DOCSLIB.ORG

Inference and Regeneration of Programs That Store and Retrieve Data Martin Rinard and Jiasi Shen

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Inference and Regeneration of Programs That Store and Retrieve Data Martin Rinard and Jiasi Shen Computer Science and Artificial Intelligence Laboratory Technical Report MIT-CSAIL-TR-2017-006 April 24, 2017 Inference and Regeneration of Programs that Store and Retrieve Data Martin Rinard and Jiasi Shen massachusetts institute of technology, cambridge, ma 02139 usa — www.csail.mit.edu Inference and Regeneration of Programs that Store and Retrieve Data Martin Rinard Jiasi Shen EECS & CSAIL EECS & CSAIL MIT MIT [email protected] [email protected] Abstract networked, distributed computing platforms. A common As modern computation platforms become increasingly com- scenario, for example, is for a program to compute over data plex, their programming interfaces are increasingly dicult stored across many machines in a cloud computing environ- to use. is complexity is especially inappropriate given the ment to generate results that are then distributed via the relatively simple core functionality that many of the compu- Internet for graphical presentation on remote devices. tations implement. We present a new approach for obtaining Modern soware environments rely heavily on soware soware that executes on modern computing platforms with packages that help developers deal with the resulting com- complex programming interfaces. Our approach starts with plexity. Examples include application server frameworks a simple seed program, wrien in the language of the devel- such as JBoss and IBM WebSphere, key/value storage sys- oper’s choice, that implements the desired core functionality. tems such as Redis, NoSQL databases such as HBase, dis- It then systematically generates inputs and observes the re- tributed memory caching systems such as memcached, and sulting outputs to learn the core functionality. It nally auto- cluster computing frameworks such as Spark and MapRe- matically regenerates new code that implements the learned duce. While the implementations of such systems encap- core functionality on the target computing platform. is sulate the otherwise potentially overwhelming complexity regenerated code contains both (a) boilerplate code for the of coordinating the actions of the components of large dis- complex programming interfaces that the target computing tributed computing systems, the programming interfaces platform presents and (b) systematic error and vulnerability they provide are far from easy to use (as can be seen in checking code that makes the new implementations robust the large volume of questions posted to web sites such as and secure. By providing a productive new mechanism for Stack Overow [6]). Indeed, developers that work with such capturing and encapsulating knowledge about how to use systems spend much of their time constructing appropriate modern complex interfaces, this new approach promises to search terms to nd previously developed code that they can greatly reduce the developer eort required to obtain se- copy and adapt for their needs. e complexity of these pro- cure, robust soware that executes on modern computing gramming interfaces can be seen as especially inappropriate platforms. given the relatively simple core functionality that many of the computations implement. At a conceptual level, such computations oen simply store and retrieve data or per- 1 Introduction form simple computations on the stored data. e complexity Within the last decade, undergraduate computer science comes not from the core functionality that the computation enrollments, both within and outside the major, have dra- implements, but from the computing platform on which the matically increased [54]. As a result, undergraduates are computation executes. now acquiring basic programming skills as a normal part We propose a new approach for developing soware for of their college education. Indeed, the ability to write (rela- such computing platforms. Instead of coding to complex pro- tively simple) programs, like the ability to read, write, and gramming interfaces that existing soware packages export, perform basic mathematical reasoning, is now increasingly developers implement the core functionality in a seed pro- seen as part of the personal portfolio of a literate person in gram using the programming language of their choice. e our culture [32, 45]. seed program uses only the simplest standard programming At the same time, the systems on which even simple pro- interfaces, such as standard text input and output interfaces. duction soware must execute are becoming increasingly Our system rst interacts with the seed program to learn complex. Some decades ago most soware executed on a sin- its core functionality. e system then regenerates (a poten- gle machine, with the programming environment providing tially augmented version of) the computation that uses so- a few simple abstractions (such as le system interfaces) for phisticated soware packages to implement the learned core accessing the devices aached to that machine. Most so- functionality on the new, potentially much more complex ware today, in contrast, is expected to execute in complex, computing platform. In eect, the knowledge and expertise , required to use the relevant soware packages are all encap- . sulated in our regenerator. is approach can be particularly 1 ,, Martin Rinard and Jiasi Shen productive in a world in which basic programming skills are Reinterpretation: Many modern programming languages widely available, but the specialized knowledge and expertise • support a simple and basic model of computation (sequen- required to productively use specialized soware packages tial execution, le input and output, standard data struc- is much scarcer. is is the case for the world we are now tures, a single address space) that usually enables straight- entering as a society: such specialized knowledge of spe- forward implementation of the desired core functionality. cialized soware packages is constantly changing, available In many cases, however, the goal is to implement this core to far fewer people, and more dicult to use for everyone functionality in a much more complex environment — to regardless of their skill level. Our approach is founded on operate on distributed data, to work with data stored in a several principles: relational database or key/value store, to access specialized computing devices, to execute time-consuming computa- Program Inference via Active Learning: Starting with tions in parallel, to package the core functionality into an • a seed program that (mostly) implements the desired core appealing graphical user interface potentially accessed via functionality, the system reverse engineers the seed pro- the Internet, or to access values available via remote sen- gram to infer a representation of the core functionality. sors. To support such implementations, the regeneration It uses active learning to drive the process — because the algorithm will reinterpret standard constructs to translate specication is a program, it is possible to design algo- them into implementations that operate successfully in rithms that systematically interact with the program to the new, more complex target context. learn the core functionality that it implements. In this paper we present a black box inference algo- 1.1 Scope rithm that interacts with the seed program by generating e initial scope of the approach is programs that implement inputs and observing the resulting outputs. Gray box and simple core functionality (such as storing and retrieving white box approaches can also be appropriate — they can data or performing simple calculations over that stored data) obtain certain kinds of information more quickly by ob- on complex hardware platforms. We anticipate several use serving aspects of the implementation, but may require cases: more involved mechanisms that (dynamically or statically) analyze the program and/or its execution. New So ware: In this use case, the seed implementation • is developed from scratch, typically by implementing a Noisy, Partial Specications: e inference algorithm • simple text-based interface in a widely-taught language should be designed to tolerate noise (in the form of imple- such as Python. ese use cases typically involve substan- mentation errors or overlooked corner cases) and partial tial reinterpretation and augmentation to re-implement implementations of the desired core functionality. e the functionality on more complex production comput- algorithm must therefore be able to isolate the desired ing environments and/or to provide the system with an common case behavior of the seed program and infer a enhanced user interface. general specication from that isolated behavior, all while Legacy Systems: In this use case, the developer starts identifying and discarding undesirable behavior (noise) • that should not be part of the specication. with a legacy system that implements the desired func- Such algorithms relieve the developer of the seed pro- tionality. Here one goal is to start with a system that gram of the need to consider and implement obscure cor- runs in an obsolete or otherwise undesirable computing ner cases. e developer can instead simply implement context to obtain a regenerated version that can operate the core common case functionality while omiing error successfully in a more modern context. Another goal is checking and code that handles corner cases. An advan- to start with a system that may have defects or security tage is that implementing simply the core functionality vulnerabilities to generate a program without defects or is oen substantially easier than implementing a robust vulnerabilities (by,
Load more

Recommended publications
  • X-XSS- Protection
    HTTP SECURITY HEADERS (Protection For Browsers) BIO • Emmanuel JK Gbordzor ISO 27001 LI, CISA, CCNA, CCNA-Security, ITILv3, … 11 years in IT – About 2 years In Security Information Security Manager @ PaySwitch Head, Network & Infrastructure @ PaySwitch Head of IT @ Financial Institution Bug bounty student by night – 1st Private Invite on Hackerone Introduction • In this presentation, I will introduce you to HyperText Transfer Protocol (HTTP) response security headers. • By specifying expected and allowable behaviors, we will see how security headers can prevent a number of attacks against websites. • I’ll explain some of the different HTTP response headers that a web server can include in a response, and what impact they can have on the security of the web browser. • How web developers can implement these security headers to make user experience more secure A Simple Look At Web Browsing Snippet At The Request And Response Headers Browser Security Headers help: ➢ to define whether a set of security precautions should be activated or Why deactivated on the web browser. ➢ to reinforce the security of your web Browser browser to fend off attacks and to mitigate vulnerabilities. Security ➢ in fighting client side (browser) attacks such as clickjacking, Headers? injections, Multipurpose Internet Mail Extensions (MIME) sniffing, Cross-Site Scripting (XSS), etc. Content / Context HTTP STRICT X-FRAME-OPTIONS EXPECT-CT TRANSPORT SECURITY (HSTS) CONTENT-SECURITY- X-XSS-PROTECTION X-CONTENT-TYPE- POLICY OPTIONS HTTP Strict Transport Security (HSTS)
    [Show full text]
  • Open Source Software As Intangible Capital: Measuring the Cost and Impact of Free Digital Tools Preliminary Draft October 31, 20181 Carol A
    Open Source Software as Intangible Capital: Measuring the Cost and Impact of Free Digital Tools Preliminary Draft October 31, 20181 Carol A. Robbins*(1), Gizem Korkmaz (2), José Bayoán Santiago Calderón (3), Daniel Chen (2), Claire Kelling (4) , Stephanie Shipp (2), Sallie Keller (2) Abstract Open source software is everywhere, both as specialized applications nurtured by devoted user communities, and as digital infrastructure underlying platforms used by millions daily, yet its value and impact are not currently measured (with small exceptions). We develop an approach to document the scope and impact of open source software created by all sectors of the economy: businesses, universities, government research institutions, nonprofits, and individuals. We use a bottom-up approach to measure subset of OSS projects and languages, collecting data on open source software languages R, Python, Julia, and JavaScript, as well as from the Federal Government’s code.gov website. Using lines of code and a standard model to estimate package developer time, we convert lines of code to resource cost. We estimate that the resource cost for developing R, Python, Julia, and JavaScript exceeds $3 billion dollars, based on 2017 costs. Applying this approach to open source software available on code.gov results in an estimated value of more than $1 billion, based on 2017 costs, as a lower bound for the resource cost of this software. We analyze the dependencies between software packages through network analysis and estimate re-use statistics. This reuse is one measure of relative impact. Key words: Open Source Software, Intangibles, Network Analysis National Center for Science and Engineering Statistics, National Science Foundation; 2) Social & Decision Analytics Division, Biocomplexity Institute & Initiative, University of Virginia; 3) Claremont Graduate University; 4) Pennsylvania State University 1 An earlier version of this paper was presented August 21, 2018 at the International Association for Research on Income and Wealth.
    [Show full text]
  • Identifying Javascript Skimmers on High-Value Websites
    Imperial College of Science, Technology and Medicine Department of Computing CO401 - Individual Project MEng Identifying JavaScript Skimmers on High-Value Websites Author: Supervisor: Thomas Bower Dr. Sergio Maffeis Second marker: Dr. Soteris Demetriou June 17, 2019 Identifying JavaScript Skimmers on High-Value Websites Thomas Bower Abstract JavaScript Skimmers are a new type of malware which operate by adding a small piece of code onto a legitimate website in order to exfiltrate private information such as credit card numbers to an attackers server, while also submitting the details to the legitimate site. They are impossible to detect just by looking at the web page since they operate entirely in the background of the normal page operation and display no obvious indicators to their presence. Skimmers entered the public eye in 2018 after a series of high-profile attacks on major retailers including British Airways, Newegg, and Ticketmaster, claiming the credit card details of hundreds of thousands of victims between them. To date, there has been little-to-no work towards preventing websites becoming infected with skimmers, and even less so for protecting consumers. In this document, we propose a novel and effective solution for protecting users from skimming attacks by blocking attempts to contact an attackers server with sensitive information, in the form of a Google Chrome web extension. Our extension takes a two-pronged approach, analysing both the dynamic behaviour of the script such as outgoing requests, as well as static analysis by way of a number of heuristic techniques on scripts loaded onto the page which may be indicative of a skimmer.
    [Show full text]
  • Bigfix Inventory Open Source Licenses and Notices
    The HCL license agreement and any applicable information on the web download page for HCL products refers Licensee to this file for details concerning notices applicable to code included in the products listed above ("the Program"). Notwithstanding the terms and conditions of any other agreement Licensee may have with HCL or any of its related or affiliated entities (collectively "HCL"), the third party code identified below is subject to the terms and conditions of the HCL license agreement for the Program and not the license terms that may be contained in the notices below. The notices are provided for informational purposes. Please note: This Notices file may identify information that is not used by, or that was not shipped with, the Program as Licensee installed it. IMPORTANT: HCL does not represent or warrant that the information in this NOTICES file is accurate. Third party websites are independent of HCL and HCL does not represent or warrant that the information on any third party website referenced in this NOTICES file is accurate. HCL disclaims any and all liability for errors and omissions or for any damages accruing from the use of this NOTICES file or its contents, including without limitation URLs or references to any third party websites. <<Begin Inventory Application Notices>> License Library Description License Reference Reference Type Copyrights Homepage Download Link Author Apache 2.0 ant-1.7.0.jar Apache Ant https://repo.maven.apache.org/maven2/org/apache/ant/ant/1.7.0/ant- 1.7.0.pom POM file "1999-2006 Copyright 1999-2006 The Apache Software Foundation 2002 Copyright 2002 Landmark" https://repo.maven.apache.org/maven2/org/apache/ant/ant/1.7.0/ant- 1.7.0.jar Apache Software Foundation Apache 2.0 cglib-nodep-2.2.2.jar Code generation library with shaded ASM dependecies POM file http://cglib.sourceforge.net/ https://repo.maven.apache.org/maven2/cglib/cglib-nodep/2.2.2/cglib- nodep-2.2.2.jar Apache 2.0 commons-codec-1.4.jar "The codec package contains simple encoder and decoders for various formats such as Base64 and Hexadecimal.
    [Show full text]
  • An Empirical Study of the Use of Integrity Verification Mechanisms
    An Empirical Study of the Use of Integrity Verification Mechanisms for Web Subresources Bertil Chapuis, Olamide Omolola, Mauro Cherubini, Mathias Humbert, Kévin Huguenin To cite this version: Bertil Chapuis, Olamide Omolola, Mauro Cherubini, Mathias Humbert, Kévin Huguenin. An Empiri- cal Study of the Use of Integrity Verification Mechanisms for Web Subresources. The Web Conference (WWW), Apr 2020, Taipei, Taiwan. pp.34-45, 10.1145/3366423.3380092. hal-02435688 HAL Id: hal-02435688 https://hal.archives-ouvertes.fr/hal-02435688 Submitted on 20 Jan 2020 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. An Empirical Study of the Use of Integrity Verification Mechanisms for Web Subresources Bertil Chapuis Olamide Omolola Mauro Cherubini UNIL – HEC Lausanne TU Graz UNIL – HEC Lausanne Switzerland Austria Switzerland [email protected] [email protected] [email protected] Mathias Humbert Kévin Huguenin armasuisse S+T UNIL – HEC Lausanne Switzerland Switzerland [email protected] [email protected] ABSTRACT 1 INTRODUCTION Web developers can (and do) include subresources such as scripts, The Web is a set of interlinked resources identied by their URLs. stylesheets and images in their webpages.
    [Show full text]
  • Phonegap and Angularjs for Cross-Platform Development
    www.allitebooks.com PhoneGap and AngularJS for Cross-platform Development Build exciting cross-platform applications using PhoneGap and AngularJS Yuxian, Eugene Liang BIRMINGHAM - MUMBAI www.allitebooks.com PhoneGap and AngularJS for Cross-platform Development Copyright © 2014 Packt Publishing All rights reserved. No part of this book may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written permission of the publisher, except in the case of brief quotations embedded in critical articles or reviews. Every effort has been made in the preparation of this book to ensure the accuracy of the information presented. However, the information contained in this book is sold without warranty, either express or implied. Neither the author, nor Packt Publishing, and its dealers and distributors will be held liable for any damages caused or alleged to be caused directly or indirectly by this book. Packt Publishing has endeavored to provide trademark information about all of the companies and products mentioned in this book by the appropriate use of capitals. However, Packt Publishing cannot guarantee the accuracy of this information. First published: October 2014 Production reference: 1241014 Published by Packt Publishing Ltd. Livery Place 35 Livery Street Birmingham B3 2PB, UK. ISBN 978-1-78398-892-1 www.packtpub.com Cover image by Aniket Sawant ([email protected]) [ FM-2 ] www.allitebooks.com Credits Author Project Coordinator Yuxian, Eugene Liang Kartik Vedam Reviewers Proofreaders Simon Basset Maria Gould Razi Mahmood Elinor Perry-Smith Commissioning Editor Indexers Kunal Parikh Monica Ajmera Mehta Tejal Soni Acquisition Editor Meeta Rajani Production Coordinators Kyle Albuquerque Content Development Editor Nilesh R.
    [Show full text]
  • Bigfix Platform Open Source Licenses and Notices
    ---------------------------------- BigFix Platform 10.0 Jan 2021 ---------------------------------- ------------------------------------------------------------------------- ------------------------------------------------------------------------- The HCL license agreement and any applicable information on the web download page for HCL products refers Licensee to this file for details concerning notices applicable to code included in the products listed above ("the Program"). Notwithstanding the terms and conditions of any other agreement Licensee may have with HCL or any of its related or affiliated entities (collectively "HCL"), the third party code identified below is subject to the terms and conditions of the HCL license agreement for the Program and not the license terms that may be contained in the notices below. The notices are provided for informational purposes. Please note: This Notices file may identify information that is not used by, or that was not shipped with, the Program as Licensee installed it. IMPORTANT: HCL does not represent or warrant that the information in this NOTICES file is accurate. Third party websites are independent of HCL and HCL does not represent or warrant that the information on any third party website referenced in this NOTICES file is accurate. HCL disclaims any and all liability for errors and omissions or for any damages accruing from the use of this NOTICES file or its contents, including without limitation URLs or references to any third party websites. -------------------------------------------------------------------------
    [Show full text]
  • Bigfix Platform Open Source Licenses and Notices
    ---------------------------------- BigFix Platform 10.0 July 2021 ---------------------------------- ------------------------------------------------------------------------- ------------------------------------------------------------------------- The HCL license agreement and any applicable information on the web download page for HCL products refers Licensee to this file for details concerning notices applicable to code included in the products listed above ("the Program"). Notwithstanding the terms and conditions of any other agreement Licensee may have with HCL or any of its related or affiliated entities (collectively "HCL"), the third party code identified below is subject to the terms and conditions of the HCL license agreement for the Program and not the license terms that may be contained in the notices below. The notices are provided for informational purposes. Please note: This Notices file may identify information that is not used by, or that was not shipped with, the Program as Licensee installed it. IMPORTANT: HCL does not represent or warrant that the information in this NOTICES file is accurate. Third party websites are independent of HCL and HCL does not represent or warrant that the information on any third party website referenced in this NOTICES file is accurate. HCL disclaims any and all liability for errors and omissions or for any damages accruing from the use of this NOTICES file or its contents, including without limitation URLs or references to any third party websites. -------------------------------------------------------------------------
    [Show full text]
  • Detecting Javascript Obfuscation Through Concealed Browser API Usage
    Hiding in Plain Site: Detecting JavaScript Obfuscation through Concealed Browser API Usage Shaown Sarker Jordan Jueckstock Alexandros Kapravelos North Carolina State University North Carolina State University North Carolina State University [email protected] [email protected] [email protected] ABSTRACT property moving to the browser’s client-side. Both of these in- In this paper, we perform a large-scale measurement study of creasingly involve JS obfuscation as a method to either evade and JavaScript obfuscation of browser APIs in the wild. We rely on obstruct detection [27, 38], or to protect the intellectual property a simple, but powerful observation: if dynamic analysis of a script’s from being pirated [11]. Unfortunately, we currently lack the tools behavior (specifically, how it interacts with browser APIs) reveals to automatically analyze the web and identify new obfuscation browser API feature usage that cannot be reconciled with static techniques, and this affects our ability to accurately measure and analysis of the script’s source code, then that behavior is obfus- detect web threats. cated. To quantify and test this observation, we create a hybrid Despite the prevalence of JS obfuscation, it is addressed briefly as analysis platform using instrumented Chromium to log all browser a side-effect in a number of prior research work investigating mali- API accesses by the scripts executed when a user visits a page. We cious JS-based attacks [9, 13, 17, 34]. A number of studies explored filter the API access traces from our dynamic analysis througha JS obfuscation in combination with identifying JS maliciousness, static analysis tool that we developed in order to quantify how the underlying implication being malicious JS should possess ob- much and what kind of functionality is hidden on the web.
    [Show full text]
  • Conan Documentation Release 1.21.3
    Conan Documentation Release 1.21.3 The Conan team Sep 24, 2021 CONTENTS 1 Introduction 3 1.1 Open Source...............................................3 1.2 Decentralized package manager.....................................3 1.3 Binary management...........................................4 1.4 Cross platform, build system agnostic..................................4 1.5 Stable...................................................5 2 Install 7 2.1 Install with pip (recommended).....................................7 2.2 Install from brew (OSX).........................................8 2.3 Install from AUR (Arch Linux).....................................8 2.4 Install the binaries............................................9 2.5 Initial configuration...........................................9 2.6 Install from source............................................9 2.7 Update.................................................. 10 2.8 Python 2 Deprecation Notice....................................... 10 3 Getting Started 11 3.1 An MD5 hash calculator using the Poco Libraries............................ 11 3.2 Installing Dependencies......................................... 14 3.3 Inspecting Dependencies......................................... 15 3.4 Searching Packages........................................... 17 3.5 Building with Other Configurations................................... 18 4 Using packages 21 4.1 Installing dependencies......................................... 21 4.2 Using profiles............................................... 26 4.3
    [Show full text]
  • 02 Cloud-Native-Full-Stack.Pdf
    Cloud Native Full Stack Shoulde rs of Gia nts a s a Se rvice Building on previous discoveries What If You Could Start Over… Sebastian Nilsson ● In th e IT-business since 2003 ○ Software since 2007 ○ CTO for 3 year at startup ● Microsoft-ecosystem focus ○ Azure Cloud ○ .NET ○ Azure DevOps ● Leadership ○ Agile /Scrum ○ Recruitment (Interviews/screenings) Warning: Powerpoint-based presentation! Warning 2: Technology Overload ● Doma in ● Architecture Agenda ● De vSe cOps (CI/CD) ● Azure (Cloud) Build a fully functiona l, ● SaaS-services mature startup company ● Frameworks/Libraries - Focus on your core business - Let the rest be others' core business Minimum Viable Product (MVP) Time To Market (TTM) They make all the LEGO pieces just the correct size and snapping them together a lot of fun . -- Scott Hanselman Best Time to Develop Software ● Cloud ○ App Services - We b -sites/APIs ○ Serverless - Azure Functions ○ Azure Service Bus ○ Se curity - Azure Ke y Va ult ● Azure DevOps ○ CI - Build/Cre a te Artifa cts ○ CD - Deployment ● Software as a Service (SaaS) ○ Authentication/Authorization - Auth0 ○ Storage/Data - Azure Storage ○ CRM - Airta ble ● Frameworks/Libraries/Tools/CLIs Domain Web-scraping as a Se rvice Domain / Problem to solve GET /api/content?url=... --- { "url": "http...", "content": "NBC Fires Lauer, and Accusations Multiply...", "image": "http...", "format": "text" } Introducing : Project WebFetch Scraping URLs ● Core: Getting content from URL ● Core: Transform content to usable format ○ Ra w HTML-content ○ Main content as plain
    [Show full text]
  • Essential Studio Software License Agreement
    ESSENTIAL STUDIO SOFTWARE LICENSE AGREEMENT This Software License Agreement (the “Agreement”) is a legal agreement between you (“You”, “Your”, or “Customer”) and Syncfusion, Inc., a Delaware corporation with its principal place of business located at 2501 Aerial Center Parkway, Suite 200, Morrisville, NC 27560 (“Syncfusion”). This license is for Essential Studio Enterprise Edition, Essential Studio WPF Edition, Essential Studio PDF Edition, Essential Studio Xamarin Edition, and Essential Studio Win Forms Edition. Syncfusion licenses its products on a per-copy basis (referred to below as Retail Licenses) or under a project license, a corporate division license, or an enterprise license. Your right to use any given copy of a Syncfusion Essential Studio software product is generally set forth in this Agreement. In the event that your copy of this software product is licensed under a project license, a division license, or global license, additional terms and conditions shall also apply which will be set forth in a separate written and signed agreement. Carefully read all of the terms and conditions of this Agreement prior to downloading or installing or using the Licensed Product (as that term is defined below). This Agreement between you and Syncfusion sets forth the terms and conditions of your use of the Licensed Product. For the purposes of this Agreement, the effective date of this Agreement shall be the date upon which you click the “YES” button below. BY CLICKING THE “YES” BUTTON, YOU ARE ACCEPTING ALL OF THE TERMS OF THIS AGREEMENT AND AGREE TO BE BOUND BY THE TERMS OF THIS AGREEMENT. THIS AGREEMENT CONSTITUTES A BINDING CONTRACT.
    [Show full text]