Title :
Component security - issues and an approach
Author_Institution :
Inst. for Comput. Res., London South Bank Univ., UK
Abstract :
Security vulnerabilities posed by third-party software components in component based development (CBD) is a serious impediment to its adoption in areas that offer great economic potential, particularly in areas such as embedded software and large-scale enterprise software. They raise questions about reliability and integrity of components, as well as the risks posed by any malicious code. This paper is a discussion of factors that affect component security and ways of assuring component security. Using a simplified model of sendmail, it also outlines a formal framework that fits in with communicating sequential processes (CSP) for modelling and analysis of component security.
Keywords :
communicating sequential processes; object-oriented programming; safety-critical software; security of data; software reusability; CSP; communicating sequential processes; component based development; component security; embedded software; large-scale enterprise software; malicious code; security vulnerability; software integrity; software reliability; third-party software; Application software; Data security; Embedded computing; Embedded software; Impedance; Information security; Large-scale systems; Open source software; Operating systems; Production;
Conference_Titel :
Computer Software and Applications Conference, 2005. COMPSAC 2005. 29th Annual International
Print_ISBN :
0-7695-2413-3
DOI :
10.1109/COMPSAC.2005.58
