Feb 1, 2024. | By: Mohammed Latif Siddiq

Our paper, Understanding Regular Expression Denial of Service (ReDoS): Insights from LLM-Generated Regexes and Developer Forums, got accepted for the 32nd ACM/IEEE International Conference on Program Comprehension (ICPC 2024). In this work, we analyzed the robustness in generating functionally correct and ReDoS-free RegEx by LLMs, how understandable the LLM-generated and real world ReDoS-vulnerable RegEx and what are the perspective of the developers for ReDoS vulnerability.

Related Links

• Preprint
• s2e-lab/redos-study
• 10.1145/3643916.3644424

BibTeX

@inproceedings{siddiq2024regex,
  author={Siddiq, Mohammed Latif and Zhang, Jiahao and Santos, Joanna C. S.},
  booktitle={32nd IEEE/ACM International Conference on Program Comprehension (ICPC 2024)}, 
  title={Understanding Regular Expression Denial of Service (ReDoS): Insights from LLM-Generated Regexes and Developer Forums}, 
  year={2024},
  doi={10.1145/3643916.3644424}
}

Subscribe

Subscribe to this blog via RSS.

Categories

Paper 13

Research 13

Tool 2

Llm 10

Dataset 2

Qualitative-analysis 1

Survey 1

Recent Posts

"Large Language Models in Computer Science Education: A Systematic Literature Review" accepted at SIGCSE TS 2025

Posted on 01 Oct 2024

"SALLM: Security Assessment of Generated Code" accepted at ASYDE 2024 (ASE Workshop)

Posted on 07 Sep 2024

"FRANC: A Lightweight Framework for High-Quality Code Generation" and "The Fault in our Stars: Quality Assessment of Code Generation Benchmarks " accepted at SCAM 2022

Posted on 29 Aug 2024

"Using Large Language Models to Generate JUnit Tests: An Empirical Study" accepted at EASE 2024.

Posted on 07 Mar 2024

Popular Tags

Paper (13) Research (13) Tool (2) Llm (10) Dataset (2) Qualitative-analysis (1) Survey (1)