SlideShare a Scribd company logo

Privacy-Preserving Data Analysis, Adria Gascon

Ulrik Lyngs, profile picture
Ulrik Lyngs

This document discusses privacy-preserving data analysis and multi-party machine learning. It introduces the challenges of jointly learning models on private data from multiple parties without sharing the raw data. Secure multi-party computation techniques allow parties to engage in online secure communications to compute functions while learning only the output and nothing else. The document presents work on a system for privacy-preserving distributed linear regression on vertically partitioned data with formal privacy guarantees. It also discusses other applications like private document classification in federated databases and privacy-preserving distributed hypothesis testing.

Technology
1 of 28
Downloaded 10 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
Privacy-Preserving Data Analysis Adria Gascon The Alan Turing Institute & Warwick University Based on joint work with Borja Balle, Phillipp Schoppmann, Mariana Raykova, Jack Doerner, Samee Zahur, David Evans, Age Chapman, Alan Davoust, Peter Buneman
What analysis on what data?  Fined grained private data, e.g. tracking for targeted advertising, credit scoring...  Data held by several organisations, e.g. hospitals?  Data held by individuals, e.g. on their phones?
Who cares?  Data owners (of course)  Data controllers
Adria Gascon Phillipp Schoppmann Borja Balle Mariana Raykova Jack Doerner Samee Zahur David Evans Privacy Preserving Distributed Linear Regression on High-Dimensional Data
Motivation Treatment Outcome Medical Data Census Data Financial Data Atr. 1 Atr. 2 … Atr. 4 Atr. 5 … Atr. 7 Atr. 8 … -1.0 0 54.3 … North 34 … 5 1 … 1.5 1 0.6 … South 12 … 10 0 … -0.3 1 16.0 … East 56 … 2 0 … 0.7 0 35.0 … Centre 67 … 15 1 … 3.1 1 20.2 … West 29 … 7 1 … Note: This is vertcally-parttoned data; similar problems with horizontally-parttoned
Private Multi-Party Machine Learning Assumptons • Parameters of the model will be received by all partes • Partes can engage in on-line secure communicatons • External partes might be used to outsource computaton or initalize cryptographic primitves Problem • Two or more partes want to jointly learn a model of their data • But they can’t share their private data with other partes
The Trusted Party “Solution” (secure channel) (secure channel) (secure channel) Trusted Party Receives plain-text data, runs algorithm, returns result to partes ? The Trusted Party assumpton: • Introduces a single point of failure • Relies on weak incentves • Requires agreement between all data providers => Useful but unrealistc. Maybe can be simulated?
Secure Multi-Party Computation (MPC) Public: Private: (party i) Goal: Compute f in a way that each party learns y (and nothing else!)
Our Contribution A PMPML system for vertcally parttoned linear regression Features: • Scalable to millions of records and hundreds of dimensions • Formal privacy guarantees (semi-honest security) • Open source implementaton Tools: • Combine standard MPC constructons (GC, OT, TI, …) • Efcient private inner product protocols • Conjugate gradient descent robust to fxed-point encodings
FAQ: Why is PMPML… Excitng? Can provide access to previously ”locked” data Hard? Privacy is tricky to formalize, hard to implement, and inherently interdisciplinary Worth? Beter models while avoiding legal risks and bad PR
Read It, Use It https://github.com/schoppmp/linreg-mpc http://eprint.iacr.org/2016/892PETS’17
Adria Gascon Phillipp Schoppmann Borja Balle Private Document Classifcaton in Federated Databases
Secure document classification
Secure document classification
Adria Gascon James Bell Tejas Kulkarni Privacy-Preserving Distributed Hypothesis Testng
● Drop off in Manhattan? ● Tip over 25 %? ● Was it a short journey? ● Was payment method credit card? Drop-off in Manhattan and tip over 25% are significantly correlated events. But this result is differentially private, so I cannot easily tell if a given journey was included in the training dataset or not.
Problem: model-check security properties on private source code. Privacy-Preserving Model Checking
● Problem: Check security properties on (private) source code. ● “Public” equivalent: MOPS [1], and some others. – Security property expressed as regular expression over sequences of instructions – Find all paths in control flow graph that match path ● Application of Private Regular Path Queries [1] Hao Chen and David Wagner. 2002. MOPS: an infrastructure for examining security properties of software. In Proceedings of the 9th ACM conference on Computer and communications security (CCS '02), Vijay Atluri (Ed.). ACM, New York, NY, USA, 235-244. DOI=http://dx.doi.org/10.1145/586110.586142 Privacy-Preserving Model Checking
Secure queries on graph data
Simple Example 1 #include <stdio.h> 2 #include <sys/types.h> 3 #include <unistd.h> 4 #include <pwd.h> 5 6 void drop_priv() 7 { 8 struct passwd *passwd; 9 10 if ((passwd = getpwuid(getuid())) == NULL) 11 { 12 printf("getpwuid() failed"); 13 return; 14 } 15 printf("Drop user %s's privilegen", passwd- >pw_name); 16 seteuid(getuid()); 17 } 18 19 int main(int argc, char *argv[]) 20 { 21 drop_priv(); 22 printf("About to execn"); hello.c
Simple Example Control flow graph Security property FSA (system call with root priviledge)
Interesting case: distributed private graph (code) main.c library.c
Related Work Verification Across Intellectual Property Boundaries [2]: [2] Chaki, Sagar, Christian Schallhart, and Helmut Veith. "Verification across intellectual property boundaries." ACM Transactions on Software Engineering and Methodology (TOSEM) 22.2 (2013): 15.
Related Work Verification Across Intellectual Property Boundaries [2] They also say... “While we are aware of advanced methods such as secure multiparty computation [Goldreich 2002] and zeroknowledge proofs [Ben-Or et al. 1988], we believe that they are impracticable for our problem, as such methods cannot be easily wrapped over given validation tools. Finally, we believe that any advanced method without an intuitive proof for its secrecy will be heavily opposed by the supplier—and might therefore be hard to establish in practice.”
Case study: thttpd ● Tiny http server ● 2 main modules (thttp.c and libhttp.c) thttp.c (2k loc) libhttp.c (4k loc)
thttpd control flow graph... ● 2 main modules only ● functions are disconnected
thttpd: next steps ● Adapt private Regular Path Queries work for pushdown automata ● Find some bugs. ● Write paper. ● Voila!
Thanks!

More Related Content

PPTX
Data Loss Prevention
Reza Kopaee
 
PPSX
Adaptive Intrusion Detection Using Learning Classifiers
Patrick Nicolas
 
PPT
current-trends
Quickoffice Test
 
PPTX
Using Big Data to Counteract Advanced Threats
Zivaro Inc
 
PDF
MITRE ATT&CKcon 2.0: Prioritizing Data Sources for Minimum Viable Detection; ...
MITRE - ATT&CKcon
 
PDF
Threat Hunting with Elastic at SpectorOps: Welcome to HELK
Elasticsearch
 
PDF
Measure What Matters: How to Use MITRE ATTACK to do the Right Things in the R...
MITRE - ATT&CKcon
 
PDF
MITRE ATT&CKcon 2.0: Lessons in Purple Team Testing with MITRE ATT&CK; Daniel...
MITRE - ATT&CKcon
 
Data Loss Prevention
Reza Kopaee
 
Adaptive Intrusion Detection Using Learning Classifiers
Patrick Nicolas
 
current-trends
Quickoffice Test
 
Using Big Data to Counteract Advanced Threats
Zivaro Inc
 
MITRE ATT&CKcon 2.0: Prioritizing Data Sources for Minimum Viable Detection; ...
MITRE - ATT&CKcon
 
Threat Hunting with Elastic at SpectorOps: Welcome to HELK
Elasticsearch
 
Measure What Matters: How to Use MITRE ATTACK to do the Right Things in the R...
MITRE - ATT&CKcon
 
MITRE ATT&CKcon 2.0: Lessons in Purple Team Testing with MITRE ATT&CK; Daniel...
MITRE - ATT&CKcon
 

What's hot (7)

PPTX
BSidesLV -The SOC Counter ATT&CK
Mathieu Saulnier
 
PDF
ATT&CKcon Power Hour - ATT&CK-onomics - gert-jan bruggink
Gert-Jan Bruggink
 
PPTX
Leveraging MITRE ATT&CK - Speaking the Common Language
Erik Van Buggenhout
 
PDF
Tracking Noisy Behavior and Risk-Based Alerting with ATT&CK
MITRE ATT&CK
 
PPTX
SOC2016 - The Investigation Labyrinth
chrissanders88
 
PPTX
Threat hunting in cyber world
Akash Sarode
 
PDF
Resistance Isn't Futile: A Practical Approach to Threat Modeling
Katie Nickels
 
BSidesLV -The SOC Counter ATT&CK
Mathieu Saulnier
 
ATT&CKcon Power Hour - ATT&CK-onomics - gert-jan bruggink
Gert-Jan Bruggink
 
Leveraging MITRE ATT&CK - Speaking the Common Language
Erik Van Buggenhout
 
Tracking Noisy Behavior and Risk-Based Alerting with ATT&CK
MITRE ATT&CK
 
SOC2016 - The Investigation Labyrinth
chrissanders88
 
Threat hunting in cyber world
Akash Sarode
 
Resistance Isn't Futile: A Practical Approach to Threat Modeling
Katie Nickels
 
Ad

Similar to Privacy-Preserving Data Analysis, Adria Gascon (20)

PDF
In:Confidence 2019 - Tools for privacy-aware data analysis
Privitar
 
PPTX
Introduction multiparty computation
The Cryptography Centre For Excellence
 
PPTX
Privacy preserving computing and secure multi party computation
Ulf Mattsson
 
PPTX
Gde privacy tf_summit
Sharmistha Chatterjee
 
PDF
Privacy solutions decode2021_jon_oliver
JonathanOliver26
 
PDF
THE CRYPTO CLUSTERING FOR ENHANCEMENT OF DATA PRIVACY
IRJET Journal
 
PDF
A novel ppdm protocol for distributed peer to peer information sources
IAEME Publication
 
PDF
Implementation_of_laplacian_differential_privacy_with_varying_epsilonv3.pdf
Jibran24
 
PDF
Multilevel Privacy Preserving by Linear and Non Linear Data Distortion
IOSR Journals
 
PPTX
Privacy-Preserving Machine Learning: secure user data without sacrificing mod...
Manning Publications
 
PDF
Misusability Measure Based Sanitization of Big Data for Privacy Preserving Ma...
IJECEIAES
 
PPTX
Privacy ml session_gdg
Sharmistha Chatterjee
 
PDF
IRJET- Efficient Privacy-Preserving using Novel Based Secure Protocol in SVM
IRJET Journal
 
PPTX
The Future Of Threat Intelligence Platforms
Dr. Paolo Di Prodi
 
PPTX
Privacy Preserved Data Augmentation using Enterprise Data Fabric
Atif Shaikh
 
PDF
Privacy Preserving Aggregate Statistics for Mobile Crowdsensing
IJSRED
 
PDF
Privacy preserving machine learning
Michał Kuźba
 
PPTX
Final review m score
azhar4010
 
PPTX
Privacy-preserving Information Sharing: Tools and Applications
Emiliano De Cristofaro
 
PPTX
14a Conferenza Nazionale di Statistica
Istituto nazionale di statistica
 
In:Confidence 2019 - Tools for privacy-aware data analysis
Privitar
 
Introduction multiparty computation
The Cryptography Centre For Excellence
 
Privacy preserving computing and secure multi party computation
Ulf Mattsson
 
Gde privacy tf_summit
Sharmistha Chatterjee
 
Privacy solutions decode2021_jon_oliver
JonathanOliver26
 
THE CRYPTO CLUSTERING FOR ENHANCEMENT OF DATA PRIVACY
IRJET Journal
 
A novel ppdm protocol for distributed peer to peer information sources
IAEME Publication
 
Implementation_of_laplacian_differential_privacy_with_varying_epsilonv3.pdf
Jibran24
 
Multilevel Privacy Preserving by Linear and Non Linear Data Distortion
IOSR Journals
 
Privacy-Preserving Machine Learning: secure user data without sacrificing mod...
Manning Publications
 
Misusability Measure Based Sanitization of Big Data for Privacy Preserving Ma...
IJECEIAES
 
Privacy ml session_gdg
Sharmistha Chatterjee
 
IRJET- Efficient Privacy-Preserving using Novel Based Secure Protocol in SVM
IRJET Journal
 
The Future Of Threat Intelligence Platforms
Dr. Paolo Di Prodi
 
Privacy Preserved Data Augmentation using Enterprise Data Fabric
Atif Shaikh
 
Privacy Preserving Aggregate Statistics for Mobile Crowdsensing
IJSRED
 
Privacy preserving machine learning
Michał Kuźba
 
Final review m score
azhar4010
 
Privacy-preserving Information Sharing: Tools and Applications
Emiliano De Cristofaro
 
14a Conferenza Nazionale di Statistica
Istituto nazionale di statistica
 
Ad

More from Ulrik Lyngs (14)

PPTX
Social Machines: Theoretical perspectives, Paul Smart
Ulrik Lyngs
 
PPTX
Mandevillian Intelligence, Paul Smart
Ulrik Lyngs
 
PPTX
Human-Extended Machine Cognition, Paul Smart
Ulrik Lyngs
 
PDF
Understanding Algorithmic Decisions
Ulrik Lyngs
 
PPTX
Zooniverse Update
Ulrik Lyngs
 
PDF
Data sharing in the age of the Social Machine
Ulrik Lyngs
 
PPTX
Ulysses in Cyberspace: Distraction and Self-Regulation in Social Machines
Ulrik Lyngs
 
PDF
SoLiD co operating.systems
Ulrik Lyngs
 
PPTX
Sociagrams: How to design a social machine
Ulrik Lyngs
 
PPTX
Safe Haven in a Box, Petros Papapanagiotou
Ulrik Lyngs
 
PPTX
App Observatory
Ulrik Lyngs
 
PPTX
A Privacy Framework for Social Machines
Ulrik Lyngs
 
PPTX
SOCIAM Book: The Theory and Practice of Social Machines
Ulrik Lyngs
 
PPTX
Provenance and Analytics for Social Machines, Trung Dong Huynh
Ulrik Lyngs
 
Social Machines: Theoretical perspectives, Paul Smart
Ulrik Lyngs
 
Mandevillian Intelligence, Paul Smart
Ulrik Lyngs
 
Human-Extended Machine Cognition, Paul Smart
Ulrik Lyngs
 
Understanding Algorithmic Decisions
Ulrik Lyngs
 
Zooniverse Update
Ulrik Lyngs
 
Data sharing in the age of the Social Machine
Ulrik Lyngs
 
Ulysses in Cyberspace: Distraction and Self-Regulation in Social Machines
Ulrik Lyngs
 
SoLiD co operating.systems
Ulrik Lyngs
 
Sociagrams: How to design a social machine
Ulrik Lyngs
 
Safe Haven in a Box, Petros Papapanagiotou
Ulrik Lyngs
 
App Observatory
Ulrik Lyngs
 
A Privacy Framework for Social Machines
Ulrik Lyngs
 
SOCIAM Book: The Theory and Practice of Social Machines
Ulrik Lyngs
 
Provenance and Analytics for Social Machines, Trung Dong Huynh
Ulrik Lyngs
 

Recently uploaded (20)

PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Teaching material agriculture food technology
LiaRayya
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 

Privacy-Preserving Data Analysis, Adria Gascon

  • 1. Privacy-Preserving Data Analysis Adria Gascon The Alan Turing Institute & Warwick University Based on joint work with Borja Balle, Phillipp Schoppmann, Mariana Raykova, Jack Doerner, Samee Zahur, David Evans, Age Chapman, Alan Davoust, Peter Buneman
  • 2. What analysis on what data?  Fined grained private data, e.g. tracking for targeted advertising, credit scoring...  Data held by several organisations, e.g. hospitals?  Data held by individuals, e.g. on their phones?
  • 3. Who cares?  Data owners (of course)  Data controllers
  • 4. Adria Gascon Phillipp Schoppmann Borja Balle Mariana Raykova Jack Doerner Samee Zahur David Evans Privacy Preserving Distributed Linear Regression on High-Dimensional Data
  • 5. Motivation Treatment Outcome Medical Data Census Data Financial Data Atr. 1 Atr. 2 … Atr. 4 Atr. 5 … Atr. 7 Atr. 8 … -1.0 0 54.3 … North 34 … 5 1 … 1.5 1 0.6 … South 12 … 10 0 … -0.3 1 16.0 … East 56 … 2 0 … 0.7 0 35.0 … Centre 67 … 15 1 … 3.1 1 20.2 … West 29 … 7 1 … Note: This is vertcally-parttoned data; similar problems with horizontally-parttoned
  • 6. Private Multi-Party Machine Learning Assumptons • Parameters of the model will be received by all partes • Partes can engage in on-line secure communicatons • External partes might be used to outsource computaton or initalize cryptographic primitves Problem • Two or more partes want to jointly learn a model of their data • But they can’t share their private data with other partes
  • 7. The Trusted Party “Solution” (secure channel) (secure channel) (secure channel) Trusted Party Receives plain-text data, runs algorithm, returns result to partes ? The Trusted Party assumpton: • Introduces a single point of failure • Relies on weak incentves • Requires agreement between all data providers => Useful but unrealistc. Maybe can be simulated?
  • 8. Secure Multi-Party Computation (MPC) Public: Private: (party i) Goal: Compute f in a way that each party learns y (and nothing else!)
  • 9. Our Contribution A PMPML system for vertcally parttoned linear regression Features: • Scalable to millions of records and hundreds of dimensions • Formal privacy guarantees (semi-honest security) • Open source implementaton Tools: • Combine standard MPC constructons (GC, OT, TI, …) • Efcient private inner product protocols • Conjugate gradient descent robust to fxed-point encodings
  • 10. FAQ: Why is PMPML… Excitng? Can provide access to previously ”locked” data Hard? Privacy is tricky to formalize, hard to implement, and inherently interdisciplinary Worth? Beter models while avoiding legal risks and bad PR
  • 11. Read It, Use It https://github.com/schoppmp/linreg-mpc http://eprint.iacr.org/2016/892PETS’17
  • 12. Adria Gascon Phillipp Schoppmann Borja Balle Private Document Classifcaton in Federated Databases
  • 15. Adria Gascon James Bell Tejas Kulkarni Privacy-Preserving Distributed Hypothesis Testng
  • 16. ● Drop off in Manhattan? ● Tip over 25 %? ● Was it a short journey? ● Was payment method credit card? Drop-off in Manhattan and tip over 25% are significantly correlated events. But this result is differentially private, so I cannot easily tell if a given journey was included in the training dataset or not.
  • 17. Problem: model-check security properties on private source code. Privacy-Preserving Model Checking
  • 18. ● Problem: Check security properties on (private) source code. ● “Public” equivalent: MOPS [1], and some others. – Security property expressed as regular expression over sequences of instructions – Find all paths in control flow graph that match path ● Application of Private Regular Path Queries [1] Hao Chen and David Wagner. 2002. MOPS: an infrastructure for examining security properties of software. In Proceedings of the 9th ACM conference on Computer and communications security (CCS '02), Vijay Atluri (Ed.). ACM, New York, NY, USA, 235-244. DOI=http://dx.doi.org/10.1145/586110.586142 Privacy-Preserving Model Checking
  • 19. Secure queries on graph data
  • 20. Simple Example 1 #include <stdio.h> 2 #include <sys/types.h> 3 #include <unistd.h> 4 #include <pwd.h> 5 6 void drop_priv() 7 { 8 struct passwd *passwd; 9 10 if ((passwd = getpwuid(getuid())) == NULL) 11 { 12 printf("getpwuid() failed"); 13 return; 14 } 15 printf("Drop user %s's privilegen", passwd- >pw_name); 16 seteuid(getuid()); 17 } 18 19 int main(int argc, char *argv[]) 20 { 21 drop_priv(); 22 printf("About to execn"); hello.c
  • 21. Simple Example Control flow graph Security property FSA (system call with root priviledge)
  • 22. Interesting case: distributed private graph (code) main.c library.c
  • 23. Related Work Verification Across Intellectual Property Boundaries [2]: [2] Chaki, Sagar, Christian Schallhart, and Helmut Veith. "Verification across intellectual property boundaries." ACM Transactions on Software Engineering and Methodology (TOSEM) 22.2 (2013): 15.
  • 24. Related Work Verification Across Intellectual Property Boundaries [2] They also say... “While we are aware of advanced methods such as secure multiparty computation [Goldreich 2002] and zeroknowledge proofs [Ben-Or et al. 1988], we believe that they are impracticable for our problem, as such methods cannot be easily wrapped over given validation tools. Finally, we believe that any advanced method without an intuitive proof for its secrecy will be heavily opposed by the supplier—and might therefore be hard to establish in practice.”
  • 25. Case study: thttpd ● Tiny http server ● 2 main modules (thttp.c and libhttp.c) thttp.c (2k loc) libhttp.c (4k loc)
  • 26. thttpd control flow graph... ● 2 main modules only ● functions are disconnected
  • 27. thttpd: next steps ● Adapt private Regular Path Queries work for pushdown automata ● Find some bugs. ● Write paper. ● Voila!