Feb 1, 2024. | By: Mohammed Latif Siddiq

Our paper, Understanding Regular Expression Denial of Service (ReDoS): Insights from LLM-Generated Regexes and Developer Forums, got accepted for the 32nd ACM/IEEE International Conference on Program Comprehension (ICPC 2024). In this work, we analyzed the robustness in generating functionally correct and ReDoS-free RegEx by LLMs, how understandable the LLM-generated and real world ReDoS-vulnerable RegEx and what are the perspective of the developers for ReDoS vulnerability.

Related Links

• Preprint
• s2e-lab/redos-study
• 10.1145/3643916.3644424

BibTeX

@inproceedings{siddiq2024regex,
  author={Siddiq, Mohammed Latif and Zhang, Jiahao and Santos, Joanna C. S.},
  booktitle={32nd IEEE/ACM International Conference on Program Comprehension (ICPC 2024)}, 
  title={Understanding Regular Expression Denial of Service (ReDoS): Insights from LLM-Generated Regexes and Developer Forums}, 
  year={2024},
  doi={10.1145/3643916.3644424}
}

Subscribe

Subscribe to this blog via RSS.

Categories

Paper 9

Research 9

Tool 2

Llm 6

Dataset 2

Qualitative-analysis 1

Recent Posts

"Using Large Language Models to Generate JUnit Tests: An Empirical Study" accepted at EASE 2024.

Posted on 07 Mar 2024

"Understanding Regular Expression Denial of Service (ReDoS): Insights from LLM-Generated Regexes and Developer Forums" accepted at ICPC 2024.

Posted on 01 Feb 2024

"Re(gEx|DoS)Eval: Evaluating Generated Regular Expressions and their Proneness to DoS Attacks" accepted at ICSE-NIER 2024.

Posted on 22 Nov 2023

"Zero-shot Prompting for Code Complexity Prediction Using GitHub Copilot" accepted at NLBSE'23 (co-located with ICSE'23).

Posted on 24 Feb 2023

Popular Tags

Paper (9) Research (9) Tool (2) Llm (6) Dataset (2) Qualitative-analysis (1)