Search

Your search keyword '"Fabio Massacci"' showing total 479 results
Start Over Author "Fabio Massacci"

Refine your results

more »

more »

more »

more »
479 results on '"Fabio Massacci"'

451. The Seconomics (Security-Economics) Vulnerabilities of Decentralized Autonomous Organizations

Author

Jing Nie, Chan Nam Ngo, Daniele Venturi, Julian Williams, Fabio Massacci, Stajano, F., Anderson, J., Christianson, B., and Matyáš, V.

Subjects
Seconomics vulnerabilities, Property (philosophy), business.industry, Computer science, Computer Science (all), 020207 software engineering, 02 engineering and technology, Cryptographic protocol, Computer security, computer.software_genre, Security protocols, Theoretical Computer Science, FinTech, Decentralized Autonomous Organizations, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, business, computer, Futures contract, Financial services, Anonymity
Abstract

Traditionally, security and economics functionalities in IT financial services and protocols (FinTech) have been perceived as separate objectives. We argue that keeping them separate is a bad idea for FinTech “Decentralized Autonomous Organizations” (DAOs). In fact, security and economics are one for DAOs: we show that the failure of a security property, e.g. anonymity, can destroy a DAOs because economic attacks can be tailgated to security attacks. This is illustrated by the examples of “TheDAO” (built on the Ethereum platform) and the DAOed version of a Futures Exchange. We claim that security and economics vulnerabilities, which we named seconomics vulnerabilities, are indeed new “beasts” to be reckoned with.

458. Please hold on: more time = more patches? Automated program repair as anytime algorithms

Author

Ivan Pashchenko, Duc-Ly Vu, Fabio Massacci, Computer Systems, and Network Institute

Subjects
Focus (computing), Anytime Algorithms, Software bug, Computer science, Empirical Software Engineering, media_common.quotation_subject, Automated Program Repair, Quality (business), Algorithm, Maintenance engineering, media_common
Abstract

Current evaluations of automatic program repair (APR) techniques focus on tools' effectiveness, while little is known about the practical aspects of using APR tools, such as how long one should wait for a tool to generate a bug fix. In this work, we empirically study whether APR tools are any time algorithms (e.g., the more time they have, the more fixes they generate, so it makes sense to trade off longer time for better quality). Our preliminary experiment shows that the amount of plausible patches, given exponentially greater time, only increases linearly or not at all.

Full Text
View/download PDF

459. Extending Security-by-Contract with Quantitative Trust on Mobile Devices

Author

Aliaksandr Lazouski, Gabriele Costa, Fabio Martinelli, Fabio Massacci, Ilaria Matteucci, Nicola Dragoni, Briot, Brigitte, Emergent Connectors for Eternal Software Intensive Networked Systems - CONNECT - - EC:FP7:ICT2009-02-01 - 2012-11-30 - 231167 - VALID, Dipartimento di Informatica [Pisa], University of Pisa - Università di Pisa, Department of Informatics and Mathematical Modelling [Lyngby] (IMM), Danmarks Tekniske Universitet = Technical University of Denmark (DTU), Istituto di Informatica e Telematica (IIT-CNR), National Research Council of Italy | Consiglio Nazionale delle Ricerche (CNR), Dipartimento di Ingegneria e Scienza dell'Informazione, Università degli Studi di Trento (UNITN), CONNECT, European Project: 231167,EC:FP7:ICT,FP7-ICT-2007-3,CONNECT(2009), and Grousset, Emmanuelle

Subjects
021110 strategic, defence & security studies, Information privacy, Computer science, business.industry, [INFO.INFO-SE] Computer Science [cs]/Software Engineering [cs.SE], 0211 other engineering and technologies, Mobile computing, C.2 COMPUTER-COMMUNICATION NETWORKS, Contract management, [INFO.INFO-SE]Computer Science [cs]/Software Engineering [cs.SE], 02 engineering and technology, Trust, Security policy, Computer security, computer.software_genre, Security, 0202 electrical engineering, electronic engineering, information engineering, Trust management (information system), 020201 artificial intelligence & image processing, Mobile telephony, Architecture, business, Mobile device, computer
Abstract

International audience; Security-by-Contract (S×C) is a novel paradigm providing security assurances for mobile applications. In this work, we present an extension of S×C enriched with an automatic trust management infrastructure. Indeed, we enhance the already existing architecture by adding new modules and configurations for contracts managing. At deploy-time, our system decides the run-time configuration depending on the credentials of the contract provider. Roughly, the run-time environment can both enforce a security policy and monitor the declared contract. According to the actual behaviour of the running program our architecture updates the trust level associated with the contract provider. The main advantage of this method is an automatic management of the level of trust of software and contract releasers.

462. Modeling Security Requirements through ownership, permission and delegation

Author

Fabio Massacci, John Mylopoulos, Paolo Giorgini, Nicola Zannone, and Computer Systems

Subjects
QA075 Electronic computers. Computer science, Delegation, Computer science, media_common.quotation_subject, Computer security model, Computer security, computer.software_genre, Security information and event management, Security testing, Security engineering, Security service, Software security assurance, Security through obscurity, Connected World, computer, media_common
Abstract

Security Requirements Engineering is emerging as a branch of Software Engineering, spurred by the realization that security must be dealt with early on during the requirements phase. Methodologies in this field are challenging, as they must take into account subtle notions such as trust (or lack thereof), delegation, and permission; they must also model entire organizations and not only systems-to-be. In our previous work we introduced Secure Tropos, a formal framework for modeling and analyzing security requirements. Secure Tropos is founded on three main notions: ownership, trust, and delegation. In this paper we refine Secure Tropos introducing the notions of at-least delegation and trust of execution; also, at-most delegation and trust of permission. We also propose monitoring as a security design pattern intended to overcome the problem of lack of trust between actors. The paper presents a semantics for these notions, and describes an implemented formal reasoning tool based on Datalog.

464. Secure Software Development in the Era of Fluid Multi-party Open Software and Services

Author

Antonino Sabetta, Ivan Pashchenko, Fabio Massacci, Riccardo Scandariato, Computer Systems, and Network Institute

Subjects
FOS: Computer and information sciences, Entire population, Information privacy, vision, software security, D.2.0, business.industry, Software development, Computer security, computer.software_genre, Open software, Software Engineering (cs.SE), Computer Science - Software Engineering, D.2.13, open source software, Software, SDG 17 - Partnerships for the Goals, Software security assurance, Component-based software engineering, Scalability, business, computer
Abstract

Pushed by market forces, software development has become fast-paced. As a consequence, modern development projects are assembled from 3rd-party components. Security & privacy assurance techniques once designed for large, controlled updates over months or years, must now cope with small, continuous changes taking place within a week, and happening in sub-components that are controlled by third-party developers one might not even know they existed. In this paper, we aim to provide an overview of the current software security approaches and evaluate their appropriateness in the face of the changed nature in software development. Software security assurance could benefit by switching from a process-based to an artefact-based approach. Further, security evaluation might need to be more incremental, automated and decentralized. We believe this can be achieved by supporting mechanisms for lightweight and scalable screenings that are applicable to the entire population of software components albeit there might be a price to pay., 7 pages, 1 figure, to be published in Proceedings of International Conference on Software Engineering - New Ideas and Emerging Results

Full Text
View/download PDF

467. Maintaining privacy on derived objects

Author

Duminda Wijesekera, Sushil Jajodia, Fabio Massacci, and Nicola Zannone

Subjects
Data processing, Information privacy, business.industry, Computer science, Control (management), Access control, Object (computer science), Computer security, computer.software_genre, Order (business), Data Protection Act 1998, Information flow (information theory), business, computer
Abstract

Protecting privacy means to ensure users that access to their personal data complies with their preferences. However, information can be manipulated in order to derive new objects that may disclose part of the original information. Therefore, control of information flow is necessary for guaranteeing privacy protection since users should know and control not only who access their personal data, but also who access information derived from their data. Actually, current approaches for access control do not provide support for managing propagation of information and for representing user preferences.This paper proposes to extend the Flexible Authorization Framework (FAF) in order to automatically verify whether a subject is entitled to process personal data and derive the authorizations associated with the outcome of data processing. In order to control information flow, users may specify the range of authorizations that can be associated with objects derived from their data. The framework guarantees that every "valid" derived object does not disclose more information than users want and preserves the permissions that users want to maintain. To make the discussion more concrete, we illustrate the proposal with a bank case study.

469. Goal-Equivalent Secure Business Process Re-engineering

Author

Lopez, Hugo A., Fabio Massacci, Zannone, Nicola, Dinitto, E., and Ripeanu, M.

Subjects
Business process management, Business process discovery, Business Process Model and Notation, Business requirements, Process management, business.industry, Artifact-centric business process model, Computer science, Business rule, Business process, Business process modeling, business
Abstract

The introduction of information technologies in health care systems often requires to re-engineer the business processes used to deliver care. Obviously, the new and re-engineered processes are observationally different and thus we cannot use existing model-based techniques to argue that they are somehow “equivalent”. In this paper we propose a method for passing from SI*, a modeling language for capturing and modeling functional, security, and trust organizational and system requirements, to business process specifications and vice versa. In particular, starting from an old secure business process, we reconstruct the functional and security requirements at organizational level that such a business process was supposed to meet (including the trust relations that existed among the members of the organization). To ensure that the re-engineered business process meets the elicited requirements, we employ a notion of equivalence based on goal-equivalence. Basically, we verify if the execution of the business process, described in terms of the trace it generates, satisfies the organizational model. We motivate and illustrate the method with an e-health case study.

471. Supporting Software Evolution for Open Smart Cards by Security-by-Contract

Author

Fabio Massacci, Olga Gadyatskya, and Nicola Dragoni

Subjects
Computer science, business.industry, Operating system, Smart card, computer.software_genre, business, computer, Software evolution
Abstract

If all applications could be loaded at the start this would boil down to information flow analysis for which many solutions exist, but this is precisely what we want to overcome. When applications are not known in advance and can be updated asynchronously and possibly without connection to trusted third parties, we must preserve the security policies of the various owners of the applets during such autonomous evolution. This chapter illustrates the extension of the Security-by-Contract approach from mobile phones to smart cards: Security-by-Contract is based on the loading time application certification on the card that will enable the card to make autonomous decisions on application and policy updates while ensuring the compliance of every change of the platform with the security policy of each application’s owner.

472. Modeling social and individual trust in requirements engineering methodologies

Author

Giorgini, P., Fabio Massacci, Mylopoulos, J., Zannone, N., Hermann, P., Issarny, V., and Shiu, S.

Subjects
Structure (mathematical logic), Social psychology (sociology), Process management, Requirements engineering, Computer science, business.industry, Information technology, Formal methods, Computer security, computer.software_genre, Datalog, QA076 Computer software, Information system, Computer-aided software engineering, business, computer, computer.programming_language
Abstract

When we model and analyze trust in organizations or information systems we have to take into account two different levels of analysis: social and individual. Social levels define the structure of organizations, whereas individual levels focus on individual agents. This is particularly important when capturing security requirements where a “normally” trusted organizational role can be played by an untrusted individual.Our goal is to model and analyze the two levels finding the link between them and supporting the automatic detection of conflicts that can come up when agents play roles in the organization. We also propose a formal framework that allows for the automatic verification of security requirements between the two levels by using Datalog and has been implemented in CASE tool.

474. Selecting a Secure Cloud Provider—An Empirical Study and Multi Criteria Approach

Author

Jan Jürjens, Federica Paci, Fabio Massacci, Sebastian Pape, and Publica

Subjects
cloud service provider, Computer science, security assessment, Analytic hierarchy process, Cloud computing, 02 engineering and technology, Set (abstract data type), Empirical research, ddc:330, 0202 electrical engineering, electronic engineering, information engineering, Selection (linguistics), security self-assessment, risk assessment, Security self-assessment, Risk assessment, lcsh:T58.5-58.64, business.industry, lcsh:Information technology, Rank (computer programming), Cloud service provider, Security assessment, 020206 networking & telecommunications, 020207 software engineering, Data science, Security controls, Ranking, ddc:004, business, Information Systems
Abstract

Security has become one of the primary factors that cloud customers consider when they select a cloud provider for migrating their data and applications into the Cloud. To this end, the Cloud Security Alliance (CSA) has provided the Consensus Assessment Questionnaire (CAIQ), which consists of a set of questions that providers should answer to document which security controls their cloud offerings support. In this paper, we adopted an empirical approach to investigate whether the CAIQ facilitates the comparison and ranking of the security offered by competitive cloud providers. We conducted an empirical study to investigate if comparing and ranking the security posture of a cloud provider based on CAIQ&rsquo, s answers is feasible in practice. Since the study revealed that manually comparing and ranking cloud providers based on the CAIQ is too time-consuming, we designed an approach that semi-automates the selection of cloud providers based on CAIQ. The approach uses the providers&rsquo, answers to the CAIQ to assign a value to the different security capabilities of cloud providers. Tenants have to prioritize their security requirements. With that input, our approach uses an Analytical Hierarchy Process (AHP) to rank the providers&rsquo, security based on their capabilities and the tenants&rsquo, requirements. Our implementation shows that this approach is computationally feasible and once the providers&rsquo, answers to the CAIQ are assessed, they can be used for multiple CSP selections. To the best of our knowledge this is the first approach for cloud provider selection that provides a way to assess the security posture of a cloud provider in practice.

Full Text
View/download PDF

475. Joint Proceedings of REFSQ-2017 Workshops, Doctoral Symposium, Research Method Track, and Poster Track co-located with the 22nd International Conference on Requirements Engineering: Foundation for Software Quality (REFSQ 2017), Essen, Germany, February 27, 2017.

Author

Eric Knauss, Angelo Susi, David Ameller, Daniel M. Berry, Fabiano Dalpiaz, Maya Daneva, Marian Daun, Oscar Dieste, Peter Forbrig, Eduard C. Groen, Andrea Herrmann 0001, Jennifer Horkoff, Fitsum Meshesha Kifetew, Marite Kirikova, Alessia Knauss, Patrick Maeder, Fabio Massacci, Cristina Palomares, Jolita Ralyté, Ahmed Seffah, Alberto Siena, and Bastian Tenbergen

Published
2017

Catalog

Books, media, physical & digital resources
See catalog results