篇名 |
A Framework for Modeling and Detecting Security Vulnerabilities in Human-Machine Pair Programming
|
---|---|
並列篇名 | A Framework for Modeling and Detecting Security Vulnerabilities in Human-Machine Pair Programming |
作者 | Pingyan Wang、Shaoying Liu、Ai Liu、Fatiha Zaidi |
英文摘要 | To detect and mitigate security vulnerabilities early in the coding phase is an important strategy for secure software development. Existing solutions typically focus on finding certain vulnerabilities in certain computer systems without giving a systematic way of handling different types of vulnerabilities. In this paper, we present a framework for systematically modeling and detecting potential security vulnerabilities during the construction of programs using a particular programming paradigm known as Human-Machine Pair Programming. The framework provides designers with a general way of modeling a class of attacks in detail, and shows how programmers can discover and fix a vulnerability in a timely manner. Specifically, our framework advocates three primary steps: (1) generating an attack tree to model a given security threat, (2) constructing vulnerability-matching patterns based on the result of the attack tree analysis, and (3) detecting corresponding vulnerabilities based on the patterns during the program construction. We also present a case study to demonstrate how it works in practice.
|
起訖頁 | 1129-1138 |
關鍵詞 | Security vulnerabilities、Human-machine pair programming、Attack trees、Static analysis |
刊名 | 網際網路技術學刊 |
期數 | 202209 (23:5期) |
出版單位 | 台灣學術網路管理委員會 |
DOI |
|
QR Code | |
該期刊 上一篇
| A Multi-Trajectory Monte Carlo Sampler |
該期刊 下一篇
| A Study on House Price Prediction Based on Stacking-Sorted-Weighted-Ensemble Model |