SCOPUS 정보 검색 플랫폼

Proceedings - International Symposium on Software Reliability Engineering, ISSRE

Volumn , Issue , 2009, Pages 129-135

Looking at web security vulnerabilities from the programming language perspective: A field study

(4) Seixas, Nuno a Fonseca, José a Vieira, Marco a Madeira, Henrique a

a UNIVERSITY OF COIMBRA (Portugal)

Author keywords

Field study; Programming languages; Security vulnerabilities; Software faults

Indexed keywords

FAULT TYPES; FIELD STUDIES; PROGRAMMING LANGUAGE; SECURITY PATCHES; SECURITY VULNERABILITIES; SOFTWARE FAULT; SQL INJECTION; TYPE SYSTEMS; WEB APPLICATION; WEB SECURITY;

ADA (PROGRAMMING LANGUAGE); C (PROGRAMMING LANGUAGE); COMPUTER SOFTWARE SELECTION AND EVALUATION; LINGUISTICS; QUALITY ASSURANCE; QUERY LANGUAGES; SECURITY OF DATA; SOFTWARE RELIABILITY; WORLD WIDE WEB;

JAVA PROGRAMMING LANGUAGE;

EID: 77951455398 PISSN: 10719458 EISSN: None Source Type: Conference Proceeding
DOI: 10.1109/ISSRE.2009.30 Document Type: Conference Paper

Times cited : (20)

References (28)

1
- 53349172210
- Mapping software faults with web security vulnerabilities
- Anchorage, Alaska, USA, June
- Fonseca, J., Vieira, M.: "Mapping Software Faults with Web Security Vulnerabilities", IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2008), Anchorage, Alaska, USA, June, 2008
- (2008) IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2008)
- Fonseca, J.¹ Vieira, M.²

2
- 31744452097
- OWASP top 10
- July
- Stock, A., Williams, J., Wichers, D., "OWASP top 10", OWASP Foundation, July, 2007
- (2007) OWASP Foundation
- Stock, A.¹ Williams, J.² Wichers, D.³

3
- 3042602729
- May you have a strong (-typed) foundation, why strong-typed programming languages do matter
- New Orleans, LA, USA, April 26-May 1
- Tomatis, N., Brega, R., Rivera, G., Siegwart, R., "May you have a strong (-typed) foundation, Why strong-typed programming languages do matter", IEEE International Conference on Robotics and Automation, New Orleans, LA, USA, April 26-May 1, 2004
- (2004) IEEE International Conference on Robotics and Automation
- Tomatis, N.¹ Brega, R.² Rivera, G.³ Siegwart, R.⁴

4
- 77951492102
- December
- Open Source Software in Java, December, 2008, http://javasource.net
- (2008)

5
- 77951472815
- December
- Security Focus, December, 2008, http://www.securityfocus.com
- (2008)

6
- 77951479890
- December
- OSVDB: The Open Source Vulnerability Database, December, 2008, http://osvdb.org
- (2008)

7
- 77951455910
- December
- Secunia, December, 2008, http://secunia.com
- (2008)

8
- 77951430996
- December
- Open Source Software in C#, December, 2008, http://csharpsource.net
- (2008)

9
- 77951439923
- December
- JForum, December, 2008, http://www.jforum.net
- (2008)

10
- 77951461689
- December 10th
- OpenCMS from Alkacon Software, December 10th, 2008, http://www.opencms. org
- (2008)

11
- 77951489316
- December
- BlojSom, December, 2008, http://wiki.blojsom.com/wiki/display/blojsom3/ About+blojsom
- (2008)

12
- 77951435128
- December
- The Roller WebLogger, December, 2008, http://rollerweblogger.org/project
- (2008)

13
- 77951437484
- December
- JSPWiki, December, 2008, http://www.jspwiki.org
- (2008)

14
- 77951481963
- December
- SubText, December, 2008, http://subtextproject.com
- (2008)

15
- 77951485413
- December
- DotNetNuke, December, 2008, http://www.dotnetnuke.com
- (2008)

16
- 77951453543
- December
- YetAnotherForum, December, 2008, http://www.yetanotherforum.net
- (2008)

17
- 77951470265
- December
- BugTracker .NET, December, 2008, http://www.ifdefined.com/bugtrackernet. html
- (2008)

18
- 77951451749
- December
- Deki Wiki, December, 2008, http://wiki.developer.mindtouch.com
- (2008)

19
- 77951446893
- December
- ScrewTurn Wiki, December, 2008, http://www.screwturn.eu/Default.aspx? AspxAutoDetectCookieSupport=1
- (2008)

20
- 53349119925
- Vulnerability type distributions in CVE
- Steve, C., Martin, R., " Vulnerability Type Distributions in CVE", Mitre report, May, 2007
- (2007) Mitre Report
- Steve, C.¹ Martin, R.²

21
- 77951429581
- December
- C# Coding Standards and Best Practices, December 2008, http://www.codeproject.com/KB/cs/c-coding-standards.aspx
- (2008)

22
- 77951428862
- December
- C# Coding Standards and Best Programming Practices, December 2008, http://www.dotnetspider.com/tutorials/BestPractices.aspx
- (2008)

23
- 34247134594
- A learning-based approach to the detection of SQL attacks
- Vienna, Austria, July
- Valeur, F., Mutz, D., Vigna, G.: "A Learning-Based Approach to the Detection of SQL Attacks", IEEE Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA 2005), Vienna, Austria, July, 2005
- (2005) IEEE Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA 2005)
- Valeur, F.¹ Mutz, D.² Vigna, G.³

24
- 53349127177
- Unforgivable vulnerabilities
- Christey, S., "Unforgivable Vulnerabilities", Black Hat Briefings, 2007
- (2007) Black Hat Briefings
- Christey, S.¹

25
- 53349152890
- Automatic detection of web application security flaws
- Zanero, S., Carettoni, L., Zanchetta, M., "Automatic Detection of Web Application Security Flaws", Black Hat Briefings, 2005
- (2005) Black Hat Briefings
- Zanero, S.¹ Carettoni, L.² Zanchetta, M.³

26
- 77951487291
- Conceptual model and architecture of MAFTIA
- David, P., Stroud, R., "Conceptual Model and Architecture of MAFTIA", LAAS-CNRS, 2003
- (2003) LAAS-CNRS
- David, P.¹ Stroud, R.²

27
- 78649992349
- Precise alias analysis for static detection of web application vulnerabilities
- Jovanovic, N., Kruegel, C., Kirda, E., "Precise Alias Analysis for Static Detection of Web Application Vulnerabilities", IEEE Symposium on Security and Privacy, 2006
- (2006) IEEE Symposium on Security and Privacy
- Jovanovic, N.¹ Kruegel, C.² Kirda, E.³

28
- 67649834042
- Static security analysis based on inputrelated software faults
- Kaiserslautern, Germany, March
- Nagy, C., Mancoridis, S., "Static security analysis based on inputrelated software faults", 13th European Conference on Software Maintenance and Reengineering (CSMR'09), Kaiserslautern, Germany, March, 2009
- (2009) 13th European Conference on Software Maintenance and Reengineering (CSMR'09)
- Nagy, C.¹ Mancoridis, S.²

* 이 정보는 Elsevier사의 SCOPUS DB에서 KISTI가 분석하여 추출한 것입니다.