Presentation | 2006-12-15 Security-Aware Refactoring using Information Flow Kensuke TOKODA, Katsuhisa MARUYAMA, |
---|---|
PDF Download Page | PDF download Page Link |
Abstract(in Japanese) | (See Japanese page) |
Abstract(in English) | Vulnerable software is a serious issue since it becomes a key element in the real world. We have proposed a security-aware refactoring which helps programmers avoid unexpected or undesired impact resulting from program modifications. This refactoring is designed to clarify the change (increase and decrease) of the security level of the refactored code. Unfortunately, the conventional mechanism assesses the effects of the change by using a criterion based on the accessibility of the variables storing sensitive data, and thus may provide trivial information with the programmers. This paper describes a new graph representation of data flow labeled with security levels and presents an enhanced mechanism using the graph to provide more sophisticated information about the effects of applied refactorings. |
Keyword(in Japanese) | (See Japanese page) |
Keyword(in English) | Software Security / Refactoring / Program Analysis / Information Flow |
Paper # | SS2006-65 |
Date of Issue |
Conference Information | |
Committee | SS |
---|---|
Conference Date | 2006/12/8(1days) |
Place (in Japanese) | (See Japanese page) |
Place (in English) | |
Topics (in Japanese) | (See Japanese page) |
Topics (in English) | |
Chair | |
Vice Chair | |
Secretary | |
Assistant |
Paper Information | |
Registration To | Software Science (SS) |
---|---|
Language | JPN |
Title (in Japanese) | (See Japanese page) |
Sub Title (in Japanese) | (See Japanese page) |
Title (in English) | Security-Aware Refactoring using Information Flow |
Sub Title (in English) | |
Keyword(1) | Software Security |
Keyword(2) | Refactoring |
Keyword(3) | Program Analysis |
Keyword(4) | Information Flow |
1st Author's Name | Kensuke TOKODA |
1st Author's Affiliation | Graduate School of Science and Engineering, Ritsumeikan University() |
2nd Author's Name | Katsuhisa MARUYAMA |
2nd Author's Affiliation | Dept. of Computer Science, Ritsumeikan University |
Date | 2006-12-15 |
Paper # | SS2006-65 |
Volume (vol) | vol.106 |
Number (no) | 427 |
Page | pp.pp.- |
#Pages | 6 |
Date of Issue |