FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W4312635089> ?p ?o ?g. }

• W4312635089 abstract "Python continues to be one of the most popular programming languages and has been used in many safety-critical fields such as medical treatment, autonomous driving systems, and data science. These fields put forward higher security requirements to Python ecosystems. However, existing studies on machine learning systems in Python concentrate on data security, model security and model privacy, and just assume the underlying Python virtual machines (PVMs) are secure and trustworthy. Unfortunately, whether such an assumption really holds is still unknown.This paper presents, to the best of our knowledge, the first and most comprehensive empirical study on the security of CPython, the official and most deployed Python virtual machine. To this end, we first designed and implemented a software prototype dubbed PVMSCAN, then use it to scan the source code of the latest CPython (version 3.10) and other 10 versions (3.0 to 3.9), which consists of 3,838,606 lines of source code. Empirical results give relevant findings and insights towards the security of Python virtual machines, such as: 1) CPython virtual machines are still vulnerable, for example, PVMSCAN detected 239 vulnerabilities in version 3.10, including 55 null dereferences, 86 uninitialized variables and 98 dead stores; Python/C API-related vulnerabilities are very common and have become one of the most severe threats to the security of PVMs: for example, 70 Python/C API-related vulnerabilities are identified in CPython 3.10; 3) the overall quality of the code remained stable during the evolution of Python VMs with vulnerabilities per thousand line (VPTL) to be 0.50; and 4) automatic vulnerability rectification is effective: 166 out of 239 (69.46%) vulnerabilities can be rectified by a simple yet effective syntax-directed heuristics.We have reported our empirical results to the developers of CPython, and they have acknowledged us and already confirmed and fixed 2 bugs (as of this writing) while others are still being analyzed. This study not only demonstrates the effectiveness of our approach, but also highlights the need to improve the reliability of infrastructures like Python virtual machines by leveraging state-of-the-art security techniques and tools." @default.
• W4312635089 created "2023-01-05" @default.
• W4312635089 creator A5009128337 @default.
• W4312635089 creator A5017111493 @default.
• W4312635089 creator A5074522543 @default.
• W4312635089 date "2022-10-01" @default.
• W4312635089 modified "2023-09-27" @default.
• W4312635089 title "On the Security of Python Virtual Machines: An Empirical Study" @default.
• W4312635089 cites W1475493299 @default.
• W4312635089 cites W1494768888 @default.
• W4312635089 cites W1530443667 @default.
• W4312635089 cites W1680927362 @default.
• W4312635089 cites W1855973055 @default.
• W4312635089 cites W1973108383 @default.
• W4312635089 cites W1975394407 @default.
• W4312635089 cites W1991633729 @default.
• W4312635089 cites W2010163347 @default.
• W4312635089 cites W2024317539 @default.
• W4312635089 cites W2086363234 @default.
• W4312635089 cites W2098806455 @default.
• W4312635089 cites W2103380617 @default.
• W4312635089 cites W2111133345 @default.
• W4312635089 cites W2114334695 @default.
• W4312635089 cites W2122947685 @default.
• W4312635089 cites W2159388995 @default.
• W4312635089 cites W2166743455 @default.
• W4312635089 cites W2293844262 @default.
• W4312635089 cites W2315953879 @default.
• W4312635089 cites W2492658338 @default.
• W4312635089 cites W2508583900 @default.
• W4312635089 cites W2518136680 @default.
• W4312635089 cites W2605202003 @default.
• W4312635089 cites W2621026180 @default.
• W4312635089 cites W2771653519 @default.
• W4312635089 cites W2794582245 @default.
• W4312635089 cites W2795338679 @default.
• W4312635089 cites W2801456479 @default.
• W4312635089 cites W2942928164 @default.
• W4312635089 cites W2962708851 @default.
• W4312635089 cites W3006004920 @default.
• W4312635089 cites W3014988774 @default.
• W4312635089 cites W3014990389 @default.
• W4312635089 cites W3037397058 @default.
• W4312635089 cites W3103543923 @default.
• W4312635089 cites W3118141596 @default.
• W4312635089 cites W4206474384 @default.
• W4312635089 cites W4236304066 @default.
• W4312635089 cites W4237256801 @default.
• W4312635089 cites W4240590466 @default.
• W4312635089 cites W71566816 @default.
• W4312635089 doi "https://doi.org/10.1109/icsme55016.2022.00028" @default.
• W4312635089 hasPublicationYear "2022" @default.
• W4312635089 type Work @default.
• W4312635089 citedByCount "0" @default.
• W4312635089 crossrefType "proceedings-article" @default.
• W4312635089 hasAuthorship W4312635089A5009128337 @default.
• W4312635089 hasAuthorship W4312635089A5017111493 @default.
• W4312635089 hasAuthorship W4312635089A5074522543 @default.
• W4312635089 hasConcept C111919701 @default.
• W4312635089 hasConcept C153701036 @default.
• W4312635089 hasConcept C199360897 @default.
• W4312635089 hasConcept C199519371 @default.
• W4312635089 hasConcept C25344961 @default.
• W4312635089 hasConcept C2777904410 @default.
• W4312635089 hasConcept C38652104 @default.
• W4312635089 hasConcept C41008148 @default.
• W4312635089 hasConcept C43126263 @default.
• W4312635089 hasConcept C519991488 @default.
• W4312635089 hasConceptScore W4312635089C111919701 @default.
• W4312635089 hasConceptScore W4312635089C153701036 @default.
• W4312635089 hasConceptScore W4312635089C199360897 @default.
• W4312635089 hasConceptScore W4312635089C199519371 @default.
• W4312635089 hasConceptScore W4312635089C25344961 @default.
• W4312635089 hasConceptScore W4312635089C2777904410 @default.
• W4312635089 hasConceptScore W4312635089C38652104 @default.
• W4312635089 hasConceptScore W4312635089C41008148 @default.
• W4312635089 hasConceptScore W4312635089C43126263 @default.
• W4312635089 hasConceptScore W4312635089C519991488 @default.
• W4312635089 hasFunder F4320325599 @default.
• W4312635089 hasLocation W43126350891 @default.
• W4312635089 hasOpenAccess W4312635089 @default.
• W4312635089 hasPrimaryLocation W43126350891 @default.
• W4312635089 hasRelatedWork W1603528014 @default.
• W4312635089 hasRelatedWork W2327204559 @default.
• W4312635089 hasRelatedWork W2529681551 @default.
• W4312635089 hasRelatedWork W3017187763 @default.
• W4312635089 hasRelatedWork W3101523611 @default.
• W4312635089 hasRelatedWork W4229549207 @default.
• W4312635089 hasRelatedWork W4232504361 @default.
• W4312635089 hasRelatedWork W4245752324 @default.
• W4312635089 hasRelatedWork W4312312709 @default.
• W4312635089 hasRelatedWork W4312635089 @default.
• W4312635089 isParatext "false" @default.
• W4312635089 isRetracted "false" @default.
• W4312635089 workType "article" @default.