946 search results - page 127 / 190 » Software engineering for security: a roadmap |
170
click to vote
JCS
2002
15 years 5 months ago
2002
We describe the use of a domain-specific language (DSL) for expressing critical design values and constraints in an intrusion detection application. Through the use of this specia...
132
click to vote
SIGSOFT
2008
ACM
16 years 6 months ago
2008
ACM
Programs trusted with secure information should not release that information in ways contrary to system policy. However, when a program contains an illegal flow of information, cu...
155
click to vote
ICSE
2007
IEEE-ACM
16 years 6 months ago
2007
IEEE-ACM
Abstract. In this chapter we discuss the susceptibility of critical information infrastructures to computer-borne attacks and faults, mainly due to their largely computerized natur...
177
click to vote
COMPSAC
2007
IEEE
16 years 6 days ago
2007
IEEE
Recently SQL Injection Attack (SIA) has become a major threat to Web applications. Via carefully crafted user input, attackers can expose or manipulate the back-end database of a ...
156
click to vote
VMCAI
2005
Springer
15 years 11 months ago
2005
Springer
Abstract. Implementations of cryptographic protocols, such as OpenSSL for example, contain bugs affecting security, which cannot be detected by just analyzing abstract protocols (e...