Author: "Fabio Massacci" - Searchworks@Jio Institute Digital Library Search Results

Your search keyword '"Fabio Massacci"' showing total 585 results

Start Over Author "Fabio Massacci"

585 results on '"Fabio Massacci"'

101. A Convolutional Transformation Network for Malware Classification.

Author: Duc-Ly Vu, Trong-Kha Nguyen, Tam V. Nguyen 0002, Tu N. Nguyen 0001, Fabio Massacci, and Phu H. Phung
Published: 2019

102. Vuln4Real: A Methodology for Counting Actually Vulnerable Dependencies

Author: Henrik Plate, Ivan Pashchenko, Fabio Massacci, Antonino Sabetta, and Serena Elisa Ponta
Subjects: Java, Computer science, Libraries, 02 engineering and technology, Audit, Ecosystems, Software dependencies, Tools, Software, 020204 information systems, 0202 electrical engineering, electronic engineering, information engineering, Code (cryptography), Lagging, computer.programming_language, Free Open Source Software, business.industry, Industrial impact, 020207 software engineering, Mining Software Repositories, Open source software, Data science, Security, Vulnerable Dependency, business, computer, Dependency (project management)
Abstract: Vulnerable dependencies are a known problem in today's free open-source software ecosystems because FOSS libraries are highly interconnected, and developers do not always update their dependencies. Our paper proposes Vuln4Real, the methodology for counting actually vulnerable dependencies, that addresses the over-inflation problem of academic and industrial approaches for reporting vulnerable dependencies in FOSS software, and therefore, caters to the needs of industrial practice for correct allocation of development and audit resources. To understand the industrial impact of a more precise methodology, we considered the 500 most popular FOSS Java libraries used by SAP in its own software. Our analysis included 25767 distinct library instances in Maven. We found that the proposed methodology has visible impacts on both ecosystem view and the individual library developer view of the situation of software dependencies: Vuln4Real significantly reduces the number of false alerts for deployed code (dependencies wrongly flagged as vulnerable), provides meaningful insights on the exposure to third-parties (and hence vulnerabilities) of a library, and automatically predicts when dependency maintenance starts lagging, so it may not receive updates for arising issues.
Published: 2022
Full Text: View/download PDF

103. An automatic method for assessing the versions affected by a vulnerability.

Author: Viet Hung Nguyen, Stanislav Dashevskyi, and Fabio Massacci
Published: 2016
Full Text: View/download PDF

104. Action, Inaction, Trust, and Cybersecurity's Common Property Problem.

Author: Karen Elliott, Fabio Massacci, and Julian Williams
Published: 2016
Full Text: View/download PDF

105. Economic Impacts of Rules- versus Risk-Based Cybersecurity Regulations for Critical Infrastructure Providers.

Author: Fabio Massacci, Raminder S. Ruprai, Matthew Collinson, and Julian Williams
Published: 2016
Full Text: View/download PDF

106. Then and Now: On the Maturity of the Cybercrime Markets The Lesson That Black-Hat Marketeers Learned.

Author: Luca Allodi, Marco Corradin, and Fabio Massacci
Published: 2016
Full Text: View/download PDF

107. Security triage: an industrial case study on the effectiveness of a lean methodology to identify security requirements.

Author: Matteo Giacalone, Federica Paci, Rocco Mammoliti, Rodolfo Perugino, Fabio Massacci, and Claudio Selli
Published: 2014
Full Text: View/download PDF

108. An Approach for Decision Support on the Uncertainty in Feature Model Evolution.

Author: Le Minh Sang Tran and Fabio Massacci
Published: 2014
Full Text: View/download PDF

109. An experiment on comparing textual vs. visual industrial methods for security risk assessment.

Author: Katsiaryna Labunets, Federica Paci, Fabio Massacci, and Raminder S. Ruprai
Published: 2014
Full Text: View/download PDF

110. Programmable enforcement framework of information flow policies.

Author: Minh Ngo and Fabio Massacci
Published: 2014

111. An Empirical Study of the Technology Transfer Potential of EU Security and Trust R&D Projects.

Author: Martina de Gramatica, Fabio Massacci, and Olga Gadyatskaya
Published: 2014
Full Text: View/download PDF

112. NodeSentry: least-privilege library integration for server-side JavaScript.

Author: Willem De Groef, Fabio Massacci, and Frank Piessens
Published: 2014
Full Text: View/download PDF

113. A Relative Cost-Benefit Approach for Evaluating Alternative Airport Security Policies.

Author: Woohyun Shim, Fabio Massacci, Alessandra Tedeschi, and Alessandro Pollini
Published: 2014
Full Text: View/download PDF

114. EMFASE - An Empirical Framework for Security Design and Economic Trade-off.

Author: Fabio Massacci, Federica Paci, Bjørnar Solhaug, and Alessandra Tedeschi
Published: 2014
Full Text: View/download PDF

115. Empirical Assessment of Security Requirements and Architecture: Lessons Learned.

Author: Riccardo Scandariato, Federica Paci, Le Minh Sang Tran, Katsiaryna Labunets, Koen Yskout, Fabio Massacci, and Wouter Joosen
Published: 2014
Full Text: View/download PDF

116. An Experimental Comparison of Two Risk-Based Security Methods.

Author: Katsiaryna Labunets, Fabio Massacci, Federica Paci, and Le Minh Sang Tran
Published: 2013
Full Text: View/download PDF

117. Anatomy of Exploit Kits - Preliminary Analysis of Exploit Kits as Software Artefacts.

Author: Vadim Kotov and Fabio Massacci
Published: 2013
Full Text: View/download PDF

118. UNICORN: A Tool for Modeling and Reasoning on the Uncertainty of Requirements Evolution.

Author: Le Minh Sang Tran and Fabio Massacci
Published: 2013

119. Quantitative Assessment of Risk Reduction with Cybercrime Black Market Monitoring.

Author: Luca Allodi, Woohyun Shim, and Fabio Massacci
Published: 2013
Full Text: View/download PDF

120. Evaluation of Airport Security Training Programs: Perspectives and Issues.

Author: Woohyun Shim, Fabio Massacci, Martina de Gramatica, Alessandra Tedeschi, and Alessandro Pollini
Published: 2013
Full Text: View/download PDF

121. The (un)reliability of NVD vulnerable versions data: an empirical experiment on Google Chrome vulnerabilities.

Author: Viet Hung Nguyen and Fabio Massacci
Published: 2013
Full Text: View/download PDF

122. How to Select a Security Requirements Method? A Comparative Study with Students and Practitioners.

Author: Fabio Massacci and Federica Paci
Published: 2012
Full Text: View/download PDF

123. An Idea of an Independent Validation of Vulnerability Discovery Models.

Author: Viet Hung Nguyen and Fabio Massacci
Published: 2012
Full Text: View/download PDF

124. Crime Pays If You Are Just an Average Hacker.

Author: Woohyun Shim, Luca Allodi, and Fabio Massacci
Published: 2012
Full Text: View/download PDF

125. Assessing a requirements evolution approach: Empirical studies in the Air Traffic Management domain.

Author: Fabio Massacci, Deepa Nagaraj, Federica Paci, Le Minh Sang Tran, and Alessandra Tedeschi
Published: 2012
Full Text: View/download PDF

126. Security-by-Contract for the OSGi Platform.

Author: Olga Gadyatskaya, Fabio Massacci, and Anton Philippov
Published: 2012
Full Text: View/download PDF

127. Managing Evolution by Orchestrating Requirements and Testing Engineering Processes.

Author: Federica Paci, Fabio Massacci, Fabrice Bouquet, and Stephane Debricon
Published: 2012
Full Text: View/download PDF

128. Controlling Application Interactions on the Novel Smart Cards with Security-by-Contract.

Author: Olga Gadyatskaya and Fabio Massacci
Published: 2012
Full Text: View/download PDF

129. A preliminary analysis of vulnerability scores for attacks in wild: the ekits and sym datasets.

Author: Luca Allodi and Fabio Massacci
Published: 2012
Full Text: View/download PDF

130. Consolidating Cybersecurity in Europe: A Case Study on Job Profiles Assessment (Dataset)

Author: Carlos Esteban Budde, Anni Karinsalo, Silvia Vidor, Jarno Salonen, and Fabio Massacci
Published: 2023
Full Text: View/download PDF

131. Orchestrating Security and System Engineering for Evolving Systems - (Invited Paper).

Author: Fabio Massacci, Fabrice Bouquet, Elizabeta Fourneret, Jan Jürjens, Mass Soldal Lund, Sébastien Madelénat, Jan Tobias Mühlberg, Federica Paci, Stéphane Paul, Frank Piessens, Bjørnar Solhaug, and Sven Wenzel
Published: 2011
Full Text: View/download PDF

132. Predictability of Enforcement.

Author: Nataliia Bielova and Fabio Massacci
Published: 2011
Full Text: View/download PDF

133. After-Life Vulnerabilities: A Study on Firefox Evolution, Its Vulnerabilities, and Fixes.

Author: Fabio Massacci, Stephan Neuhaus, and Viet Hung Nguyen
Published: 2011
Full Text: View/download PDF

134. Computer Aided Threat Identification.

Author: Yudistira Asnar, Tong Li 0001, Fabio Massacci, and Federica Paci
Published: 2011
Full Text: View/download PDF

135. Engineering Secure Future Internet Services.

Author: Wouter Joosen, Javier López 0001, Fabio Martinelli, and Fabio Massacci
Published: 2011
Full Text: View/download PDF

136. A Tool for Managing Evolving Security Requirements.

Author: Gábor Bergmann, Fabio Massacci, Federica Paci, Thein Than Tun, Dániel Varró, and Yijun Yu
Published: 2011
Full Text: View/download PDF