English
Related papers

Related papers: Finding Security Threats That Matter: An Industria…

200 papers

The importance of information security dramatically increased and will further grow due to the shape and nature of the modern computing industry. Software is published at a continuously increasing pace. The Internet of Things and security…

Cryptography and Security · Computer Science 2022-05-10 Mattia Paccamiccio , Leonardo Mostarda

Organizations that develop software have recognized that software process models are particularly useful for maintaining a high standard of quality. In the last decade, simulations of software processes were used in several settings and…

Software Engineering · Computer Science 2014-02-24 Holger Neu , Thomas Hanne , Jürgen Münch , Stefan Nickel , Andreas Wirsen

Cyber threats affect all kinds of organisations. Risk analysis is an essential methodology for cybersecurity as it allows organisations to deal with the cyber threats potentially affecting them, prioritise the defence of their assets and…

Cryptography and Security · Computer Science 2019-03-20 David Rios Insua , Aitor Couce Vieira , Jose Antonio Rubio , Wolter Pieters , Katsiaryna Labunets , Daniel Garcia Rasines

Security risk management can be applied on well-defined or existing systems; in this case, the objective is to identify existing vulnerabilities, assess the risks and provide for the adequate countermeasures. Security risk management can…

Cryptography and Security · Computer Science 2014-04-09 Stéphane Paul

Fault tolerance is a key factor of industrial computing systems design. But in practical terms, these systems, like every commercial product, are under great financial constraints and they have to remain in operational state as long as…

Systems and Control · Computer Science 2015-03-31 Andrey A. Shchurov

In the last decade, a lot of effort has been put into securing software application during development in the software industry. Software security is a research field in this area which looks at how security can be weaved into software at…

Cryptography and Security · Computer Science 2014-01-27 Adetunji Adebiyi , Chris Imafidon

Due to the fourth industrial revolution, industrial applications make use of the progress in communication and embedded devices. This allows industrial users to increase efficiency and manageability while reducing cost and effort.…

Cryptography and Security · Computer Science 2019-09-10 Simon D. Duque Anton , Anna Pia Lohfink , Christoph Garth , Hans Dieter Schotten

Recent research advances in Artificial Intelligence (AI) have yielded promising results for automated software vulnerability management. AI-based models are reported to greatly outperform traditional static analysis tools, indicating a…

Cryptography and Security · Computer Science 2024-05-07 Shengye Wan , Joshua Saxe , Craig Gomes , Sahana Chennabasappa , Avilash Rath , Kun Sun , Xinda Wang

System safety refers to a diverse engineering discipline assessing and improving various aspects of safety in socio-technical systems and their software-intensive sub-systems. While system safety has been a vital area of applied research…

Software Engineering · Computer Science 2018-12-21 Mario Gleirscher , Anne Nyokabi

Software Vulnerabilities (SVs) are increasing in complexity and scale, posing great security risks to many software systems. Given the limited resources in practice, SV assessment and prioritization help practitioners devise optimal SV…

Software Engineering · Computer Science 2023-01-09 Triet H. M. Le , Huaming Chen , M. Ali Babar

Systems modeling practice lacks security analysis tools that can interface with modeling languages to facilitate security by design. Security by design is a necessity in the age of safety critical cyber-physical systems, where security…

Cryptography and Security · Computer Science 2020-10-19 Georgios Bakirtzis , Garrett L. Ward , Christopher J. Deloglos , Carl R. Elks , Barry M. Horowitz , Cody H. Fleming

Adequate risk assessment of safety critical systems needs to take both safety and security into account, as well as their interaction. A prominent methodology for modeling safety and security are attack-fault trees (AFTs), which combine the…

Cryptography and Security · Computer Science 2024-08-14 Milan Lopuhaä-Zwakenberg

To avoid software vulnerabilities, organizations are shifting security to earlier stages of the software development, such as at code review time. In this paper, we aim to understand the developers' perspective on assessing software…

Software Engineering · Computer Science 2022-08-09 Larissa Braz , Alberto Bacchelli

Machine learning algorithms are increasingly influencing our decisions and interacting with us in all parts of our daily lives. Therefore, just like for power plants, highways, and myriad other engineered sociotechnical systems, we must…

Machine Learning · Statistics 2016-01-19 Kush R. Varshney

Nowadays, data has become an invaluable asset to entities and companies, and keeping it secure represents a major challenge. Data centers are responsible for storing data provided by software applications. Nevertheless, the number of…

Requirement prioritization is recognized as an important decision-making activity in requirements engineering and software development. Requirement prioritization is applied to determine which requirements should be implemented and…

Software Engineering · Computer Science 2023-12-21 Richard Berntsson Svensson , Richard Torkar

The manifold interactions between safety and security aspects makes it plausible to handle safety and security risks in an unified way. The paper develops a corresponding approach based on the discrete event systems (DEVS) paradigm. The…

Systems and Control · Computer Science 2019-01-08 Joachim Draeger , Stefan Hahndel

During software development, balancing security and non security issues is challenging. We focus on security awareness and approaches taken by non-security experts using software development issue trackers when considering security. We…

Software Engineering · Computer Science 2023-08-28 Léon McGregor , Manuel Maarek , Hans-Wolfgang Loidl

Machine learning (ML) and artificial intelligence (AI) techniques have now become commonplace in software products and services. When threat modelling a system, it is therefore important that we consider threats unique to ML and AI…

Cryptography and Security · Computer Science 2024-01-17 Vimal Kumar , Juliette Mayo , Khadija Bahiss

These days, software development and security go hand in hand. Numerous techniques and strategies are discussed in the literature that can be applied to guarantee the incorporation of security into the software development process. In this…

Cryptography and Security · Computer Science 2024-03-29 Timo Langstrof , Alex R. Sabau