Gary Mcgraw  Home/Search
Context Related
| rstcorp.com/ots/gem_paper.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: rstcorp.com/ots/ (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: Understanding the risks inherent in using COTS software is important because information systems today are being built from ever greater amounts of reused and pre-packaged code. Security analysis of complex software systems has always been a serious challenge with many open research issues. Unfortunately, COTS software serves only to complicate matters. Often, code that is acquired from a vendor is delivered in executable form with no source code, making some traditional analyses impossible.... (Update)
Context of citations to this paper: More
.... on developers of COTS, to standardize development and reduce costs, many critical applications are requiring the use of these systems [32]. The lack of availability of the source code of the components limits the testing that the component user can perform. Researchers have...
Cited by: More
A Framework for Distributed Component Test.. - Ramakrishnan, Mingins, .. (2001) (Correct)
Componentware for Critical Systems - Jürjens (2002) (Correct)
Software Engineering for Security: Towards Architecting.. - Software Information And (Correct)
Similar documents (at the sentence level):
39.2%: Testing the Robustness of Windows NT Software - Ghosh, Schmid, Shah (1998) (Correct)
Active bibliography (related documents): More All
0.3: Inoculating Software for Survivability - Ghosh, Voas (1999) (Correct)
0.3: An Empirical Study of the Robustness of Windows NT.. - Forrester, Miller (2000) (Correct)
0.1: An Approach for Analyzing the Robustness of Windows NT Software - Ghosh, Shah, Schmid (1998) (Correct)
System load high. Please wait...
Timeout. Please try your query later.
Similar documents based on text: More All
0.6: ITS4: A Static Vulnerability Scanner for C and C++ Code - Viega, Bloch, Kohno, McGraw (2000) (Correct)
0.5: An Approach to Identifying and Understanding.. - Kapfhammer.. (2000) (Correct)
0.5: Defensive Approaches to Testing Systems that Contain COTS and.. - Jeffrey Voas (1998) (Correct)
Related documents from co-citation: More All
2: Cryptographic verification of test coverage claims - Devanbu, Stubblebine - 1997
2: Software Engineering for Security: a Roadmap - Devanbu, Stubblebine - 2000
2: Analyzing regression test selection techniques - Rothermel, Harrold - 1996
BibTeX entry: (Update)
G. McGraw and J. Viega. Why COTS software increases security risks. In Proceedings of the First International Workshop on Testing Distribu ted ComponentBased Systems, May 1999. http://citeseer.ist.psu.edu/mcgraw99why.html More
@misc{ mcgraw99why,
author = "G. McGraw and J. Viega",
title = "Why COTS software increases security risks",
text = "G. McGraw and J. Viega. Why COTS software increases security risks. In
Proceedings of the First International Workshop on Testing Distribu ted
ComponentBased Systems, May 1999.",
year = "1999",
url = "citeseer.ist.psu.edu/mcgraw99why.html" }
Citations (may not include all citations):66 Java Security: Hostile Applets (context) - McGraw, Felten - 1996
23 Comparing operating systems using robustness benchmarks - Koopman, Sung et al. - 1997 ACM DBLP
11 Fuzz revisted: A re-examination of the reliability of unix u.. (context) - Miller, Koski et al. - 1995
3 Testing the robustness of windows nt software - Ghosh, Schmid et al. - 1998 ACM
Documents on the same site (http://www.rstcorp.com/ots/):
Managing Long-Lived COTS Based Systems - Vigder, Dean (1998) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC