Authorization is a key aspect in secure software development of multi-user applications. Authorization is often enforced in the program code with enforcement statements. Since authorization is present in numerous plac...
详细信息
ISBN:
(纸本)9783642191244
Authorization is a key aspect in secure software development of multi-user applications. Authorization is often enforced in the program code with enforcement statements. Since authorization is present in numerous places, defects in the enforcement are difficult to discover. One approach to this challenge is to improve the developer usability with regard to authorization. We analyze how software development is affected by authorization in a real-world case study and particularly focus on the loose-coupling properties of authorization frameworks that separate authorization policy from enforcement. We show that authorization is a significant aspect in software development and that the effort can be reduced through appropriate authorization frameworks. Lastly, we formulate advice on the design of enforcement APIs.
This paper describes our work exploring the suitability of formal specification methods for independent verification and validation (IV&V) of softwarespecifications for large, safety critical systems. An IV&V...
详细信息
ISBN:
(纸本)0818677406
This paper describes our work exploring the suitability of formal specification methods for independent verification and validation (IV&V) of softwarespecifications for large, safety critical systems. An IV&V contractor often has to perform rapid analysis on incomplete specifications with no control over how those specifications are represented. Lightweight formal methods show significant promise in this context, as they offer a way of uncovering major errors, without the burden of full proofs of correctness. We describe an experiment in the application of the method SCR to testing for consistency properties of a partial model of the requirements for Fault Detection Isolation and Recovery on the space station. We conclude that the insights gained from formalizing a specification is valuable, and it is the process of formalization, rather than the end product that is important. It was only necessary to build enough of the formal model to test the properties in which we were interested. Maintenance of fidelity between multiple representations of the same requirements (as they evolve) is still a problem, and deserves further study.
Pervasive computing applications must be engineered to provide unprecedented levels of flexibility in order to reconfigure and adapt in response to changes in computing resources and user requirements. To meet these c...
详细信息
ISBN:
(纸本)0769522998
Pervasive computing applications must be engineered to provide unprecedented levels of flexibility in order to reconfigure and adapt in response to changes in computing resources and user requirements. To meet these challenges, appropriate softwareengineering abstractions and infrastructure are required as a platform on which to build adaptive applications. In this paper we demonstrate the use of a disciplined, model-based approach to engineer a context-aware, Session Initiation Protocol (SIP) based communication application. This disciplined approach builds on our previously developed conceptual models and infrastructural components, which enable the description, acquisition, management and exploitation of arbitrary types of context and user preference information to enable adaptation to context changes.
Based on softwareengineering discipline, unit testing play significant rule in testing procedure to determine if the source code fit for use. A unit test is the smallest testable part of an application. In basic lear...
详细信息
A software reliability model based on nonhomogeneous Poisson process (NHPP) was proposed in Schneidewind [1] in 1975. This model seems to be the first of this kind. Since then, many other NHPP models have been suggest...
详细信息
The Manipulator of the Tian Gong Space Station has 7 joints. In order to complete the function and task of the manipulator, the rotation angle of each joint is greater than ±270°, which is much larger than t...
详细信息
This paper deals with the application of a spatial redundancy reduction algorithm to slow scan TV images acoustically transmitted from an untethered submersible. The goal of this research effort is to implement a band...
详细信息
GPS positioning and timing are more and more essential to our daily life and they are widely used in our daily life, such as radio and television, land, sea and air navigation, engineering surveying, geodesy and so on...
详细信息
ISBN:
(纸本)9780769538594
GPS positioning and timing are more and more essential to our daily life and they are widely used in our daily life, such as radio and television, land, sea and air navigation, engineering surveying, geodesy and so on. This paper mainly achieved the simulation of GPS software receiver's positioning and timing function. Through NovAtel's Superstar-II receiver, the data was collected and then decoded based on matlab. Next, the parameters needed by positioning calculation and timing are extracted. And in accordance with the corresponding algorithm there is a completion for GPS positioning and timing module's simulation. Finally there is a error analysis for the results of positioning calculation and timing. And according to the experimental results, the positioning and timing accuracy can meet the basic requirement.
AADL supports standard accurate modeling of embedded systems and has been widely used in the embedded field. However, as a new modeling language, modeling and analysis tools of AADL are not mature enough. In the field...
详细信息
Formulating the practical schedule planning for the software project, is the basis of orderly carrying out the software project, is the key of project to success. In this paper, study the application of using the crit...
详细信息
暂无评论