Engineering Methods and Tools for Software Safety and Security
Engineering Methods and Tools for Software Safety and Security

Author: M. Broy

Publisher: IOS Press

Published: 2009-03-26

Total Pages: 344

ISBN-13: 1607504103

DOWNLOAD EBOOK

As a consequence of the wide distribution of software and software infrastructure, information security and safety depend on the quality and excellent understanding of its functioning. Only if this functionality is guaranteed as safe, customer and information are protected against adversarial attacks and malfunction. A vast proportion of information exchange is dominated by computer systems. Due to the fact that technical systems are more or less interfaced with software systems, most information exchange is closely related to software and computer systems. Information safety and security of software systems depend on the quality and excellent understanding of its functioning. The last few years have shown a renewed interest in formally specifying and verifying software and its role in engineering methods. Within the last decade, interactive program verifiers have been applied to control software and other critical applications. Software model checking has made strides into industrial applications and a number of research tools for bug detection have been built using automatic program-verification technology. Such solutions are high-level programming methods which provide strategies to ensure information security in complex software systems by automatically verified correctness. Based on the specific needs in applications of software technology, models and formal methods must serve the needs and the quality of advanced software engineering methods. This book provides an in-depth presentation of state-of-the-art topics on how to meet such challenges covering both theoretical foundations and industrial practice.

Engineering Methods and Tools for Software Safety and Security
Engineering Methods and Tools for Software Safety and Security

Author: M. Broy

Publisher:

Published: 2009-01-01

Total Pages: 333

ISBN-13: 9781441616135

DOWNLOAD EBOOK

Based on the specific needs in applications of software technology, models and formal methods must serve the needs and the quality of advanced software engineering methods. This book provides a presentation of topics on how to meet such challenges covering both theoretical foundations and industrial practice.

Software System Reliability and Security
Software System Reliability and Security

Author: Charles Antony Richard Hoare

Publisher: IOS Press

Published: 2007

Total Pages: 428

ISBN-13: 1586037315

DOWNLOAD EBOOK

To make communication and computation secure against catastrophic failure and malicious interference, it is essential to build secure software systems and methods for their development. This book describes the ideas on how to meet these challenges in software engineering.

Software Security Engineering
Software Security Engineering

Author: Nancy R. Mead

Publisher: Addison-Wesley Professional

Published: 2004-04-21

Total Pages: 368

ISBN-13: 0132702452

DOWNLOAD EBOOK

Software Security Engineering draws extensively on the systematic approach developed for the Build Security In (BSI) Web site. Sponsored by the Department of Homeland Security Software Assurance Program, the BSI site offers a host of tools, guidelines, rules, principles, and other resources to help project managers address security issues in every phase of the software development life cycle (SDLC). The book’s expert authors, themselves frequent contributors to the BSI site, represent two well-known resources in the security world: the CERT Program at the Software Engineering Institute (SEI) and Cigital, Inc., a consulting firm specializing in software security. This book will help you understand why Software security is about more than just eliminating vulnerabilities and conducting penetration tests Network security mechanisms and IT infrastructure security services do not sufficiently protect application software from security risks Software security initiatives should follow a risk-management approach to identify priorities and to define what is “good enough”–understanding that software security risks will change throughout the SDLC Project managers and software engineers need to learn to think like an attacker in order to address the range of functions that software should not do, and how software can better resist, tolerate, and recover when under attack

Engineering Safe and Secure Software Systems
Engineering Safe and Secure Software Systems

Author: C. Warren Axelrod

Publisher: Artech House

Published: 2013

Total Pages: 350

ISBN-13: 1608074722

DOWNLOAD EBOOK

This first-of-its-kind resource offers a broad and detailed understanding of software systems engineering from both security and safety perspectives. Addressing the overarching issues related to safeguarding public data and intellectual property, the book defines such terms as systems engineering, software engineering, security, and safety as precisely as possible, making clear the many distinctions, commonalities, and interdependencies among various disciplines. You explore the various approaches to risk and the generation and analysis of appropriate metrics. This unique book explains how processes relevant to the creation and operation of software systems should be determined and improved, how projects should be managed, and how products can be assured. You learn the importance of integrating safety and security into the development life cycle. Additionally, this practical volume helps identify what motivators and deterrents can be put in place in order to implement the methods that have been recommended.

Engineering Trustworthy Software Systems
Engineering Trustworthy Software Systems

Author: Jonathan P. Bowen

Publisher: Springer Nature

Published: 2020-07-31

Total Pages: 236

ISBN-13: 3030550893

DOWNLOAD EBOOK

This book constitutes the refereed proceedings of the 5th International School on Engineering Trustworthy Software Systems, SETSS 2019, held in Chongqing, China, in April 2019. The five chapters in this volume provide lectures on leading-edge research in methods and tools for use in computer system engineering. The topics covered in these chapter include Seamless Model-based System Development: Foundations; From Bounded Reachability Analysis of Linear Hybrid Automata to Verification of Industrial CPS and IoT; Weakest Preexpectation Semantics for Bayesian Inference: Conditioning, Continuous Distributions and Divergence; K – A Semantic Framework for Programming Languages and Formal Analysis Tools; and Software Abstractions and Human-Cyber-Physical Systems Architecture Modelling.

New Trends in Software Methodologies, Tools and Techniques
New Trends in Software Methodologies, Tools and Techniques

Author: A. Selamat

Publisher: IOS Press

Published: 2014-08-29

Total Pages: 1128

ISBN-13: 161499434X

DOWNLOAD EBOOK

Software is the essential enabling means for science and the new economy. It helps us to create a more reliable, flexible and robust society. But software often falls short of our expectations. Current methodologies, tools, and techniques remain expensive and are not yet sufficiently reliable, while many promising approaches have proved to be no more than case-by-case oriented methods. This book contains extensively reviewed papers from the thirteenth International Conference on New Trends in software Methodology, Tools and Techniques (SoMeT_14), held in Langkawi, Malaysia, in September 2014. The conference provides an opportunity for scholars from the international research community to discuss and share research experiences of new software methodologies and techniques, and the contributions presented here address issues ranging from research practices and techniques and methodologies to proposing and reporting solutions for global world business. The emphasis has been on human-centric software methodologies, end-user development techniques and emotional reasoning, for an optimally harmonized performance between the design tool and the user. Topics covered include the handling of cognitive issues in software development to adapt it to the user's mental state and intelligent software design in software utilizing new aspects on conceptual ontology and semantics reflected on knowledge base system models. This book provides an opportunity for the software science community to show where we are today and where the future may take us.

Systems Engineering for Automotive Powertrain Development
Systems Engineering for Automotive Powertrain Development

Author: Hannes Hick

Publisher: Springer

Published: 2021-02-25

Total Pages: 0

ISBN-13: 9783319996288

DOWNLOAD EBOOK

For the last century, the automotive industry has been dominated by internal combustion engines. Their flexibility of application, driving range, performance and sporty characteristics has resulted in several generations of this technology and has formed generations of engineers. But that is not the end of the story. Stricter legislation and increased environmental awareness have resulted in the development of new powertrain technologies in addition and parallel to the highly optimized internal combustion engine. Hybrid powertrains systems, pure battery electric systems and fuel cell systems, in conjunction with a diverse range of applications, have increased the spectrum of powertrain technologies. Furthermore, automated driving together with intelligent and highly connected systems are changing the way to get from A to B. Not only is the interaction of all these new technologies challenging, but also several different disciplines have to collaborate intensively in order for new powertrain systems to be successfully developed. These new technologies and the resulting challenges lead to an increase in system complexity. Approaches such as systems engineering are necessary to manage this complexity. To show how systems engineering manages the increasing complexity of modern powertrain systems, by providing processes, methods, organizational aspects and tools, this book has been structured into five parts. Starting with Challenges for Powertrain Development, which describes automotive-related challenges at different levels of the system hierarchy and from different point of views. The book then continues with the core part, Systems Engineering, in which all the basics of systems engineering, model-based systems engineering, and their related processes, methods, tools, and organizational matters are described. A special focus is placed on important standards and the human factor. The third part, Automotive Powertrain Systems Engineering Approach, puts the fundamentals of systems engineering into practice by adding the automotive context. This part focuses on system development and also considers the interactions to hardware and software development. Several approaches and methods are presented based on systems engineering philosophy. Part four, Powertrain Development Case Studies, adds the practical point of view by providing a range of case studies on powertrain system level and on powertrain element level and discusses the development of hybrid powertrain, internal combustion engines, e-drives, transmissions, batteries and fuel cell systems. Two case studies on a vehicle level are also presented. The final part, Outlook, considers the development of systems engineering itself with particular focus on information communication technologies. Even though this book covers systems engineering from an automotive perspective, many of the challenges, fundamental principles, conclusions and outlooks can be applied to other domains too. Therefore, this book is not only relevant for automotive engineers and students, but also for specialists in scientific and industrial positions in other domains and anyone who has to cope with the challenge of successfully developing complex systems with a large number of collaborating disciplines.

The Tangled Web
The Tangled Web

Author: Michal Zalewski

Publisher: No Starch Press

Published: 2011-11-15

Total Pages: 324

ISBN-13: 1593273886

DOWNLOAD EBOOK

Modern web applications are built on a tangle of technologies that have been developed over time and then haphazardly pieced together. Every piece of the web application stack, from HTTP requests to browser-side scripts, comes with important yet subtle security consequences. To keep users safe, it is essential for developers to confidently navigate this landscape. In The Tangled Web, Michal Zalewski, one of the world’s top browser security experts, offers a compelling narrative that explains exactly how browsers work and why they’re fundamentally insecure. Rather than dispense simplistic advice on vulnerabilities, Zalewski examines the entire browser security model, revealing weak points and providing crucial information for shoring up web application security. You’ll learn how to: –Perform common but surprisingly complex tasks such as URL parsing and HTML sanitization –Use modern security features like Strict Transport Security, Content Security Policy, and Cross-Origin Resource Sharing –Leverage many variants of the same-origin policy to safely compartmentalize complex web applications and protect user credentials in case of XSS bugs –Build mashups and embed gadgets without getting stung by the tricky frame navigation policy –Embed or host user-supplied content without running into the trap of content sniffing For quick reference, "Security Engineering Cheat Sheets" at the end of each chapter offer ready solutions to problems you’re most likely to encounter. With coverage extending as far as planned HTML5 features, The Tangled Web will help you create secure web applications that stand the test of time.

Requirements Engineering for Safety-Critical Systems
Requirements Engineering for Safety-Critical Systems

Author: Luiz Eduardo G. Martins

Publisher: CRC Press

Published: 2022-09-01

Total Pages: 229

ISBN-13: 1000793192

DOWNLOAD EBOOK

Safety-Critical Systems (SCS) are increasingly present in people's daily activities. In the means of transport, in medical treatments, in industrial processes, in the control of air, land, maritime traffic, and many other situations, we use and depend on SCS. The requirements engineering of any system is crucial for the proper development of the same, and it becomes even more relevant for the development of SCS. Requirements Engineering is a discipline that focuses on the development of techniques, methods, processes, and tools that assist in the design of software and systems, covering the activities of elicitation, analysis, modeling and specification, validation, and management of requirements. The complete specification of system requirements establishes the basis for its architectural design. It offers a description of the functional and quality aspects that should guide the implementation and system evolution. In this book, we discuss essential elements of requirements engineering applied to SCS, such as the relationship between safety/hazard analysis and requirements specification, a balance between conservative and agile methodologies during SCS development, the role of requirements engineering in safety cases, and requirements engineering maturity model for SCS. This book provides relevant insights for professionals, students, and researchers interested in improving the quality of the SCS development process, making system requirements a solid foundation for improving the safety and security of future systems.