Editors:

Úlfar Erlingsson⁰,
Roel Wieringa¹,
Nicola Zannone²

Úlfar Erlingsson
1. Google Inc., Mountain View, USA
View editor publications

You can also search for this editor in PubMed Google Scholar
Roel Wieringa
1. Computer Science Department, University of Twente, Enschede, The Netherlands
View editor publications

You can also search for this editor in PubMed Google Scholar
Nicola Zannone
1. Faculty of Mathematics and Computer Science, Eindhoven University of Technology, Eindhoven, The Netherlands
View editor publications

You can also search for this editor in PubMed Google Scholar

State-of-the-art research
Fast-track conference proceedings
Unique visibility

Part of the book series: Lecture Notes in Computer Science (LNCS, volume 6542)

Part of the book sub series: Security and Cryptology (LNSC)

Conference series link(s): ESSoS: International Symposium on Engineering Secure Software and Systems

18k Accesses
190 Citations

Conference proceedings info: ESSoS 2011.

Buy it now

eBook USD 39.99

Price excludes VAT (USA)

Softcover Book USD 54.99

Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Other ways to access

Licence this eBook for your library

Learn about institutional subscriptions

This is a preview of subscription content, log in via an institution to check for access.

Table of contents (21 papers)

Front Matter

PDF
Session 1. Model-Based Security I
1. Model-Based Refinement of Security Policies in Collaborative Virtual Organisations
  
  Benjamin Aziz, Alvaro E. Arenas, Michael Wilson
  
  Pages 1-14
2. Automatic Conformance Checking of Role-Based Access Control Policies via Alloy
  
  David Power, Mark Slaymaker, Andrew Simpson
  
  Pages 15-28
3. Security Validation of Business Processes via Model-Checking
  
  Wihem Arsac, Luca Compagna, Giancarlo Pellegrino, Serena Elisa Ponta
  
  Pages 29-42
Session 2. Tools and Mechanisms
1. On-Device Control Flow Verification for Java Programs
  
  Arnaud Fontaine, Samuel Hym, Isabelle Simplot-Ryl
  
  Pages 43-57
2. Efficient Symbolic Execution for Analysing Cryptographic Protocol Implementations
  
  Ricardo Corin, Felipe Andrés Manzano
  
  Pages 58-72
3. Predictability of Enforcement
  
  Nataliia Bielova, Fabio Massacci
  
  Pages 73-86
Session 3. Web Security
1. SessionShield: Lightweight Protection against Session Hijacking
  
  Nick Nikiforakis, Wannes Meert, Yves Younan, Martin Johns, Wouter Joosen
  
  Pages 87-100
2. Security Sensitive Data Flow Coverage Criterion for Automatic Security Testing of Web Applications
  
  Thanh Binh Dao, Etsuya Shibayama
  
  Pages 101-113
3. Middleware Support for Complex and Distributed Security Services in Multi-tier Web Applications
  
  Philippe De Ryck, Lieven Desmet, Wouter Joosen
  
  Pages 114-127
Session 4. Model-Based Security II
1. Lightweight Modeling and Analysis of Security Concepts
  
  Jörn Eichler
  
  Pages 128-141
2. A Tool-Supported Method for the Design and Implementation of Secure Distributed Applications
  
  Linda Ariani Gunawan, Frank Alexander Kraemer, Peter Herrmann
  
  Pages 142-155
3. An Architecture-Centric Approach to Detecting Security Patterns in Software
  
  Michaela Bunke, Karsten Sohr
  
  Pages 156-166
Session 5. Security Requirements Engineering
1. The Security Twin Peaks
  
  Thomas Heyman, Koen Yskout, Riccardo Scandariato, Holger Schmidt, Yijun Yu
  
  Pages 167-180
2. Evolution of Security Requirements Tests for Service–Centric Systems
  
  Michael Felderer, Berthold Agreiter, Ruth Breu
  
  Pages 181-194
3. After-Life Vulnerabilities: A Study on Firefox Evolution, Its Vulnerabilities, and Fixes
  
  Fabio Massacci, Stephan Neuhaus, Viet Hung Nguyen
  
  Pages 195-208
Session 6. Authorization
1. Authorization Enforcement Usability Case Study
  
  Steffen Bartsch
  
  Pages 209-220
2. Scalable Authorization Middleware for Service Oriented Architectures
  
  Tom Goovaerts, Lieven Desmet, Wouter Joosen
  
  Pages 221-233
3. Adaptable Authentication Model: Exploring Security with Weaker Attacker Models
  
  Naveed Ahmed, Christian D. Jensen
  
  Pages 234-247
Session 7. Ideas
1. Idea: Interactive Support for Secure Software Development
  
  Jing Xie, Bill Chu, Heather Richter Lipford
  
  Pages 248-255

Other Volumes

Engineering Secure Software and Systems

About this book

This book constitutes the refereed proceedings of the Third International Symposium on Engineering Secure Software and Systems, ESSoS 2011, held in Madrid, Italy, in February 2011. The 18 revised full papers presented together with 3 idea papers were carefully reviewed and selected from 63 submissions. The papers are organized in topical sections on model-based security, tools and mechanisms, Web security, security requirements engineering, and authorization.

Keywords

Editors and Affiliations

Google Inc., Mountain View, USA

Úlfar Erlingsson
Computer Science Department, University of Twente, Enschede, The Netherlands

Roel Wieringa
Faculty of Mathematics and Computer Science, Eindhoven University of Technology, Eindhoven, The Netherlands

Nicola Zannone

Bibliographic Information

Book Title: Engineering Secure Software and Systems
Book Subtitle: Third International Symposium, ESSoS 2011, Madrid, Spain, February 9-10, 2011, Proceedings
Editors: Úlfar Erlingsson, Roel Wieringa, Nicola Zannone
Series Title: Lecture Notes in Computer Science
DOI: https://doi.org/10.1007/978-3-642-19125-1
Publisher: Springer Berlin, Heidelberg
eBook Packages: Computer Science, Computer Science (R0)
Copyright Information: Springer Berlin Heidelberg 2011
Softcover ISBN: 978-3-642-19124-4Published: 31 January 2011
eBook ISBN: 978-3-642-19125-1Published: 24 January 2011
Series ISSN: 0302-9743
Series E-ISSN: 1611-3349
Edition Number: 1
Number of Pages: XI, 273
Number of Illustrations: 48 b/w illustrations, 21 illustrations in colour
Topics: Computer Communication Networks, Cryptology, Software Engineering/Programming and Operating Systems, Data Structures and Information Theory, Math Applications in Computer Science, Models and Principles

Publish with us

Policies and ethics

Editors:

Sections

Buy it now

Buying options

Other ways to access

Table of contents (21 papers)

Front Matter

Session 1. Model-Based Security I

Session 2. Tools and Mechanisms

Session 3. Web Security

Session 4. Model-Based Security II

Session 5. Security Requirements Engineering

Session 6. Authorization

Session 7. Ideas

Other Volumes

Engineering Secure Software and Systems

About this book

Keywords

Editors and Affiliations

Google Inc., Mountain View, USA

Computer Science Department, University of Twente, Enschede, The Netherlands

Faculty of Mathematics and Computer Science, Eindhoven University of Technology, Eindhoven, The Netherlands

Bibliographic Information

Publish with us

Buy it now

Buying options

Other ways to access

Search

Navigation