Investigation into real-world usage of hybrid analysis for program comprehension
report
Onboarding developers is a difficult task that many companies are faced with every day. One solution would be to have developers read the documentation for the codebase, but documentation can be incomplete and even incorrect. An alternative would be using tools for program comprehension to understand the codebase, with hybrid program analysis being one of the possible ways to infer information from the program and its code. We investigate hybrid analysis's real world usage by conducting a literature study and by gathering information from open source repositories on GitHub from companies in the high-tech, embedded and cyber physical domains. From the literature study, we do not find any literature that uses or explores the usage of hybrid analysis for program comprehension. We do find ample research for hybrid analysis in computer
security related applications, such as fuzzing. From the search through the repositories, we do not find any tools that use hybrid analysis for program comprehension. For direct practical implementation, we cannot recommend the combination, due to aforementioned lack of resources. However, we do think it can be an interesting area of research, since hybrid analysis for computer security related applications has yielded promising results over only static or dynamic analysis.
security related applications, such as fuzzing. From the search through the repositories, we do not find any tools that use hybrid analysis for program comprehension. For direct practical implementation, we cannot recommend the combination, due to aforementioned lack of resources. However, we do think it can be an interesting area of research, since hybrid analysis for computer security related applications has yielded promising results over only static or dynamic analysis.
TNO Identifier
996540
Publisher
TNO
Collation
43 p.
Place of publication
Eindhoven