Current Research
Current Research
IoT Integer Overflflow vulnerabilities detection in C++ source code (Expected Date: June 2022)
IoT devices require proper security as attackers are waiting to exploit any vulnerabilities to breach the system. One of the most frequent bugs in IoT devices are found is Overflow vulnerability which primarily results from the unawareness of developers while coding. Integer Overflow can be buried anywhere in a code segment, most of which compilers can't detect. To assist the developer, we are working on minimizing these bugs. Though there exist a few tools to detect Integer Overflow bugs, our investigation shows that these tools rarely detect these bugs. So we are applying machine learning to get better of these. Moreover, we are developing tools to make an automated system to detect and fix these bugs so that developers can eschew Integer Overflow bugs.
Cross-Domain Security Aspect Detection in Developer Discussions (Expected Date: March 2022)
Online discussion is getting focused as the availabilities increase. These days developers are even posting and checking small confusion in the online forum. As tons of data are being dumped each day, developers are facing difficulties in finding the wanted information among these colossal data. So comprehensive studies on these data could resolve these problems. Thus we are developing a tool that will summarize the post with useful information. For this research, we limit our space to security only, which means we will summarize the security discussion in a post.
Software Aspects Detection in Developers Discussion (Expected Date: July 2022)
Developer's recent activity on the discussion forum could be useful for developers, vendors, and newcomers as the developer's discussion mainly focus on recent API, tools, or etc. In this project, we find out the three most important criteria- i.e., Security, Performance, and Usability of an API, that can be found in the developer's comments on a discussion. These aspects/ criteria can be assessment criteria for picking an API.
Social Media Data Analysis for Understanding Mental Health and Well-being (Expected Date: July 2022)
In recent times especially after the corona pandemic, mental illness has risen significantly. In third world countries, where most of the people live below the poverty line, this issue is causing more damage as people rarely discover their mental illness. In this project, we collected public data such as shared posts, comments from social sites Facebook. We now are studying this broad data to get any underlying patterns that cause mental illness or health issues.
How do the developers discuss and support new versions of Java language in technical Q&A site? (Expected Date: July 2022)
Develop often discuss new API, their possible vulnerabilities, and their advantages in Q&A sites. In this project, we are studying how developer supports these APIs. We collected a Java dataset from StackOverflow and figured out the discussed topics in these discussions. Now, we are studying how these topics are evolving, and either of these topics has enough discussion to support a specific version of Java.
An Empirical Study of IoT Security Aspects at Sentence-Level in Developer Textual Discussions, under review in Information and Software Technology Journal [paper]
Efficient Route Caching and Route Finding (2019), Poster in 5th International Conference on Networking, Systems, and Security at BUET [poster][ thesis book]