Dear Spiral User, If you encounter any issues while depositing your thesis in Spiral, please email assessment.records@imperial.ac.uk. For all other issues please raise a ticket to Research Applications team providing as much detail as possible in order to help us resolve your query. Kind Regards, Spiral Team.
 
Static analysis-based approaches for secure software development
File(s)
Author(s)
Siavvas, Miltiadis
Gelenbe, Erol
Kehagias, Dionysios
Tzovaras, Dimitrios
Type
Conference Paper
Abstract
Software security is a matter of major concern for software development enterprises that wish to deliver highly secure software products to their customers. Static analysis is considered one of the most effective mechanisms for adding security to software products. The multitude of static analysis tools that are available provide a large number of raw results that may contain security-relevant information, which may be useful for the production of secure software. Several mechanisms that can facilitate the production of both secure and reliable software applications have been proposed over the years. In this paper, two such mechanisms, particularly the vulnerability prediction models (VPMs) and the optimum checkpoint recommendation (OCR) mechanisms, are theoretically examined, while their potential improvement by using static analysis is also investigated. In particular, we review the most significant contributions regarding these mechanisms, identify their most important open issues, and propose directions for future research, emphasizing on the potential adoption of static analysis for addressing the identified open issues. Hence, this paper can act as a reference for researchers that wish to contribute in these subfields, in order to gain solid understanding of the existing solutions and their open issues that require further research.
Editor(s)
Gelenbe, E
Campegiani, P
Czachorski, T
Katsikas, SK
Komnios, I
Romano, L
Tzovaras, D
Date Issued
2018-07-14
Date Acceptance
2018-02-26
Citation
Security in Computer and Information Sciences, 2018, 821, pp.142-157
URI
DOI
ISBN
9783319951881
ISSN
1865-0929
Publisher
Springer-Verlag Berlin
Start Page
142
End Page
157
Journal / Book Title
Security in Computer and Information Sciences
Volume
821
Copyright Statement
© 2018 The Author(s). This chapter is licensed under the terms of the Creative Commons Attribution 4.0 International License (http://creativecommons.org/licenses/by/4.0/), which permits use, sharing, adaptation, distribution and reproduction in any medium
or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license and indicate if changes were
made.
Sponsor
European Commission Directorate-General for Research and Innovation
Commission of the European Communities
Identifier
http://gateway.webofknowledge.com/gateway/Gateway.cgi?GWVersion=2&SrcApp=PARTNER_APP&SrcAuth=LinksAMR&KeyUT=WOS:000451341900013&DestLinkType=FullRecord&DestApp=ALL_WOS&UsrCustomerID=1ba7043ffcc86c417c072aa74d649202
Grant Number
EU H2020 Framework Prog. R & Innovation Grant Agreement 727528
740923
Source
32nd International Symposium on Computer and Information Sciences (ISCIS) on Cybersecurity (Euro-CYBERSEC)
Subjects
Software security
Reliability
Static analysis
Vulnerability prediction
Checkpoint and Restart
COMPLEXITY
METRICS
Publication Status
Published
Start Date
2018-02-26
Finish Date
2018-02-27
Coverage Spatial
Imperial Coll London, London, England
Date Publish Online
2018-07-14