Mining Security-Sensitive Operations in Legacy Code Using Concept Analysis

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Vinod Ganapathy Articles by David King Articles by Trent Jaeger Articles by Somesh Jha

29th International Conference on Software Engineering (ICSE'07)

Minneapolis, Minnesota

May 20-May 26

ISBN: 0-7695-2828-7

	ASCII Text	x
	Vinod Ganapathy, David King, Trent Jaeger, Somesh Jha, "Mining Security-Sensitive Operations in Legacy Code Using Concept Analysis," Software Engineering, International Conference on, pp. 458-467, 29th International Conference on Software Engineering (ICSE'07), 2007.

	BibTex	x
	@article{ 10.1109/ICSE.2007.54, author = {Vinod Ganapathy and David King and Trent Jaeger and Somesh Jha}, title = {Mining Security-Sensitive Operations in Legacy Code Using Concept Analysis}, journal ={Software Engineering, International Conference on}, volume = {0}, year = {2007}, issn = {0270-5257}, pages = {458-467}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICSE.2007.54}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Software Engineering, International Conference on TI - Mining Security-Sensitive Operations in Legacy Code Using Concept Analysis SN - 0270-5257 SP458 EP467 A1 - Vinod Ganapathy, A1 - David King, A1 - Trent Jaeger, A1 - Somesh Jha, PY - 2007 KW - null VL - 0 JA - Software Engineering, International Conference on ER -

Vinod Ganapathy, University of Wisconsin, USA

David King, Pennsylvania State University, USA

Trent Jaeger, Pennsylvania State University, USA

Somesh Jha, University of Wisconsin, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICSE.2007.54

his paper presents an approach to statically retrofit legacy servers with mechanisms for authorization policy enforcement. The approach is based upon the obser- vation that security-sensitive operations performed by a server are characterized by idiomatic resource manipula- tions, called fingerprints. Candidate fingerprints are auto- matically mined by clustering resource manipulations using concept analysis. These fingerprints are then used to iden- tify security-sensitive operations performed by the server. Case studies with three real-world servers show that the approach can be used to identify security-sensitive opera- tions with a few hours of manual effort and modest domain knowledge.

Citation:

Vinod Ganapathy, David King, Trent Jaeger, Somesh Jha, "Mining Security-Sensitive Operations in Legacy Code Using Concept Analysis," icse, pp.458-467, 29th International Conference on Software Engineering (ICSE'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.