Ting Su, Professor in Software Engineering Institute (East China Normal University), will give a talk about his work on mobile app fuzzing. Details below.
SPEAKER
Ting Su, Professor in Software Engineering Institute, East China Normal University, China.
TITLE
Advancing the State-of-the-Art of Mobile App Fuzzing
ABSTRACT
Mobile apps have drastically increased in number and diversity over the years. They are GUI-centered event-driven software, and typically run in complex end-user environments (e.g., different device models, OS versions and resource constraints) post-deployment. Ensuring their reliability and correctness is thus a top priority of any app development team to maintain business success.
In this talk, I will present our continuous efforts to advance the state-of-the-art of fuzzing (or testing) mobile apps. Specifically, I will introduce two thrusts: (1) Stoat, one state-of-art GUI fuzzing technique for Android apps, which has discovered hundreds and thousands of fatal crash bugs for the apps in the wild; (2) SetDroid, the first fully-automated fuzzing technique to find non-crash logic bugs for system setting-related defects, which cannot be detected prior fully-automated GUI fuzzing techniques. These two techniques have also helped improve the robustness of many industrial apps that have billions of monthly-active users such as Google+, Gmail, WeChat, QQMail, CapCut, TikTok and AlipayHK. I will share my vision on the opportunities and open challenges in this field.
BIO
Ting Su is now a Professor in Software Engineering Institute, East China Normal University, China. Previously, he was a postdoc in Department of Computer Science at ETH Zurich, Switzerland. Before that, he was a postdoc at School of Computer Science and Engineering in Nanyang Technological University (NTU), Singapore. He was a visiting scholar of University of California, Davis, USA. His current research interests lie in software engineering, programming languages, software security and AI. His work has been recognized with three ACM SIGSOFT Distinguished Paper Awards (ICSE 2018, ASE 2018, ASE 2019), one Google Faculty Research Award (2019-2020), Best Research Prototype Tool Award (NASAC 2017) and an Early Career Research Award in China. He has published broadly in top-tier programming languages and software engineering venues, including PLDI, ICSE, FSE, ASE, TSE and CSUR. His research has led to SmartRocket Unit, a commercial automated unit testing tool for embedded software, and Stoat, an automated GUI fuzzing tool for Android apps, which has become a well-known baseline testing technique in this field. More information is available at http://tingsu.github.io/.