Publications

Butler, Karin B.; Leger, Michelle A.; Bueno, Denis B.; Cueller, Christopher R.; Haass, Michael J.; Loffredo, Timothy; Reedy, Geoffrey E.; Tuminaro, Julian T.

Abstract not provided.

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Butler, Karin B.; Leger, Michelle A.; Bueno, Denis B.; Cueller, Christopher R.; Haass, Michael J.; Loffredo, Timothy; Reedy, Geoffrey E.; Tuminaro, Julian T.

Vulnerability analysts protecting software lack adequate tools for understanding data flow in binaries. We present a case study in which we used human factors methods to develop a taxonomy for understanding data flow and the visual representations needed to support decision making for binary vulnerability analysis. Using an iterative process, we refined and evaluated the taxonomy by generating three different data flow visualizations for small binaries, trained an analyst to use these visualizations, and tested the utility of the visualizations for answering data flow questions. Throughout the process and with minimal training, analysts were able to use the visualizations to understand data flow related to security assessment. Our results indicate that the data flow taxonomy is promising as a mechanism for improving analyst understanding of data flow in binaries and for supporting efficient decision making during analysis.

Stout, William M.S.; Van Leeuwen, Brian P.; Urias, Vincent U.; Tuminaro, Julian T.; Dossaji, Nomaan D.

Abstract not provided.

Stout, William M.S.; Van Leeuwen, Brian P.; Urias, Vincent U.; Tuminaro, Julian T.; Dossaji, Nomaan D.

Abstract not provided.

Dossaji, Nomaan D.; Schrock, Spencer S.; Tuminaro, Julian T.

Abstract not provided.

Coia, Kevin C.; Dumas, Benjamin D.; Tuminaro, Julian T.

Abstract not provided.