Skip to main content
SpringerLink
Log in
Book cover
  • Conference proceedings
  • © 2009

Engineering Secure Software and Systems

First International Symposium, ESSoS 2009 Leuven, Belgium, February 4-6, 2009, Proceedings

Editors:

  1. Fabio Massacci

    1. University of Trento, Povo (Trento), Italy

    View editor publications

    You can also search for this editor in PubMed   Google Scholar

  2. Samuel T. Redwine

    1. Department of Computer Science, James Madison University, Harrisonburg, USA

    View editor publications

    You can also search for this editor in PubMed   Google Scholar

  3. Nicola Zannone

    1. Department of Computer Science, University of Toronto, Canada

    View editor publications

    You can also search for this editor in PubMed   Google Scholar

Part of the book series: Lecture Notes in Computer Science (LNCS, volume 5429)

Part of the book sub series: Security and Cryptology (LNSC)

Conference series link(s): ESSoS: International Symposium on Engineering Secure Software and Systems

Conference proceedings info: ESSoS 2009.

Sections

Buy it now

eBook USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Other ways to access

This is a preview of subscription content, log in via an institution to check for access.

Table of contents (17 papers)

  1. Front Matter

    PDF

  2. Policy Verification and Enforcement

    1. Verification of Business Process Entailment Constraints Using SPIN

      • Christian Wolter, Philip Miseldine, Christoph Meinel
      Pages 1-15

    2. From Formal Access Control Policies to Runtime Enforcement Aspects

      • Slim Kallel, Anis Charfi, Mira Mezini, Mohamed Jmaiel, Karl Klose
      Pages 16-31

    3. Idea: Trusted Emergency Management

      • Timothy E. Levin, Cynthia E. Irvine, Terry V. Benzel, Thuy D. Nguyen, Paul C. Clark, Ganesha Bhaskara
      Pages 32-36

  3. Model Refinement and Program Transformation

    1. Idea: Action Refinement for Security Properties Enforcement

      • Fabio Martinelli, Ilaria Matteucci
      Pages 37-42

  4. Secure System Development

    1. Report: Measuring the Attack Surfaces of Enterprise Software

      • Pratyusa K. Manadhata, Yuecel Karabulut, Jeannette M. Wing
      Pages 91-100

    2. Report: Extensibility and Implementation Independence of the .NET Cryptographic API

      • Pieter Philippaerts, Cédric Boon, Frank Piessens
      Pages 101-110

    4. Protection Poker: Structuring Software Security Risk Assessment and Knowledge Transfer

      • Laurie Williams, Michael Gegick, Andrew Meneely
      Pages 122-134

  5. Attack Analysis and Prevention

    1. Toward Non-security Failures as a Predictor of Security Faults and Failures

      • Michael Gegick, Pete Rotella, Laurie Williams
      Pages 135-149

    2. A Scalable Approach to Full Attack Graphs Generation

      • Feng Chen, Jinshu Su, Yi Zhang
      Pages 150-163

    3. MEDS: The Memory Error Detection System

      • Jason D. Hiser, Clark L. Coleman, Michele Co, Jack W. Davidson
      Pages 164-179

  6. Testing and Assurance

    1. Idea: Automatic Security Testing for Web Applications

      • Thanh-Binh Dao, Etsuya Shibayama
      Pages 180-184

    3. Idea: Measuring the Effect of Code Complexity on Static Analysis Results

      • James Walden, Adam Messer, Alex Kuhl
      Pages 195-199

  7. Back Matter

    PDF
Back to top

Other Volumes

  1. Engineering Secure Software and Systems

Back to top

About this book

This book constitutes the refereed proceedings of the First International Symposium on Engineering Secure Software and Systems, ESSoS 2009, held in Leuven, Belgium, in February 2009.

The 10 revised full papers presented together with 7 industry reports and ideas papers were carefully reviewed and selected from 57 submissions. The papers are organized in topical sections on policy verification and enforcement, model refinement and program transformation, secure system development, attack analysis and prevention, as well as testing and assurance.

Back to top

Keywords

Back to top

Editors and Affiliations

  • University of Trento, Povo (Trento), Italy

    Fabio Massacci

  • Department of Computer Science, James Madison University, Harrisonburg, USA

    Samuel T. Redwine

  • Department of Computer Science, University of Toronto, Canada

    Nicola Zannone

Back to top

Bibliographic Information

Back to top

Publish with us

Policies and ethics

Back to top
Access via your institution

Buy it now

eBook USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Other ways to access

Search

Navigation