Software Engineering for Security: a Roadmap

Software Engineering for Security: a Roadmap (2000)

Cached

Download Links

Other Repositories/Bibliography

DBLP

by Premkumar T. Devanbu , Stuart Stubblebine

Venue:	THE FUTURE OF SOFTWARE ENGINEERING
Citations:	98 - 0 self

BibTeX

@INPROCEEDINGS{Devanbu00softwareengineering,
    author = {Premkumar T. Devanbu and Stuart Stubblebine},
    title = {Software Engineering for Security: a Roadmap},
    booktitle = {THE FUTURE OF SOFTWARE ENGINEERING},
    year = {2000},
    pages = {227--239},
    publisher = {ACM Press}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

Is there such a thing anymore as a software system that doesn't need to be secure? Almost every softwarecontrolled system faces threats from potential adversaries, from Internet-aware client applications running on PCs, to complex telecommunications and power systems accessible over the Internet, to commodity software with copy protection mechanisms. Software engineers must be cognizant of these threats and engineer systems with credible defenses, while still delivering value to customers. In this paper, we present our perspectives on the research issues that arise in the interactions between software engineering and security.

Citations

2057	Handbook of Applied Cryptography - Menezes, Oorschot, et al. - 1996
1364	Aspect-oriented programming - KICZALES, LAMPING, et al. - 1997
1040	Private Authentication - Abadi - 2003
1022	The Java Virtual Machine Specification - Lindholm, Yellin - 1996
1016	Proof-carrying code - NECULA - 1997
589	A.Wolf, "Foundations for the Study of Software Architectures - Perry - 1992
539	The Common Object Request Broker: Architecture and Specification - OMG - 2000
513	Secure computer system: Unified exposition and Multics interpretation - Bell, LaPadula - 1975
326	Kerberos: An authentication service for computer networks - Neuman, Ts’o - 1994
324	Model Checking for Programming Languages using VeriSoft - Godefroid - 1997
321	Protection in operating systems - Harrison, Ruzzo, et al. - 1976
277	Architectural mismatch or why it’s hard to build systems out of existing parts - Garlan, Allen, et al. - 1995
245	The design and implementation of a certifying compiler - Necula, Lee - 1998
244	Formalizing architectural connection - Allen, Garlan - 1994
231	Threshold Cryptosystems - Desmedt, Frankel - 1989
220	Anonymous connections and onion routing - Reed, Syverson, et al. - 1998
206	Telos: Representing Knowledge About Information Systems - Mylopoulos, Borgida, et al. - 1990
191	Object-oriented Development - The Fusion Method - Coleman, Arnold, et al. - 1994
170	Requirements engineering: a roadmap - Nuseibeh, Easterbrook - 2000
169	An Applicable Family of Data Flow Testing Criteria - Frankl, Weyuker - 1988
135	Flow analysis for verifying properties of concurrent software systems - Dwyer, Clarke, et al. - 2004
132	Flexible policy-directed code safety - Evans, Twyman - 1999
121	Hardening COTS software with generic software wrappers - Fraser, Badger, et al. - 1999
104	Resolving Rightful Ownerships with Invisible Watermarking Techniques: Limitations, Attacks and Implications - Craver, Memon, et al. - 1998
95	Software watermarking: Models and dynamic embeddings - Collberg, Thomborson - 1999
90	Tamper-resistant software: An im-plementation - Aucsmith - 1996
90	On Testing Non-Testable Programs - Weyuker - 1982
85	Slicing software for model construction - Hatcliff, Dwyer, et al.
83	A Cooperative Approach to Support Software Deployment Using the Software Dock - Hall, Heimbigner, et al. - 1999
80	Checking the correctness of memories - Blum, Evans, et al. - 1994
69	Security models - McLean - 1994
68	Software Engineering and Middleware: A Roadmap - Emmerich - 2000
67	Software reuse – architecture, process and organization for business success - Jacobson, Griss, et al. - 1997
65	Lightweight Extraction of Object Models from Bytecode - Jackson, Waingold - 2001
62	Knowledge Representation as a Basis for Requirements Specification - Borgida, Greenspan, et al. - 1985
62	An Architecture for PostDevelopment Configuration Management in a Wide-Area Network - Hall, Heimbigner, et al.
60	Testing: a roadmap - Harrold - 2000
59	Certifying Off-the-Shelf Software Components - Voas
57	Secure coprocessors in electronic commerce applications - Yee, Tygar - 1995
43	Tamper resistance-a cautionary note - Anderson, Kuhn - 1996
39	Data flow analysis for checking properties of concurrent java programs - Naumovich, Avrunin, et al. - 1999
35	Unified support for heterogeneous security policies in distributed systems - Minsky, Ungureanu - 1998
34	Secure circuit evaluation - Abadi, Feigenbaum - 1990
31	Software Protection Via Function Hiding - Sander, Tschudin
29	Software configuration management: a roadmap - Estublier - 2000
28	Encrypting problem instances: Or..., Can you take advantage of someone without having to trust him - Feigenbaum
27	Constructing compact models of concurrent java programs - Corbett
27	Security policy specification using a graphical approach - Hoagland, Pandey, et al. - 1998
25	Software Analysis: a roadmap - Jackson, Rinard - 2000
24	Checking linked data structures - Amato, Loui - 1994