| 加藤 陸 | M, 2回目発表 | ソフトウェア設計学 | 飯田 元, | 林 優一, | 柏 祐太郎, | Reid Brittany |
|
title: Proposal for Just-In-Time Vulnerability Prediction Using Continuous Fuzzing Data
abstract: In recent years, security issues caused by vulnerabilities in open source software (OSS) have been reported. Fuzzing has been highlighted as a promising approach for efficiently detecting such vulnerabilities. However, it is known to require substantial computational resources and execution time. Consequently, a considerable delay often occurs between the introduction of a software vulnerability and its detection via fuzzing. In this study, we propose a method to detect vulnerable changes at the point when they are committed to the repository. Specifically, we construct a machine learning model that utilizes daily reports from continuous fuzzing where short duration fuzzing is performed on a daily basis to identify vulnerabilities in program changes based on the fuzzing completion state and past trends. language of the presentation: Japanese | ||||||
| 白井 達也 | M, 2回目発表 | ソフトウェア設計学 | 飯田 元, | 林 優一, | 柏 祐太郎, | Reid Brittany |
|
title: A Large-Scale Empirical Investigation into the Effectiveness of Continuous Fuzzing
abstract: In recent years, numerous software vulnerabilities have been reported, and their exploitation has had a significant impact on society. Fuzzing has gained attention as an efficient method for discovering vulnerabilities. In particular, continuous fuzzing, which is implemented as a continuous integration process for short-term fuzzing, has been gaining popularity. However, how continuous fuzzing contributes to vulnerability detection remains unclear. Therefore, this study acquires and analyzes data on vulnerabilities and coverage from OSS-Fuzz, a service that performs continuous fuzzing, to investigate the effectiveness of the number of continuous fuzzing iterations and coverage in discovering vulnerabilities. An empirical study targeting 878 projects participating in OSS-Fuzz revealed that (1) a large number of vulnerabilities exist before the integration of continuous fuzzing, and many are detected in the initial stage, (2) coverage continues to increase during continuous fuzzing, and (3) the increase in coverage contributes to vulnerability detection in continuous fuzzing. language of the presentation: Japanese | ||||||
| 青木 悠真 | M, 2回目発表 | サイバーレジリエンス構成学 | 門林 雄基, | 林 優一, | 妙中 雄三 | |
|
title: Toward resilient servers
abstract: Practitioners frequently modify server settings, and even minor faults in these changes can lead to serious outages or security vulnerabilities. Current methods to ensure reliability, such as Infrastructure as Code, often require excessive engineering effort. To address this, we propose an LLM-based approach to automatically check server configurations. Our aim is to build a tool that can detect faults before deployment, enhancing system resilience. In this session, we will discuss the foundational background of our research, present the progress we have made so far, and outline our future plans. language of the presentation: Japanese | ||||||
| 野口 真生 | M, 2回目発表 | サイバーレジリエンス構成学 | 門林 雄基, | 林 優一, | 妙中 雄三 | |
|
title: Proposal for a ROP attack countermeasure compiler for IoT devices using RISC-V
abstract: *** With the spread of IoT devices, their security has become an urgent issue. Among these, ROP attacks, a type of control flow modification attack, pose a threat. ROP attacks exploit programme vulnerabilities and connect code fragments (ROP gadgets) within executable files to execute arbitrary code intended by the attacker. Conventional countermeasures include ASLR, CFI, and DEP, but there are cases where these can be bypassed. In this study, we target IoT devices using RISC-V and propose a new ROP attack countermeasure at the compiler level. Specifically, we aim to make ROP attacks more difficult by modifying the register allocation process in the LLVM backend and randomising the rules for register usage during each compilation. language of the presentation: Japanese 発表題目:RISC-Vを用いたIoT機器へのROP攻撃対策コンパイラの提案 発表概要:IoT機器の普及に伴い、そのセキュリティついては喫緊の課題となっている。その中でも、制御フロー改変攻撃の一種であるROP攻撃は脅威である。ROP攻撃は、プログラムの脆弱性を悪用し、実行ファイル内のコード片(ROPガジェット)をつなぎ合わせることで攻撃者の意図する任意のコードを実行させる攻撃である。従来の対策として、ASLRやCFI、DEPなどが存在するが、これらをバイパスするケースも存在する。 本研究では、RISC-Vを用いたIoT機器を対象とし、コンパイラレベルでの新たなROP攻撃対策を提案する。具体的には、LLVM内のバックエンドのレジスタ割り当てプロセスに変更を加え、コンパイルするごとにレジスタの使用ルールをランダム化することで、ROP攻撃を困難にすることを目標とする。 | ||||||
| 辻 響貴 | M, 2回目発表 | 生体画像知能 | 大竹 義人, | 加藤 博一, | Soufi Mazen, | GU YI | |
|
title: Estimating the Bone Mineral Density from a Plain X-ray Image around Lumbar Spine via Bone Density Distribution Map Generation
abstract:Although methods such as DXA and QCT are widely used today for diagnosing diseases caused by reduced bone mineral density (BMD), such as osteoporosis, their application in routine clinical practice remains limited due to concerns over cost and radiation exposure. To overcome these issues, research is advancing on estimating bone mineral density from plain X-ray images. Among these efforts, an approach using Generative Adversarial Networks (GANs) enables highly accurate bone mineral density estimation without the need for complex preprocessing or large datasets, by using Digitally Reconstructed Radiograph (DRR) images generated from the trained generator. In this study, we report on our attempt to further improve the accuracy of bone mineral density estimation for the lumbar spine by advancing this GAN-based approach that relies on generating bone mineral density distribution maps. language of the presentation:Japanese 発表題目:骨密度分布マップ生成法に基づく腰椎単純X線画像からの骨密度推定 発表概要:骨粗鬆症のような骨密度低下に起因する疾患の診断において,DXA 法やQCT法といった計測法は,今日広く用いられるものの,コストや放射線被曝の観点から日常診療への適用には課題がある.これらの課題を克服する手段として,単純 X 線画像から骨密度を推定する研究が進展している.その中で,単純X線画像から骨密度を推定するための,敵対的生成ネットワークを用いたアプローチは,訓練後の生成器から生成されるDRR(Digitally Reconstructed Radiographs)画像を用いることで,複雑な前処理や大規模なデータセットを必要としない高精度な骨密度推定を可能にしている.本研究では,敵対的生成ネットワークを用いた骨密度分布マップ生成法に基づく推定のアプローチを発展させ,腰椎を対象として,骨密度推定精度のさらなる向上を試みたのでその結果について報告する. | |||||||
| 峯 悠大 | M, 2回目発表 | ソーシャル・コンピューティング | 荒牧 英治, | 渡辺 太郎, | 若宮 翔子, | Peng Shaowen, | 大竹 義人 |
|
title: FIM Estimation from Rehabilitation Free-Text Medical Records Using LLM
abstract: The Functional Independence Measure (FIM) is the gold standard outcome metric in rehabilitation medicine, comprising 18 items across motor and cognitive domains rated on a 7-point scale. FIM scores are indispensable for discharge planning and prognosis estimation. However, clinical assessments occur only biweekly due to resource constraints, resulting in sparse time-series data that inadequately captures functional recovery dynamics. Conversely, rehabilitation free-text notes contain rich longitudinal descriptions of physical therapy (PT), occupational therapy (OT), and speech-language-hearing therapy (ST) activities and patient responses. These daily records contain valuable progress information, yet systematic methods to extract quantitative assessments from narrative data remain under-developed. This study leveraged the large language model gemma-2-9b-it to infer time-point FIM scores from rehabilitation free-text notes, systematically evaluated estimation accuracy by disease type (cerebral infarction [CI], hip fracture [HF], vertebral body fracture [VBF]) and therapy discipline (PT, OT, ST), examined estimation bias through admission-FIM stratification, and quantified information-source bias by computing FIM-item mention rates across therapy disciplines. language of the presentation: Japanese 発表題目: LLMを用いたリハビリテーション自由記述カルテからのFIM推定 発表概要: 機能的自立度評価(Functional Independence Measure, FIM)はリハビリテーション医療における標準的アウトカム指標であり、退院支援や予後推定に不可欠である。しかし、臨床現場におけるFIM測定の頻度は、2024年6月の診療報酬改定以前は4週間に1回、改定後も2週間に1回以上にとどまっており、時系列データとしては依然として疎である。一方、リハビリテーションの自由記述カルテには理学療法(Physical Therapy, PT)・作業療法(Occupational Therapy, OT)・言語聴覚療法(Speech-language-hearing Therapy, ST)の詳細な経時的記録が大量に蓄積されているが、それらを体系的に解析する手法は十分に確立されていない。本研究では、大規模言語モデル(Large Language Model, LLM)であるgemma-2-9b-itを用いてリハビリテーションカルテから各時点のFIMを推定し、その精度を疾患別〔脳梗塞(Cerebral Infarction, CI)、大腿骨近位部骨折(Hip Fracture, HF)、椎体骨折(Vertebral Body Fracture, VBF)〕および療法区分別(PT・OT・ST)に評価した。また、以下の2点の分析を行った。①入院時のFIMスコアを層別化し、誤差のバイアス(重介助例の過大評価・監視・自立例の過小評価)の有無を評価、②FIM推定結果からカルテのFIM項目言及率を算出し療法記録の情報源偏りを定量化した。 | |||||||
| 宮本 杏樹 | M, 2回目発表 | サイバネティクス・リアリティ工学 | 清川 清, | 加藤 博一, | 内山 英昭, | Perusquia Hernandez Monica, | 平尾 悠太朗 |
|
title: Vehicular telepresence with reduced communication delays by presenting images of the location and road surface conditions predicted from the input.
abstract:Telepresence refers to 'the feeling of being physically present in a remote or simulated location'.Teleoperation of robots with this telepresence is expected to improve efficiency and reduce the workload of operators.However, in an environment where communication delays occur during teleoperation, it becomes very difficult for the operator to operate the robot, leading to reduced work accuracy and increased task completion time.Therefore, we propose a system that enables stress-free operation in environments where communication delays occur, by reducing the perception of delay felt by the operator.As a proposed method, when an input is received from the operator, the video image at the predicted destination point is immediately presented to the operator from the input, before the robot moves to the point as input.The system also presents to the operator the predicted swaying of the robot based on the unevenness of the road surface at the destination, thereby strengthening the sense of physical and spatial unity, and aiming to create a system in which the operator does not feel any delay. language of the presentation: Japanese 発表題目: 入力から予測される地点の映像と路面状況の提示による通信遅延を軽減した車両型テレプレゼンス 発表概要: テレプレゼンスとは、「物理的に離れた場所やシミュレーションされた場所に存在する感覚」を指す。このテレプレゼンスを伴ったロボットの遠隔操作は、効率性の向上やオペレータの作業負荷の軽減が期待できる。しかし遠隔操作の際に通信遅延が生じる環境においては、オペレータにとって操作が非常に困難となり、作業精度の低下やタスク完了時間の増加に繋がる。よって、通信遅延が生じる環境でもオペレータが感じる遅延の知覚を軽減することで、ストレスを感じることなく操作が可能であるシステムを提案する。提案手法として、オペレータから入力を受け付けた際、ロボットが入力通りの地点へ移動するよりも前に、予測される移動先の地点での映像を入力から即時にオペレータに提示する。またこのとき、移動先での路面の凹凸から予測されるロボットの揺れも同時にオペレータに提示することで、身体的および空間的な一体感を強化し、オペレータに遅延を感じさせないシステムを目指す。 | |||||||
| 八島 永知 | M, 2回目発表 | サイバネティクス・リアリティ工学 | 清川 清, | 加藤 博一, | 内山 英昭, | Perusquia Hernandez Monica, | 平尾 悠太朗 |
|
title: A Proposal for a Lurking Support System for Newcomers in Social VR
In social VR, the embodiment mediated by avatars and the synchronicity of conversations create a participation barrier for newcomers. This makes lurking, an observational activity essential for learning a community's culture, difficult. This research aims to technically mitigate this participation barrier and to create a "psychologically safe zone" where newcomers can securely focus on lurking. As an approach, we conceptualize a method to support the advantages of traditional online communities, namely "invisibility" and "asynchronicity," within the VR space. This presentation will describe the concept of this method and the direction of the experimental plan to verify its effectiveness. language of the presentation: japanese 発表題目:ソーシャルVRにおける新規参入者のためのラーキング支援システムの提案 発表概要: ソーシャルVRではアバターの「身体性」と会話の「同期性」が,新規参加者の参加障壁となっている .これにより,コミュニティの文化を学ぶ上で不可欠な観察活動「ラーキング」が困難である .本研究は,この参加障壁を技術的に緩和し,安心してラーキングに専念できる「心理的な安全圏」の創出を目指す.そのアプローチとして,旧来のオンラインコミュニティの利点である「不可視性」と「非同期性」をVRで支援する手法を構想する.本発表では,この手法構想と,その有効性を検証するための実験計画の方向性を述べる. | |||||||