software crashed from a fuzz testing? [4 marks]

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock

Part a F1 Measure for Static Analysis Tools Given Data Buggy statements in program P P P 10 11 14 16 18 30 40 81 91 99 Total number of buggy statements 11 Tools T1 reported 10 11 15 16 20 T2 reported ... View full answer

blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Mathematics Questions!

Q:

A sound analysis is one which rejects a buggy program

Q:

1 FINAL ASSIGNMENT (60%) ASSESSMENT DESCRIPTION DEADLINE Final Assignment This comprehensive project enables you to apply numerous concepts regarding banking and financial services discussed...

Q:

Introduction and learning objectives When you were learning about operational analysis earlier in the term, we talked about jobs that require multiple visits to the CPU (or servers) to receive their...

Q:

After numerous campus interviews, Greg Thorpe, a senior at Great Northern College, received two office interview invitations from the Baltimore offices of two large firms. Both firms offered to cover...

Q:

Neal Manufacturing Company makes tents that it sells directly to camping enthusiasts through a mail-order marketing program. The company pays a quality control expert $60,000 per year to inspect...

Q:

LG4 Describe the various measures of yield and return and explain how these standards of performance are used in bond valuation.

Q:

1. Send brief personal notes to students acknowledging a good job performed on assignments, their hard work and persistence, a birthday, or concern about absences. Include a get-well card along with...

Q:

Yesterday Sanjay sold 1,000 shares of stock that he owned for $45 per share. When he purchased the stock two years ago, Sanjay paid $50 per share. Every three months during the time that he held the...

Q:

1. Create a resource group named "rg-Assignment" and put your all resources in this assignment into rg-Assignment 2. Create an Azure SQL DB by using AdventureWorksLT sample db. 3. Create a simple/one...

Q:

Minellan Ltd has extracted the following trial balance from its nominal ledger as at 31 March 2024: Additional information: (i) Inventory at 31 March 2024 was counted and valued at a cost of 181,000....

Q:

Project 2: Firewall implementation The objective of this project is two-fold: learning how firewalls work, and setting up a simple firewall for a network. You will first implement a simple stateless...

Q:

Parul's manager, James, told her not to share an e-mail with anyone because of its proprietary information, but another manager asked her to forward it to him, saying that James approved. Without...

Q:

Is this Human Resource Officer a fiduciary (Answer Yes or No for each question)? The human resource officer directs the investment of plan assets. The human resource officer provides investment...

Q:

Your employer asks your opinion on the following situation. An employee has been on pregnancy/parental leave for the past year and is scheduled to return next month. However, this employee's...

Q:

Imagine that you are an innovation consultant. You are facing the task of helping enhance the STARBUCK Coffe Company innovation activities through open and collaborative innovation.b.Suggest some...

Q:

Case- Code Red- Healthcare.gov SETTING THE STAGE .... What is healthcare.gov and what was the issue? THE DASHBOARD .... What did it look like? Why is it important? How healthy was it? The ROLLOUT...

Q:

Suppose whether the stock market index S&P 500 goes up or down in value tomorrow depends on its performance today and yesterday. In particular, we have learned if S&P 500 went up today and yesterday,...

Q:

Prairie Outfitters, Inc., a retailer, accepts paymnent through credit cards. During August, credit card sales amounted to $12,000. The processor charges a 3% fee. Assuming that the credit card...

Q:

9.8 Describe and apply the emotional reactions that characterize dying people, according to Kbler- Ross research. (APA 1.1, 1.2, 1.3, 5.1)

Q:

9.4 Detail Eriksons theory of psychosocial development, and indicate the possible positive and negative outcomes at each stage. (APA 1.1. 1.2)

Q:

9.6 Describe changes in mental abilities in adulthood. (APA 1.1, 1.3, 2.2, 4.1)