Sciweavers

ICSM
2008
IEEE

Traceability for the maintenance of secure software

13 years 10 months ago
Traceability for the maintenance of secure software
Traceability links among different software engineering artifacts make explicit how a software system was implemented to accommodate its requirements. For secure and dependable software system development, one must ensure the linked entities are truly traceable to each other and the links are updated to reflect true traceability among changed entities. However, traditional traceability relationships link recovery techniques are not accurate enough. To address this problem, we propose a traceability technique based on refactoring, which is then continuously integrated with other software maintenance activities. Applying our traceability technique to the proven SSL protocol design, we found a significant vulnerability bug in its open-source implementation. The results also demonstrate the level of accuracy and change resilience of our technique that enable reuse of the traceability-related analysis on different implementations. Keywords traceability, refactoring, maintenance, security...
Yijun Yu, Jan Jürjens, John Mylopoulos
Added 31 May 2010
Updated 31 May 2010
Type Conference
Year 2008
Where ICSM
Authors Yijun Yu, Jan Jürjens, John Mylopoulos
Comments (0)