Your search keyword '"software security"' showing total 981 results

951. Software Security in Practice.

Author

Chess, Brian and Arkin, Brad

Abstract

Until now, this department has focused on the kinds of activities that constitute a secure development life cycle. Now, it's broadening its scope to consider the ongoing organizational commitments necessary to facilitate secure software development. To support this, the department editors will employ the Building Security In Maturity Model (BSIMM). BSIMM provides a model and common language to describe similar activities observed across what are otherwise diverse software-producing environments. [ABSTRACT FROM PUBLISHER]

Published

2011

952. Improving dynamic analysis with data flow analysis

Author

Chang, Walter Chochen

Subjects

Data flow, Software testing, Software security, Dynamic analysis, Static analysis, Test input generation

Abstract

Many challenges in software quality can be tackled with dynamic analysis. However, these techniques are often limited in their efficiency or scalability as they are often applied uniformly to an entire program. In this thesis, we show that dynamic program analysis can be made significantly more efficient and scalable by first performing a static data flow analysis so that the dynamic analysis can be selectively applied only to important parts of the program. We apply this general principle to the design and implementation of two different systems, one for runtime security policy enforcement and the other for software test input generation. For runtime security policy enforcement, we enforce user-defined policies using a dynamic data flow analysis that is more general and flexible than previous systems. Our system uses the user-defined policy to drive a static data flow analysis that identifies and instruments only the statements that may be involved in a security vulnerability, often eliminating the need to track most objects and greatly reducing the overhead. For taint analysis on a set of five server programs, the slowdown is only 0.65%, two orders of magnitude lower than previous taint tracking systems. Our system also has negligible overhead on file disclosure vulnerabilities, a problem that taint tracking cannot handle. For software test case generation, we introduce the idea of targeted testing, which focuses testing effort on select parts of the program instead of treating all program paths equally. Our “Bullseye” system uses a static analysis performed with respect to user-defined “interesting points” to steer the search down certain paths, thereby finding bugs faster. We also introduce a compiler transformation that allows symbolic execution to automatically perform boundary condition testing, revealing bugs that could be missed even if the correct path is tested. For our set of 9 benchmarks, Bullseye finds bugs an average of 2.5× faster than a conventional depth-first search and finds numerous bugs that DFS could not. In addition, our automated boundary condition testing transformation allows both Bullseye and depth-first search to find numerous bugs that they could not find before, even when all paths were explored.

Published

2010

953. Dynamic Application Level Security Sensors

Author

Rathgeb, Christopher Thomas

Subjects

Reverse Engineering, software security, dynamic sensors, data mining, code injection, Other Computer Engineering

Abstract

The battle for cyber supremacy is a cat and mouse game: evolving threats from internal and external sources make it difficult to protect critical systems. With the diverse and high risk nature of these threats, there is a need for robust techniques that can quickly adapt and address this evolution. Existing tools such as Splunk, Snort, and Bro help IT administrators defend their networks by actively parsing through network traffic or system log data. These tools have been thoroughly developed and have proven to be a formidable defense against many cyberattacks. However, they are vulnerable to zero-day attacks, slow attacks, and attacks that originate from within. Should an attacker or some form of malware make it through these barriers and onto a system, the next layer of defense lies on the host. Host level defenses include system integrity verifiers, virus scanners, and event log parsers. Many of these tools work by seeking specific attack signatures or looking for anomalous events. The defenses at the network and host level are similar in nature. First, sensors collect data from the security domain. Second, the data is processed, and third, a response is crafted based on the processing. The application level security domain lacks this three step process. Application level defenses focus on secure coding practices and vulnerability patching, which is ineffective. The work presented in this thesis uses a technique that is commonly employed by malware, dynamic-link library (DLL) injection, to develop dynamic application level security sensors that can extract fine-grain data at runtime. This data can then be processed to provide stronger application level defense by shrinking the vulnerability window. Chapters 5 and 6 give proof of concept sensors and describe the process of developing the sensors in detail.

Published

2010

954. Software Security: State of the Art.

Author

Anderson, R.

Abstract

Ross Anderson reviews Gary McGraw's book, Software Security: Building Security In. [ABSTRACT FROM PUBLISHER]

Published

2007

955. Apple, Android Browsers Vulnerable to ‘FREAK Attack’.

Author

AP

Abstract

Millions of people may have been left vulnerable [ABSTRACT FROM PUBLISHER]

Published

2015

956. Developing a Novel Holistic Taxonomy of Security Requirements

Author

Latifa Ben Arfa Rabai and Neila Rjaibi

Subjects

Software Security, Authentication, Security Requirement Sub-Factors, Cloud computing security, Software engineering, Computer science, Standard of Good Practice, Information security, Security requirements taxonomy, Computer security model, Computer security, computer.software_genre, Security testing, Security information and event management, Security engineering, ITIL security management, Security service, Software security assurance, Security through obscurity, Security convergence, General Earth and Planetary Sciences, computer, General Environmental Science, Model

Abstract

Defining security requirements is of prime importance for all systems; we usually study the generic ones like confidentiality, integrity, availability, authentication, non-repudiation and privacy. It is thus imperative to evaluate all the possible extended requirements. A literature review has shown that there are various and different security requirements models, some of which are examined and others are neglected. Moreover, security lacks a unified taxonomy of security requirements. In this paper, we refer to the variety of security requirements models from the literature to drive an aggregate model and move away from the individualistic proposed taxonomy to a hierarchical and standard security requirement model. We define and propose a novel and holistic security requirement taxonomy at two levels of abstraction that incorporates 13 basic and standard requirements and then refined in layers into 31 security requirements sub-factors. These requirements are discussed in the open literature. Our taxonomy offers a good understanding of security constraints relevant to the system functions in the field of computer security. When it comes to decision making, it is recommended to establish which security measures should be relevant to the entire security requirements taxonomy.

957. An Industrial Perspective

Author

Abrahamsson, Pekka, Botterweck, Goetz, Ghanbari, Hadi, Jaatun, Martin Gilje, Kettunen, Petri, Mikkonen, Tommi J., Mjeda, Anila, Münch, Jürgen, Duc, Anh Nguyen, Russo, Barbara, Wang, Xiaofeng, University of Jyväskylä, Department of Information and Service Management, University of Limerick, SINTEF, University of Helsinki, Reutlingen University, University of South-Eastern Norway, Free University of Bozen-Bolzano, Aalto-yliopisto, and Aalto University

Subjects

Energy, Agile Development, Healthcare, Software security, Automotive, Secure software engineering, CPS, Development methodologies, Continuous deployment, Empirical Research, Aerospace

Abstract

With the expansion of cyber-physical systems (CPSs) across critical and regulated industries, systems must be continuously updated to remain resilient. At the same time, they should be extremely secure and safe to operate and use. The DevOps approach caters to business demands of more speed and smartness in production, but it is extremely challenging to implement DevOps due to the complexity of critical CPSs and requirements from regulatory authorities. In this study, expert opinions from 33 European companies expose the gap in the current state of practice on DevOps-oriented continuous development and maintenance. The study contributes to research and practice by identifying a set of needs. Subsequently, the authors propose a novel approach called Secure DevOps and provide several avenues for further research and development in this area. The study shows that, because security is a cross-cutting property in complex CPSs, its proficient management requires system-wide competencies and capabilities across the CPSs development and operation.

958. Microsoft Shores Up Its Cyberattack Defenses.

Author

Greene, Jay

Subjects

*CYBERTERRORISM, *INTERNET security, *COMPUTER hackers

Published

2016

959. Microsoft Promotes General Counsel Brad Smith to President.

Author

McMillan, Robert

Subjects

*INTERNET security, *CHIEF legal officers, *PERSONNEL management

Published

2015

960. How Safe Is Safe?

Author

Snyders, J.

Subjects

Software Packages, Online, Software Selection, Security, Systems/Data Security Software, Computer Crime, Natural, Alert-CICS, Software Security

Published

1984

961. Návrh a tvorba proxy pro penetrační testování

Author

Dydowicz, Petr, Bláha, Lukáš, Válka, Michal, Dydowicz, Petr, Bláha, Lukáš, and Válka, Michal

Abstract

Bakalářská práce se zaměřuje na návrh a vývoj proxy sloužící pro účely penetračního testování. Práce se dělí na tři hlavní části a začíná teoretickou částí rozebírající základní technologie a principy, na kterých aplikace staví. Druhá kapitola se zabývá analýzou současného stavu hodnotící aktuálně dostupné alternativy pro penetrační testy síťové komunikace. Z provedených analýz jsou vyvozeny požadavky na finální produkt, jehož návrh a vývoj je popsán v kapitole vlastního návrhu. V závěru práce je shrnuto vyvinuté řešení a jeho přínosy pro penetrační testování., This bachelor’s thesis is aimed at design and development of proxy for penetration testing. The thesis is divided into three main parts and begins with a theoretical part, which is focused on fundamental technologies and principles on which the application is based. The second part is focused on comparison of currently available solutions. The third part contains the creation of the proxy itself. The last chapter contains a summary of this thesis and the benefits of the developed product for penetration testing.

962. Návrh a tvorba proxy pro penetrační testování

Author

Dydowicz, Petr, Bláha, Lukáš, Válka, Michal, Dydowicz, Petr, Bláha, Lukáš, and Válka, Michal

Abstract

Bakalářská práce se zaměřuje na návrh a vývoj proxy sloužící pro účely penetračního testování. Práce se dělí na tři hlavní části a začíná teoretickou částí rozebírající základní technologie a principy, na kterých aplikace staví. Druhá kapitola se zabývá analýzou současného stavu hodnotící aktuálně dostupné alternativy pro penetrační testy síťové komunikace. Z provedených analýz jsou vyvozeny požadavky na finální produkt, jehož návrh a vývoj je popsán v kapitole vlastního návrhu. V závěru práce je shrnuto vyvinuté řešení a jeho přínosy pro penetrační testování., This bachelor’s thesis is aimed at design and development of proxy for penetration testing. The thesis is divided into three main parts and begins with a theoretical part, which is focused on fundamental technologies and principles on which the application is based. The second part is focused on comparison of currently available solutions. The third part contains the creation of the proxy itself. The last chapter contains a summary of this thesis and the benefits of the developed product for penetration testing.

963. Návrh a tvorba proxy pro penetrační testování

Author

Dydowicz, Petr, Bláha, Lukáš, Válka, Michal, Dydowicz, Petr, Bláha, Lukáš, and Válka, Michal

Abstract

Bakalářská práce se zaměřuje na návrh a vývoj proxy sloužící pro účely penetračního testování. Práce se dělí na tři hlavní části a začíná teoretickou částí rozebírající základní technologie a principy, na kterých aplikace staví. Druhá kapitola se zabývá analýzou současného stavu hodnotící aktuálně dostupné alternativy pro penetrační testy síťové komunikace. Z provedených analýz jsou vyvozeny požadavky na finální produkt, jehož návrh a vývoj je popsán v kapitole vlastního návrhu. V závěru práce je shrnuto vyvinuté řešení a jeho přínosy pro penetrační testování., This bachelor’s thesis is aimed at design and development of proxy for penetration testing. The thesis is divided into three main parts and begins with a theoretical part, which is focused on fundamental technologies and principles on which the application is based. The second part is focused on comparison of currently available solutions. The third part contains the creation of the proxy itself. The last chapter contains a summary of this thesis and the benefits of the developed product for penetration testing.

964. Pokročilá proxy pro penetrační testování

Author

Sedlák, Petr, Vilém,, Šlesinger, Válka, Michal, Sedlák, Petr, Vilém,, Šlesinger, and Válka, Michal

Abstract

Diplomová práce se zaměřuje na vylepšení open-source proxy nástroje pro penetrační testování tlustých klientů. Práce je rozdělena do tří hlavních kapitol, z nichž první je zaměřena na základní teoretická východiska, na kterých diplomová práce staví. Druhá kapitola popisuje analýzy současného stavu a vymezuje uživatelské požadavky ke splnění. Třetí kapitola se zabývá zvýšením kvality a rozšířením funkcionality na základě uživatelských požadavků. Zároveň v ní dochází k vytvoření metodiky testování a vývoji zranitelné aplikace jako učebního materiálu k metodice. Závěrem kapitoly jsou shrnuty ekonomické náklady a přínosy aplikace pro proces penetračního testování., This master’s thesis focuses on improving the open-source proxy tool for penetration testing of thick clients. The thesis is divided into three main chapters, the first of which is focused on the theoretical background on which the thesis is based. The second chapter describes the analysis of the current state and defines user requirements, which must be met. The third chapter deals with increasing the quality and expanding the functionality based on user requirements. At the same time, a testing methodology is created and a vulnerable application is developed as a teaching material for the methodology. The chapter concludes with a summary of the economic costs and benefits of the application for the penetration testing process.

965. Pokročilá proxy pro penetrační testování

Author

Sedlák, Petr, Vilém,, Šlesinger, Válka, Michal, Sedlák, Petr, Vilém,, Šlesinger, and Válka, Michal

Abstract

Diplomová práce se zaměřuje na vylepšení open-source proxy nástroje pro penetrační testování tlustých klientů. Práce je rozdělena do tří hlavních kapitol, z nichž první je zaměřena na základní teoretická východiska, na kterých diplomová práce staví. Druhá kapitola popisuje analýzy současného stavu a vymezuje uživatelské požadavky ke splnění. Třetí kapitola se zabývá zvýšením kvality a rozšířením funkcionality na základě uživatelských požadavků. Zároveň v ní dochází k vytvoření metodiky testování a vývoji zranitelné aplikace jako učebního materiálu k metodice. Závěrem kapitoly jsou shrnuty ekonomické náklady a přínosy aplikace pro proces penetračního testování., This master’s thesis focuses on improving the open-source proxy tool for penetration testing of thick clients. The thesis is divided into three main chapters, the first of which is focused on the theoretical background on which the thesis is based. The second chapter describes the analysis of the current state and defines user requirements, which must be met. The third chapter deals with increasing the quality and expanding the functionality based on user requirements. At the same time, a testing methodology is created and a vulnerable application is developed as a teaching material for the methodology. The chapter concludes with a summary of the economic costs and benefits of the application for the penetration testing process.

966. A Cloud-based Framework for Security Analysis of Browser Extensions

Author

Queen's University (Kingston, Ont.). Theses (Queen's University (Kingston, Ont.)), Das, SAIKAT, Queen's University (Kingston, Ont.). Theses (Queen's University (Kingston, Ont.)), and Das, SAIKAT

Abstract

In today's internet world, web browsers are an integral part of our day-to-day activities. Therefore, web browser security is a serious concern for all of us. Browsers can be breached in different ways. Because of the over privileged access, extensions are responsible for many security issues. Browser vendors try to keep safe extensions in their official extension galleries. However, their security control measures are not always effective and adequate. The distribution of unsafe extensions through different social engineering techniques is also a very common practice. Therefore, before installation, users should thoroughly analyze the security of browser extensions. Extensions are not only available for desktop browsers, but many mobile browsers, for example, Firefox for Android and UC browser for Android, are also furnished with extension features. Mobile devices have various resource constraints in terms of computational capabilities, power, network bandwidth, etc. Hence, conventional extension security analysis techniques cannot be efficiently used by end users to examine mobile browser extension security issues. To overcome the inadequacies of the existing approaches, we propose CLOUBEX, a CLOUd-based security analysis framework for both desktop and mobile Browser EXtensions. This framework uses a client-server architecture model. In this framework, compute-intensive security analysis tasks are generally executed in a high-speed computing server hosted in a cloud environment. CLOUBEX is also enriched with a number of essential features, such as client-side analysis, requirements-driven analysis, high performance, and dynamic decision making. At present, the Firefox extension ecosystem is most susceptible to different security attacks. Hence, the framework is implemented for the security analysis of the Firefox desktop and Firefox for Android mobile browser extensions. A static taint analysis is used to identify malicious information flows in the Firefox extensi, Thesis (Master, Electrical & Computer Engineering) -- Queen's University, 2016-05-18 10:21:15.366

967. Pokročilá proxy pro penetrační testování

Author

Sedlák, Petr, Vilém,, Šlesinger, Sedlák, Petr, and Vilém,, Šlesinger

Abstract

Diplomová práce se zaměřuje na vylepšení open-source proxy nástroje pro penetrační testování tlustých klientů. Práce je rozdělena do tří hlavních kapitol, z nichž první je zaměřena na základní teoretická východiska, na kterých diplomová práce staví. Druhá kapitola popisuje analýzy současného stavu a vymezuje uživatelské požadavky ke splnění. Třetí kapitola se zabývá zvýšením kvality a rozšířením funkcionality na základě uživatelských požadavků. Zároveň v ní dochází k vytvoření metodiky testování a vývoji zranitelné aplikace jako učebního materiálu k metodice. Závěrem kapitoly jsou shrnuty ekonomické náklady a přínosy aplikace pro proces penetračního testování., This master’s thesis focuses on improving the open-source proxy tool for penetration testing of thick clients. The thesis is divided into three main chapters, the first of which is focused on the theoretical background on which the thesis is based. The second chapter describes the analysis of the current state and defines user requirements, which must be met. The third chapter deals with increasing the quality and expanding the functionality based on user requirements. At the same time, a testing methodology is created and a vulnerable application is developed as a teaching material for the methodology. The chapter concludes with a summary of the economic costs and benefits of the application for the penetration testing process.

968. Návrh a tvorba proxy pro penetrační testování

Author

Dydowicz, Petr, Bláha, Lukáš, Dydowicz, Petr, and Bláha, Lukáš

Abstract

Bakalářská práce se zaměřuje na návrh a vývoj proxy sloužící pro účely penetračního testování. Práce se dělí na tři hlavní části a začíná teoretickou částí rozebírající základní technologie a principy, na kterých aplikace staví. Druhá kapitola se zabývá analýzou současného stavu hodnotící aktuálně dostupné alternativy pro penetrační testy síťové komunikace. Z provedených analýz jsou vyvozeny požadavky na finální produkt, jehož návrh a vývoj je popsán v kapitole vlastního návrhu. V závěru práce je shrnuto vyvinuté řešení a jeho přínosy pro penetrační testování., This bachelor’s thesis is aimed at design and development of proxy for penetration testing. The thesis is divided into three main parts and begins with a theoretical part, which is focused on fundamental technologies and principles on which the application is based. The second part is focused on comparison of currently available solutions. The third part contains the creation of the proxy itself. The last chapter contains a summary of this thesis and the benefits of the developed product for penetration testing.

969. Návrh a tvorba proxy pro penetrační testování

Author

Dydowicz, Petr, Bláha, Lukáš, Dydowicz, Petr, and Bláha, Lukáš

Abstract

Bakalářská práce se zaměřuje na návrh a vývoj proxy sloužící pro účely penetračního testování. Práce se dělí na tři hlavní části a začíná teoretickou částí rozebírající základní technologie a principy, na kterých aplikace staví. Druhá kapitola se zabývá analýzou současného stavu hodnotící aktuálně dostupné alternativy pro penetrační testy síťové komunikace. Z provedených analýz jsou vyvozeny požadavky na finální produkt, jehož návrh a vývoj je popsán v kapitole vlastního návrhu. V závěru práce je shrnuto vyvinuté řešení a jeho přínosy pro penetrační testování., This bachelor’s thesis is aimed at design and development of proxy for penetration testing. The thesis is divided into three main parts and begins with a theoretical part, which is focused on fundamental technologies and principles on which the application is based. The second part is focused on comparison of currently available solutions. The third part contains the creation of the proxy itself. The last chapter contains a summary of this thesis and the benefits of the developed product for penetration testing.

970. Návrh a tvorba proxy pro penetrační testování

Author

Dydowicz, Petr, Bláha, Lukáš, Dydowicz, Petr, and Bláha, Lukáš

Abstract

Bakalářská práce se zaměřuje na návrh a vývoj proxy sloužící pro účely penetračního testování. Práce se dělí na tři hlavní části a začíná teoretickou částí rozebírající základní technologie a principy, na kterých aplikace staví. Druhá kapitola se zabývá analýzou současného stavu hodnotící aktuálně dostupné alternativy pro penetrační testy síťové komunikace. Z provedených analýz jsou vyvozeny požadavky na finální produkt, jehož návrh a vývoj je popsán v kapitole vlastního návrhu. V závěru práce je shrnuto vyvinuté řešení a jeho přínosy pro penetrační testování., This bachelor’s thesis is aimed at design and development of proxy for penetration testing. The thesis is divided into three main parts and begins with a theoretical part, which is focused on fundamental technologies and principles on which the application is based. The second part is focused on comparison of currently available solutions. The third part contains the creation of the proxy itself. The last chapter contains a summary of this thesis and the benefits of the developed product for penetration testing.

971. Pokročilá proxy pro penetrační testování

Author

Sedlák, Petr, Vilém,, Šlesinger, Sedlák, Petr, and Vilém,, Šlesinger

Abstract

Diplomová práce se zaměřuje na vylepšení open-source proxy nástroje pro penetrační testování tlustých klientů. Práce je rozdělena do tří hlavních kapitol, z nichž první je zaměřena na základní teoretická východiska, na kterých diplomová práce staví. Druhá kapitola popisuje analýzy současného stavu a vymezuje uživatelské požadavky ke splnění. Třetí kapitola se zabývá zvýšením kvality a rozšířením funkcionality na základě uživatelských požadavků. Zároveň v ní dochází k vytvoření metodiky testování a vývoji zranitelné aplikace jako učebního materiálu k metodice. Závěrem kapitoly jsou shrnuty ekonomické náklady a přínosy aplikace pro proces penetračního testování., This master’s thesis focuses on improving the open-source proxy tool for penetration testing of thick clients. The thesis is divided into three main chapters, the first of which is focused on the theoretical background on which the thesis is based. The second chapter describes the analysis of the current state and defines user requirements, which must be met. The third chapter deals with increasing the quality and expanding the functionality based on user requirements. At the same time, a testing methodology is created and a vulnerable application is developed as a teaching material for the methodology. The chapter concludes with a summary of the economic costs and benefits of the application for the penetration testing process.

972. Pokročilá proxy pro penetrační testování

Author

Sedlák, Petr, Vilém,, Šlesinger, Sedlák, Petr, and Vilém,, Šlesinger

Abstract

Diplomová práce se zaměřuje na vylepšení open-source proxy nástroje pro penetrační testování tlustých klientů. Práce je rozdělena do tří hlavních kapitol, z nichž první je zaměřena na základní teoretická východiska, na kterých diplomová práce staví. Druhá kapitola popisuje analýzy současného stavu a vymezuje uživatelské požadavky ke splnění. Třetí kapitola se zabývá zvýšením kvality a rozšířením funkcionality na základě uživatelských požadavků. Zároveň v ní dochází k vytvoření metodiky testování a vývoji zranitelné aplikace jako učebního materiálu k metodice. Závěrem kapitoly jsou shrnuty ekonomické náklady a přínosy aplikace pro proces penetračního testování., This master’s thesis focuses on improving the open-source proxy tool for penetration testing of thick clients. The thesis is divided into three main chapters, the first of which is focused on the theoretical background on which the thesis is based. The second chapter describes the analysis of the current state and defines user requirements, which must be met. The third chapter deals with increasing the quality and expanding the functionality based on user requirements. At the same time, a testing methodology is created and a vulnerable application is developed as a teaching material for the methodology. The chapter concludes with a summary of the economic costs and benefits of the application for the penetration testing process.

973. Framework for evaluating loop invariant detection games in relation to automated dynamic invariant detectors

Author

Xie, Geoffrey G., Cook, Glenn R., Information Sciences (IS), Yilmaz, Mehmet, Xie, Geoffrey G., Cook, Glenn R., Information Sciences (IS), and Yilmaz, Mehmet

Abstract

Software has a huge and negative impact on the economy. Formal verification is an effective method to check whether a piece of software contains certain kinds of errors. Defense Advanced Research Projects Agency (DARPA) started the Crowd Sourced Formal Verification (CSFV) program to propose a new model for formal verification by using five online games. CSFV aims to explore whether an online game player with no formal verification expertise can achieve formal verification more efficiently than through conventional processes. We observe that, currently, no quality criteria exist to measure CSFV gamers’ efforts. The study suggests that machine detectability of a solution detected by a gamer indicates poor quality for that solution. The solutions in one of the games, StormBound, were selected for examination. An automated tool was developed to check the machine detectability of the solutions, and 78 percent of the assertions were seen to be machine detectable., http://archive.org/details/frameworkforeval1094547350, Captain, Turkish Army, Approved for public release; distribution is unlimited.

974. Pokročilá proxy pro penetrační testování

Author

Sedlák, Petr, Vilém,, Šlesinger, Válka, Michal, Sedlák, Petr, Vilém,, Šlesinger, and Válka, Michal

Abstract

Diplomová práce se zaměřuje na vylepšení open-source proxy nástroje pro penetrační testování tlustých klientů. Práce je rozdělena do tří hlavních kapitol, z nichž první je zaměřena na základní teoretická východiska, na kterých diplomová práce staví. Druhá kapitola popisuje analýzy současného stavu a vymezuje uživatelské požadavky ke splnění. Třetí kapitola se zabývá zvýšením kvality a rozšířením funkcionality na základě uživatelských požadavků. Zároveň v ní dochází k vytvoření metodiky testování a vývoji zranitelné aplikace jako učebního materiálu k metodice. Závěrem kapitoly jsou shrnuty ekonomické náklady a přínosy aplikace pro proces penetračního testování., This master’s thesis focuses on improving the open-source proxy tool for penetration testing of thick clients. The thesis is divided into three main chapters, the first of which is focused on the theoretical background on which the thesis is based. The second chapter describes the analysis of the current state and defines user requirements, which must be met. The third chapter deals with increasing the quality and expanding the functionality based on user requirements. At the same time, a testing methodology is created and a vulnerable application is developed as a teaching material for the methodology. The chapter concludes with a summary of the economic costs and benefits of the application for the penetration testing process.

975. Android source code vulnerability detection: a systematic literature review.

Abstract

The use of mobile devices is rising daily in this technological era. A continuous and increasing number of mobile applications are constantly offered on mobile marketplaces to fulfil the needs of smartphone users. Many Android applications do not address the security aspects appropriately. This is often due to a lack of automated mechanisms to identify, test, and fix source code vulnerabilities at the early stages of design and development. Therefore, the need to fix such issues at the initial stages rather than providing updates and patches to the published applications is widely recognized. Researchers have proposed several methods to improve the security of applications by detecting source code vulnerabilities and malicious codes. This Systematic Literature Review (SLR) focuses on Android application analysis and source code vulnerability detection methods and tools by critically evaluating 118 carefully selected technical studies published between 2016 and 2022. It highlights the advantages, disadvantages, applicability of the proposed techniques, and potential improvements of those studies. Both Machine Learning (ML)-based methods and conventional methods related to vulnerability detection are discussed while focusing more on ML-based methods, since many recent studies conducted experiments with ML. Therefore, this article aims to enable researchers to acquire in-depth knowledge in secure mobile application development while minimizing the vulnerabilities by applying ML methods. Furthermore, researchers can use the discussions and findings of this SLR to identify potential future research and development directions.

976. Modeling and characterizing software vulnerabilities

Author

Venkata S. Sarma Yadavalli, Vijay Kumar, Navneet Bhatt, and Adarsh Anand

Subjects

General Computer Science, lcsh:T, Computer science, business.industry, lcsh:Mathematics, General Mathematics, Vulnerability discovery modeling, Software security, General Engineering, 020207 software engineering, 02 engineering and technology, lcsh:QA1-939, Vulnerability categorization, lcsh:Technology, 01 natural sciences, General Business, Management and Accounting, ComputingMilieux_MANAGEMENTOFCOMPUTINGANDINFORMATIONSYSTEMS, 010104 statistics & probability, Software, Software security assurance, 0202 electrical engineering, electronic engineering, information engineering, 0101 mathematics, Software engineering, business

Abstract

With the association of software security assurance in the development of code based systems; software developers are relying on the Vulnerability discovery models to mitigate the breaches by estimating the total number of vulnerabilities, before they’re exploited by the intruders. Vulnerability Discovery Models (VDMs) provide the quantitative classification of the flaws that exists in a software that will be discovered after a software is released. In this paper, we develop a vulnerability discovery model that accumulate the vulnerabilities due to the influence of previously discovered vulnerabilities. We further evaluate the proportion of previously discovered vulnerabilities along with the fraction additional vulnerabilities detected. The quantification methodology presented in this article has been accompanied with an empirical illustration on popular operating systems’ vulnerability data.

977. Cross-Programming Language Taint Analysis for the IoT Ecosystem

Author

Pietro Ferrara, Mandal, A. K., Cortesi, A., and Spoto, S.

Subjects

IoT, static analysis, software security, Static Analysis, Taint Analysis, CyberSecurity, IoT, software security, Settore INF/01 - Informatica, static analysis, Taint Analysis, CyberSecurity

Abstract

The Internet of Things (IoT) is a key component for the next disruptive technologies. However, IoT merges together several diverse software layers: embedded, enterprise, and cloud programs interact with each other. In addition, security and privacy vulnerabilities of IoT software might be particularly dangerous due to the pervasiveness and physical nature of these systems. During the last decades, static analysis, and in particular taint analysis, has been widely applied to detect software vulnerabilities. Unfortunately, these analyses assume that software is entirely written in a single programming language, and they are not immediately suitable to detect IoT vulnerabilities where many different software components, written in different programming languages, interact. This paper discusses how to leverage existing static taint analyses to a cross-programming language scenario., Electronic Communications of the EASST, Volume 77: Interactive Workshop on the Industrial Application of Verification and Testing, ETAPS 2019 Workshop (InterAVT 2019)

978. Secure Software Development in the Era of Fluid Multi-party Open Software and Services

Author

Antonino Sabetta, Ivan Pashchenko, Fabio Massacci, Riccardo Scandariato, Computer Systems, and Network Institute

Subjects

FOS: Computer and information sciences, Entire population, Information privacy, vision, software security, D.2.0, business.industry, Software development, Computer security, computer.software_genre, Open software, Software Engineering (cs.SE), Computer Science - Software Engineering, D.2.13, open source software, Software, SDG 17 - Partnerships for the Goals, Software security assurance, Component-based software engineering, Scalability, business, computer

Abstract

Pushed by market forces, software development has become fast-paced. As a consequence, modern development projects are assembled from 3rd-party components. Security & privacy assurance techniques once designed for large, controlled updates over months or years, must now cope with small, continuous changes taking place within a week, and happening in sub-components that are controlled by third-party developers one might not even know they existed. In this paper, we aim to provide an overview of the current software security approaches and evaluate their appropriateness in the face of the changed nature in software development. Software security assurance could benefit by switching from a process-based to an artefact-based approach. Further, security evaluation might need to be more incremental, automated and decentralized. We believe this can be achieved by supporting mechanisms for lightweight and scalable screenings that are applicable to the entire population of software components albeit there might be a price to pay., 7 pages, 1 figure, to be published in Proceedings of International Conference on Software Engineering - New Ideas and Emerging Results

979. Buffer overlow vulnerabilities in CUDA: a preliminary analysis

Author

Miele, Andrea

Subjects

software security, CUDA, buffer overflow

Abstract

We present a preliminary study of buffer overflow vulnerabilities in CUDA software running on GPUs. We show how an attacker can overrun a buffer to corrupt sensitive data or steer the execution flow by overwriting function pointers, e.g., manipulating the virtual table of a C++ object. In view of a potential mass market diffusion of GPU accelerated software this may be a major concern.

980. An Empirical Investigation of Security Vulnerabilities within Web Applications

Author

Abunadi, I. and Mamdouh Alenezi

Subjects

software security, cross-project vulnerability prediction, data mining, software quality

Abstract

Building secure software is challenging, time-consuming, and expensive. Software vulnerability prediction models that identify vulnerable software components are usually used to focus security efforts, with the aim of helping to reduce the time and effort needed to secure software. Existing vulnerability prediction models use process or product metrics and machine learning techniques to identify vulnerable software components. Cross-project vulnerability prediction plays a significant role in appraising the most likely vulnerable software components, specifically for new or inactive projects. Little effort has been spent to deliver clear guidelines on how to choose the training data for project vulnerability prediction. In this work, we present an empirical study aiming at clarifying how useful cross-project prediction techniques are in predicting software vulnerabilities. Our study employs the classification provided by different machine learning techniques to improve the detection of vulnerable components. We have elaborately compared the prediction performance of five well-known classifiers. The study is conducted on a publicly available dataset of several PHP open-source web applications in the context of cross-project vulnerability prediction, which represents one of the main challenges in the vulnerability prediction field.

981. An Economic Analysis of the Software Market with a Risk-Sharing Mechanism

Author

Kim, Byung Cho, Chen, Pei-yu, and Mukhopadhyay, Tridas

Published

2009