基本情報(Profile)
最終更新日(Last Updated)2024/03/02WANG PINGYAN
PINGYAN WANG
WANG PINGYAN
2024/02
広島大学(Hiroshima University)
先進理工系科学研究科博士課程後期先進理工系科学専攻情報科学プログラム(Graduate School of Advanced Science and Engineering(Doctoral Course) Division of Advanced Science and Engineering Informatics and Data Science Program)
研究活動(Research Activities)
- 論文(Published Papers)
-
2023/11 Detecting security vulnerabilities with vulnerability nets
Journal of Systems and Software, 208 , Peer-Reviewed , https://doi.org/10.1016/j.jss.2023.1119022023/06 Detecting Security Vulnerabilities in Human-Machine Pair Programming with Pointer Analysis
27th International Conference on Engineering of Complex Computer Systems , Peer-Reviewed , 10.1109/ICECCS59891.2023.000272022 A Framework for Modeling and Detecting Security Vulnerabilities in Human-Machine Pair Programming / A Framework for Modeling and Detecting Security Vulnerabilities in Human-Machine Pair Programming
JOURNAL OF INTERNET TECHNOLOGY / JOURNAL OF INTERNET TECHNOLOGY, 23(5), 1129-1138 , Peer-Reviewed , 10.53106/1607926420220923050211607-9264 概要はこちら(Description) To detect and mitigate security vulnerabilities early in the coding phase is an important strategy for secure software development. Existing solutions typically focus on finding certain vulnerabilities in certain computer systems without giving a systematic way of handling different types of vulnerabilities. In this paper, we present a framework for systematically modeling and detecting potential security vulnerabilities during the construction of programs using a particular programming paradigm known as Human-Machine Pair Programming. The framework provides designers with a general way of modeling a class of attacks in detail, and shows how programmers can discover and fix a vulnerability in a timely manner. Specifically, our framework advocates three primary steps: (1) generating an attack tree to model a given security threat, (2) constructing vulnerability-matching patterns based on the result of the attack tree analysis, and (3) detecting corresponding vulnerabilities based on the patterns during the program construction. We also present a case study to demonstrate how it works in practice. To detect and mitigate security vulnerabilities early in the coding phase is an important strategy for secure software development. Existing solutions typically focus on finding certain vulnerabilities in certain computer systems without giving a systematic way of handling different types of vulnerabilities. In this paper, we present a framework for systematically modeling and detecting potential security vulnerabilities during the construction of programs using a particular programming paradigm known as Human-Machine Pair Programming. The framework provides designers with a general way of modeling a class of attacks in detail, and shows how programmers can discover and fix a vulnerability in a timely manner. Specifically, our framework advocates three primary steps: (1) generating an attack tree to model a given security threat, (2) constructing vulnerability-matching patterns based on the result of the attack tree analysis, and (3) detecting corresponding vulnerabilities based on the patterns during the program construction. We also present a case study to demonstrate how it works in practice.
- 講演・口頭発表等(Lecture/Oral Presentation)
-
2023/06/14-2023/06/16 Detecting Security Vulnerabilities in Human-Machine Pair Programming with Pointer Analysis, Pingyan Wang, The 27th International Conference on Engineering of Complex Computer Systems (ICECCS 2023) , invited Institut National Polytechnique de Toulouse (INPT), Toulouse