FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W46693260> ?p ?o ?g. }

• W46693260 abstract "In this thesis, we address the problem of detecting vulnerabilities in software where the source code is available, such as free-and-open-source software. In this, we rely on the use of security testing. Either static or dynamic analysis can be used for security testing approaches, yet both analyses have their advantages and drawbacks. In fact, while these analyses are different, they are complementary to each other in many ways. Consequently, approaches that would combine these analyses have the potential of becoming very advantageous to security testing and vulnerability detection. This has motivated the work presented in this thesis.For the purpose of security testing, security analysts need to specify the security properties that they wish to test software against for security violations. Accordingly, we firstly propose a security model called Team Edit Automata (TEA), which extends security automata. Using TEA, security analysts are capable of precisely specifying the security properties under concerns. Since various code instrumentations are needed at different program points for the purpose of profiling the software behavior at run-time, we secondly propose a code instrumentation profiler. Furthermore, we provide an extension to the GCC compiler to enable such instrumentations. The profiler is based on the pointcut model of Aspect-Oriented Programming (AOP) languages and accordingly it is capable of providing a large set of instrumentation capabilities to the analysts. We particularly explore the capabilities and the current limitations of AOP languages as tools for security testing code instrumentation, and propose extensions to these languages to allow them to be used for such purposes. Thirdly, we explore the potential of static analysis for vulnerability detection and illustrate its applicability and limitations. Fourthly, we propose a framework that reduces security vulnerability detection to a reachability problem. The framework combines three main techniques: static analysis, program slicing, and reachability analysis. This framework mainly targets software applications that are generally categorized as being safety/security critical, and are of relatively small sizes, such as embedded software. Finally, we propose a more comprehensive security testing and test-data generation framework that provides further advantages over the proposed reachability model. This framework combines the power of static and dynamic analyses, and is used to generate concrete data, with which the existence of a vulnerability is proven beyond doubt, hence mitigating major drawbacks of static analysis, namely false positives. We also illustrate the feasibility of the elaborated frameworks by developing case studies for test-data generation and vulnerability detection on various-size software." @default.
• W46693260 created "2016-06-24" @default.
• W46693260 creator A5022528241 @default.
• W46693260 date "2012-10-10" @default.
• W46693260 modified "2023-09-27" @default.
• W46693260 title "A Hybrid Framework for the Systematic Detection of Software Security Vulnerabilities in Source Code" @default.
• W46693260 hasPublicationYear "2012" @default.
• W46693260 type Work @default.
• W46693260 sameAs 46693260 @default.
• W46693260 citedByCount "0" @default.
• W46693260 crossrefType "dissertation" @default.
• W46693260 hasAuthorship W46693260A5022528241 @default.
• W46693260 hasConcept C103377522 @default.
• W46693260 hasConcept C111919701 @default.
• W46693260 hasConcept C115903868 @default.
• W46693260 hasConcept C117447612 @default.
• W46693260 hasConcept C118530786 @default.
• W46693260 hasConcept C121822524 @default.
• W46693260 hasConcept C131275738 @default.
• W46693260 hasConcept C137287247 @default.
• W46693260 hasConcept C184842701 @default.
• W46693260 hasConcept C195518309 @default.
• W46693260 hasConcept C199360897 @default.
• W46693260 hasConcept C22680326 @default.
• W46693260 hasConcept C2777904410 @default.
• W46693260 hasConcept C29983905 @default.
• W46693260 hasConcept C38652104 @default.
• W46693260 hasConcept C41008148 @default.
• W46693260 hasConcept C43126263 @default.
• W46693260 hasConcept C527648132 @default.
• W46693260 hasConcept C529173508 @default.
• W46693260 hasConcept C62913178 @default.
• W46693260 hasConcept C63406617 @default.
• W46693260 hasConcept C77109596 @default.
• W46693260 hasConcept C79974875 @default.
• W46693260 hasConceptScore W46693260C103377522 @default.
• W46693260 hasConceptScore W46693260C111919701 @default.
• W46693260 hasConceptScore W46693260C115903868 @default.
• W46693260 hasConceptScore W46693260C117447612 @default.
• W46693260 hasConceptScore W46693260C118530786 @default.
• W46693260 hasConceptScore W46693260C121822524 @default.
• W46693260 hasConceptScore W46693260C131275738 @default.
• W46693260 hasConceptScore W46693260C137287247 @default.
• W46693260 hasConceptScore W46693260C184842701 @default.
• W46693260 hasConceptScore W46693260C195518309 @default.
• W46693260 hasConceptScore W46693260C199360897 @default.
• W46693260 hasConceptScore W46693260C22680326 @default.
• W46693260 hasConceptScore W46693260C2777904410 @default.
• W46693260 hasConceptScore W46693260C29983905 @default.
• W46693260 hasConceptScore W46693260C38652104 @default.
• W46693260 hasConceptScore W46693260C41008148 @default.
• W46693260 hasConceptScore W46693260C43126263 @default.
• W46693260 hasConceptScore W46693260C527648132 @default.
• W46693260 hasConceptScore W46693260C529173508 @default.
• W46693260 hasConceptScore W46693260C62913178 @default.
• W46693260 hasConceptScore W46693260C63406617 @default.
• W46693260 hasConceptScore W46693260C77109596 @default.
• W46693260 hasConceptScore W46693260C79974875 @default.
• W46693260 hasLocation W466932601 @default.
• W46693260 hasOpenAccess W46693260 @default.
• W46693260 hasPrimaryLocation W466932601 @default.
• W46693260 hasRelatedWork W1505841500 @default.
• W46693260 hasRelatedWork W1505851021 @default.
• W46693260 hasRelatedWork W1534715026 @default.
• W46693260 hasRelatedWork W1541756730 @default.
• W46693260 hasRelatedWork W1602682031 @default.
• W46693260 hasRelatedWork W175683740 @default.
• W46693260 hasRelatedWork W1978813170 @default.
• W46693260 hasRelatedWork W2010121843 @default.
• W46693260 hasRelatedWork W2045676119 @default.
• W46693260 hasRelatedWork W2102558121 @default.
• W46693260 hasRelatedWork W2119251836 @default.
• W46693260 hasRelatedWork W2189114194 @default.
• W46693260 hasRelatedWork W2384109733 @default.
• W46693260 hasRelatedWork W2412133583 @default.
• W46693260 hasRelatedWork W2514974017 @default.
• W46693260 hasRelatedWork W2783765851 @default.
• W46693260 hasRelatedWork W3187542790 @default.
• W46693260 hasRelatedWork W3200379286 @default.
• W46693260 hasRelatedWork W41703739 @default.
• W46693260 hasRelatedWork W2549815077 @default.
• W46693260 isParatext "false" @default.
• W46693260 isRetracted "false" @default.
• W46693260 magId "46693260" @default.
• W46693260 workType "dissertation" @default.