標(biāo)題: Titlebook: Engineering Secure Software and Systems; 8th International Sy Juan Caballero,Eric Bodden,Elias Athanasopoulos Conference proceedings 2016 S [打印本頁(yè)] 作者: 能干 時(shí)間: 2025-3-21 19:58
書目名稱Engineering Secure Software and Systems影響因子(影響力)
書目名稱Engineering Secure Software and Systems影響因子(影響力)學(xué)科排名
書目名稱Engineering Secure Software and Systems網(wǎng)絡(luò)公開度
書目名稱Engineering Secure Software and Systems網(wǎng)絡(luò)公開度學(xué)科排名
書目名稱Engineering Secure Software and Systems被引頻次
書目名稱Engineering Secure Software and Systems被引頻次學(xué)科排名
書目名稱Engineering Secure Software and Systems年度引用
書目名稱Engineering Secure Software and Systems年度引用學(xué)科排名
書目名稱Engineering Secure Software and Systems讀者反饋
書目名稱Engineering Secure Software and Systems讀者反饋學(xué)科排名
作者: 發(fā)怨言 時(shí)間: 2025-3-21 23:15 作者: Thymus 時(shí)間: 2025-3-22 00:33 作者: 他一致 時(shí)間: 2025-3-22 06:43
https://doi.org/10.1007/978-3-642-31647-0ams for architectures implementing Intel’s recent MPX CPU extensions. Our results demonstrate a 17?% increase in useful gadgets in MPX binaries, and a decrease in side-effects and preconditions, making them better suited for ROP attacks.作者: 合唱團(tuán) 時(shí)間: 2025-3-22 10:34 作者: arousal 時(shí)間: 2025-3-22 16:47 作者: arousal 時(shí)間: 2025-3-22 18:55
POODLEs, More POODLEs, FREAK Attacks Too: How Server Administrators Responded to Three Serious Web However, servers that had more open ports were more likely to be vulnerable. The results are valuable for practitioners to understand the state of security engineering practices and what can be done to improve.作者: 逗它小傻瓜 時(shí)間: 2025-3-23 01:02
Analyzing the Gadgets,ams for architectures implementing Intel’s recent MPX CPU extensions. Our results demonstrate a 17?% increase in useful gadgets in MPX binaries, and a decrease in side-effects and preconditions, making them better suited for ROP attacks.作者: 推崇 時(shí)間: 2025-3-23 04:14 作者: intellect 時(shí)間: 2025-3-23 07:07 作者: 有雜色 時(shí)間: 2025-3-23 13:16
,Crisis in the Pyrenees, July–December 1813,y knowledge base. We evaluated our approach with real-world case studies, focusing on logistics applications. The evaluation uncovered several flaws with a major impact on the security of the software.作者: MELD 時(shí)間: 2025-3-23 14:37
Product Durability and Re-Take after Usenew security challenges as, e.?g., an XSS attacker becomes more powerful..In this paper, we present a novel approach for statically analysing the foreign language calls. We evaluate our approach by analysing the top Cordova apps from Google Play. Moreover, we report on the current state of the overall quality and security of Cordova apps.作者: Indolent 時(shí)間: 2025-3-23 20:09 作者: Perigee 時(shí)間: 2025-3-24 01:34
Kenneth Chilton,Murray Weidenbaumestigated publicly available factors (e.?g., development activity such as commits, code size, or fraction of code size in different programming languages) to identify which one has the major impact on the security effort of using a FOSS component in a larger software product.作者: 挑剔小責(zé) 時(shí)間: 2025-3-24 05:45
The Problem of Trochanteric Fractures,leware architecture that performs policy transformations and query rewriting for externalized policies to optimize the access control process on the data set. We argue that this offers a promising approach for reducing the policy evaluation overhead for access control on large data sets.作者: 不能約 時(shí)間: 2025-3-24 07:54 作者: EWER 時(shí)間: 2025-3-24 10:59 作者: Indict 時(shí)間: 2025-3-24 16:34 作者: BILK 時(shí)間: 2025-3-24 20:42
Empirical Analysis and Modeling of Black-Box Mutational Fuzzing,mproving software security is hard, and why different parties (e.g., software vendors, white hats, and black hats) are likely to find different vulnerabilities. We also discuss potential generalization of this model to other vulnerability discovery approaches, such as recently emerged bug bounty programs.作者: Leisureliness 時(shí)間: 2025-3-25 02:30
On the Security Cost of Using a Free and Open Source Component in a Proprietary Product,estigated publicly available factors (e.?g., development activity such as commits, code size, or fraction of code size in different programming languages) to identify which one has the major impact on the security effort of using a FOSS component in a larger software product.作者: Generosity 時(shí)間: 2025-3-25 05:36
Idea: Supporting Policy-Based Access Control on Database Systems,leware architecture that performs policy transformations and query rewriting for externalized policies to optimize the access control process on the data set. We argue that this offers a promising approach for reducing the policy evaluation overhead for access control on large data sets.作者: DUST 時(shí)間: 2025-3-25 09:24
0302-9743 tware and Systems, ESSoS 2016, held in London, UK, in April 2016. The 13 full papers presented together with 3 short papers and 1 invited talk were carefully reviewed and selected from 50 submissions.?.The goal of this symposium, is to bring together researchers and practitioners toadvance the state作者: 羞辱 時(shí)間: 2025-3-25 12:07 作者: BUOY 時(shí)間: 2025-3-25 19:19 作者: 向外才掩飾 時(shí)間: 2025-3-25 22:34 作者: 問到了燒瓶 時(shí)間: 2025-3-26 00:44 作者: follicle 時(shí)間: 2025-3-26 08:20 作者: FLORA 時(shí)間: 2025-3-26 08:53 作者: 抑制 時(shí)間: 2025-3-26 14:17
,HexPADS: A Platform to Detect “Stealth” Attacks,side channels, covert channels, or CAIN attacks. Collecting performance metrics across all running processes allows the correlation and detection of these attacks. In addition, HexPADS can mitigate the attacks or significantly reduce their effectiveness with negligible overhead to benign processes.作者: trigger 時(shí)間: 2025-3-26 18:03 作者: amphibian 時(shí)間: 2025-3-27 00:20
Inferring Semantic Mapping Between Policies and Code: The Clue is in the Language,mplemented in a tool (CASTOR), can infer semantic mappings with F1 accuracy of 70?% and 78?% for two social networks, Diaspora and Friendica respectively – as compared with a ground truth mapping established through manual examination of the policies and code.作者: Metastasis 時(shí)間: 2025-3-27 02:35 作者: 他一致 時(shí)間: 2025-3-27 09:02
https://doi.org/10.1007/978-94-017-5962-5system that leverages accelerometer data generated by a mobile device for the purpose of device re-identification. Furthermore, we evaluate the performance of these techniques and assess the viability of embedding such a system as part of existing risk-based authentication processes.作者: receptors 時(shí)間: 2025-3-27 11:01 作者: 石墨 時(shí)間: 2025-3-27 14:48 作者: CLIFF 時(shí)間: 2025-3-27 18:09 作者: Filibuster 時(shí)間: 2025-3-28 01:50
Security Testing Beyond Functional Tests,e a system’s desired behavior over its interface. Security requirements, in contrast, specify desired properties of the world the system lives in. We propose the notion of a security rationale, which supports reductive security arguments for deriving a system specification and assumptions on the sys作者: adipose-tissue 時(shí)間: 2025-3-28 02:36 作者: 苦澀 時(shí)間: 2025-3-28 07:35 作者: 難取悅 時(shí)間: 2025-3-28 11:47 作者: cutlery 時(shí)間: 2025-3-28 18:04
On the Static Analysis of Hybrid Mobile Apps,ed resources, as the revenue generated by an average app is rather small. This results in an increasing use of cross-platform development frameworks that allow developing an app once and offering it on multiple mobile platforms such as Android, iOS, or Windows..Apache Cordova is a popular framework 作者: Osteoarthritis 時(shí)間: 2025-3-28 19:10 作者: 名字 時(shí)間: 2025-3-29 01:05 作者: BILIO 時(shí)間: 2025-3-29 06:28 作者: CLASH 時(shí)間: 2025-3-29 07:29 作者: Living-Will 時(shí)間: 2025-3-29 14:07 作者: 停止償付 時(shí)間: 2025-3-29 19:03
Empirical Analysis and Modeling of Black-Box Mutational Fuzzing,ign data of 60,000 fuzzing runs, 4,000 crashes and 363 unique bugs, from multiple Linux programs using CERT Basic Fuzzing Framework. Motivated by the results of empirical analysis, we propose a stochastic model that captures the long-tail distribution of bug discovery probability and exploitability.作者: Enteropathic 時(shí)間: 2025-3-29 20:52
On the Security Cost of Using a Free and Open Source Component in a Proprietary Product, within a proprietary software supply chain of a large European software vendor. To this extent we have identified three different cost models: centralized (the company checks each component and propagates changes to the different product groups), distributed (each product group is in charge of eval作者: nephritis 時(shí)間: 2025-3-30 00:50 作者: Nerve-Block 時(shí)間: 2025-3-30 07:11 作者: grenade 時(shí)間: 2025-3-30 09:28 作者: Incisor 時(shí)間: 2025-3-30 14:22
Idea: Supporting Policy-Based Access Control on Database Systems,hat subjects can perform on any item in that data set. Performance issues therefore emerge, typically for operations on entire data sets. Emerging access control models such as attribute-based access control do meet their limitations in this context. Worse, few solutions exist that addresses perform作者: Culmination 時(shí)間: 2025-3-30 17:21 作者: FLORA 時(shí)間: 2025-3-31 00:10 作者: 偏狂癥 時(shí)間: 2025-3-31 04:39 作者: jumble 時(shí)間: 2025-3-31 06:16 作者: squander 時(shí)間: 2025-3-31 11:02
https://doi.org/10.1057/9780230595958ness of this generic model w.r.t. a formal notion of explicit information flow. This allows us to (1) increase the precision of the analysis by exploiting the high-level semantics of events at higher levels of abstraction and (2) provide system-wide guarantees at the same time. For instance, using o
