Diversity-Based Approaches to Software Systems Security

Toward an Integrative Model of Application-Software Security

Practicing Software Engineering in the 21st Century ◽

10.4018/978-1-93177-750-6.ch011 ◽

2003 ◽

pp. 157-163

Author(s):

Vijay V. Raghavan

Keyword(s):

Software Security ◽

Social Engineering ◽

Systems Development ◽

System Level ◽

Integrative Model ◽

Software Systems ◽

Execution Monitoring ◽

Systems Security ◽

Least Privilege ◽

Implementation Stages

Populist approaches to studying information systems security include architectural, infrastructure-related and system-level security. This study focuses on software security implemented and monitored during systems development and implementation stages. Moving away from the past checklist methods of studying software security, this study provides a model that could be used in categorizing checklists into meaningful clusters. Many constructs, such as principle of least privilege, execution monitoring, social engineering and formalism and pragmatism in security implementations, are identified in the model. The identification of useful constructs to study can form the basis of evaluating security in software systems as well as provide guidelines of implementing security in new systems developed.

Download Full-text

1.1.2 Applying Model Based Systems Engineering approach to Smart Grid Software Systems Security Requirements

INCOSE International Symposium ◽

10.1002/j.2334-5837.2012.tb01318.x ◽

2012 ◽

Vol 22 (1) ◽

pp. 13-20 ◽

Cited By ~ 1

Author(s):

Sitaraman Lakshminarayanan ◽

Manyphay Souvannarnarth

Keyword(s):

Smart Grid ◽

Systems Engineering ◽

Security Requirements ◽

Software Systems ◽

Engineering Approach ◽

Model Based ◽

Systems Security ◽

Model Based Systems Engineering

Download Full-text

Software Systems Security Vulnerabilities Management by Exploring the Capabilities of Language Models Using NLP

Computational Intelligence and Neuroscience ◽

10.1155/2021/8522839 ◽

2021 ◽

Vol 2021 ◽

pp. 1-19

Author(s):

Raghavendra Rao Althar ◽

Debabrata Samanta ◽

Manjit Kaur ◽

Abeer Ali Alnuaim ◽

Nouf Aljaffan ◽

...

Keyword(s):

Software Development ◽

Data Science ◽

Software Security ◽

Language Modeling ◽

Language Models ◽

Software Systems ◽

Software System ◽

Security Vulnerabilities ◽

Systems Security ◽

Secure Software

Security of the software system is a prime focus area for software development teams. This paper explores some data science methods to build a knowledge management system that can assist the software development team to ensure a secure software system is being developed. Various approaches in this context are explored using data of insurance domain-based software development. These approaches will facilitate an easy understanding of the practical challenges associated with actual-world implementation. This paper also discusses the capabilities of language modeling and its role in the knowledge system. The source code is modeled to build a deep software security analysis model. The proposed model can help software engineers build secure software by assessing the software security during software development time. Extensive experiments show that the proposed models can efficiently explore the software language modeling capabilities to classify software systems’ security vulnerabilities.

Download Full-text

AN APPROACH TO CHECKING THE COMPLIANCE OF USER PERMISSION POLICY IN SOFTWARE DEVELOPMENT

International Journal of Software Engineering and Knowledge Engineering ◽

10.1142/s0218194013500344 ◽

2013 ◽

Vol 23 (08) ◽

pp. 1139-1151

Author(s):

NINH-THUAN TRUONG ◽

VIET-HA NGUYEN

Keyword(s):

Security Policy ◽

Software Security ◽

Software Systems ◽

Role Based Access Control ◽

Critical Properties ◽

Abstract Syntax Tree ◽

Systems Security ◽

Role Based ◽

High Level ◽

The Military

The Security policy of a software system is a set of actions that the system should or should not do in given conditions. These actions can be considered as critical properties in many applications which require high level of safety, such as the military, bank or stock software systems. Security policy must be specified clearly in software requirements and then be followed strictly and correctly in implementations. User permission policy is one of the most important aspects in software security policy. This paper proposes an approach for checking the conformance between user permissions of an implementation and their given specifications. In this approach, the source code of a program is represented at an abstraction level called Abstract Syntax Tree, which are then checked against specification of user permissions expressed using Role-Based Access Control (RBAC). A checking tool has been developed and verified using several common examples.

Download Full-text

Towards more flexible management of software systems development using meta-models

Software Engineering Journal ◽

10.1049/sej.1995.0011 ◽

1995 ◽

Vol 10 (3) ◽

pp. 79 ◽

Cited By ~ 4

Author(s):

C.W. Dawson ◽

R.J. Dawson

Keyword(s):

Systems Development ◽

Software Systems ◽

Flexible Management

Download Full-text

Maturity Level of Information Systems Security and Control: A Survey of Companies in Thailand

Journal of Applied Business and Economics ◽

10.33423/jabe.v20i9.224 ◽

2018 ◽

Vol 20 (9) ◽

Keyword(s):

Information Systems ◽

Information Systems Security ◽

Maturity Level ◽

Systems Security ◽

And Control

Download Full-text

DOCUMENTATION OF SOFTWARE SYSTEMS

ELECTRICAL AND COMPUTER SYSTEMS ◽

10.15276/etks.13.89.2014.34 ◽

2014 ◽

pp. 240-246

Author(s):

V. Herwig ◽

Keyword(s):

Software Systems

Download Full-text

Methods of parallel computing for multilevel fuzzy Takagi – Sugeno systems

PROBLEMS IN PROGRAMMING ◽

10.15407/pp2016.02-03.141 ◽

2016 ◽

pp. 141-149

Author(s):

S.V. Yershov ◽

◽

R.М. Ponomarenko ◽

Keyword(s):

Dynamic Models ◽

Fuzzy Inference ◽

Knowledge Bases ◽

Comparative Characteristic ◽

Software Systems ◽

Scientific Papers ◽

Speed Up ◽

Diagnostic Software ◽

Takagi Sugeno

Parallel tiered and dynamic models of the fuzzy inference in expert-diagnostic software systems are considered, which knowledge bases are based on fuzzy rules. Tiered parallel and dynamic fuzzy inference procedures are developed that allow speed up of computations in the software system for evaluating the quality of scientific papers. Evaluations of the effectiveness of parallel tiered and dynamic schemes of computations are constructed with complex dependency graph between blocks of fuzzy Takagi – Sugeno rules. Comparative characteristic of the efficacy of parallel-stacked and dynamic models is carried out.

Download Full-text

A Literature Review Study of Software Defect Prediction using Machine Learning Techniques

International Journal of Emerging Research in Management and Technology ◽

10.23956/ijermt.v6i6.286 ◽

2018 ◽

Vol 6 (6) ◽

pp. 300 ◽

Cited By ~ 3

Author(s):

Feidu Akmel ◽

Ermiyas Birihanu ◽

Bahir Siraj

Keyword(s):

Machine Learning ◽

Software Metrics ◽

Quality Standard ◽

Machine Learning Techniques ◽

Software Systems ◽

Health Care Insurance ◽

Software Defect ◽

Learning Techniques ◽

Software Product

Software systems are any software product or applications that support business domains such as Manufacturing,Aviation, Health care, insurance and so on.Software quality is a means of measuring how software is designed and how well the software conforms to that design. Some of the variables that we are looking for software quality are Correctness, Product quality, Scalability, Completeness and Absence of bugs, However the quality standard that was used from one organization is different from other for this reason it is better to apply the software metrics to measure the quality of software. Attributes that we gathered from source code through software metrics can be an input for software defect predictor. Software defect are an error that are introduced by software developer and stakeholders. Finally, in this study we discovered the application of machine learning on software defect that we gathered from the previous research works.

Download Full-text

ANALYZING AND IMPROVING WEB APPLICATION QUALITY USING DESIGN PATTERNS

INTERNATIONAL JOURNAL OF COMPUTERS & TECHNOLOGY ◽

10.24297/ijct.v2i2b.2641 ◽

2012 ◽

Vol 2 (2) ◽

pp. 112-116

Author(s):

Shikha Bhatia ◽

Mr. Harshpreet Singh

Keyword(s):

Web Application ◽

Design Pattern ◽

Design Patterns ◽

Web Applications ◽

Past Research ◽

Software Systems ◽

Interactive Software ◽

Web Based ◽

Software Application ◽

Execution Speed

With the mounting demand of web applications, a number of issues allied to its quality have came in existence. In the meadow of web applications, it is very thorny to develop high quality web applications. A design pattern is a general repeatable solution to a generally stirring problem in software design. It should be noted that design pattern is not a finished product that can be directly transformed into source code. Rather design pattern is a depiction or template that describes how to find solution of a problem that can be used in many different situations. Past research has shown that design patterns greatly improved the execution speed of a software application. Design pattern are classified as creational design patterns, structural design pattern, behavioral design pattern, etc. MVC design pattern is very productive for architecting interactive software systems and web applications. This design pattern is partition-independent, because it is expressed in terms of an interactive application running in a single address space. We will design and analyze an algorithm by using MVC approach to improve the performance of web based application. The objective of our study will be to reduce one of the major object oriented features i.e. coupling between model and view segments of web based application. The implementation for the same will be done in by using .NET framework.

Download Full-text