| Title | HYDRA: Hypothesis Driven Repair Automation |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Benyo, Brett, Clark, Shane, Paulos, Aaron, Pal, Partha |
| Conference Name | Proceedings of the 13th International Conference on Availability, Reliability and Security |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-6448-5 |
| Keywords | Automated Response Actions, Automated software repair, composability, pubcrawl, Resiliency, zero-day vulnerability |
| Abstract | HYDRA is an automated mechanism to repair code in response to successful attacks. Given a set of malicious inputs that include the attack and a set of benign inputs that do not, along with an ability to test the victim application with these labelled inputs, HYDRA quickly provides rank ordered patches to close the exploited vulnerability. HYDRA also produces human-readable summaries of its findings and repair actions to aid the manual vulnerability mitigation process. We tested HYDRA using 8 zero-days, HYDRA produced patches that stopped the attacks in all 8 cases and preserved application functionality in 7 of the 8 cases. |
| URL | http://doi.acm.org/10.1145/3230833.3230861 |
| DOI | 10.1145/3230833.3230861 |
| Citation Key | benyo_hydra:_2018 |
HYDRA: Hypothesis Driven Repair Automation