An Approach to Secure Legacy Software Systems

Stefanie Jasser; Stefanie Jasser; Jonas Kelbert

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

An Approach to Secure Legacy Software Systems

Topics: Data and Software Security; Security; Software Security Assurance; Vulnerability Analysis and Countermeasures

In Proceedings of the 6th International Conference on Information Systems Security and Privacy ICISSP - Volume 1, 299-309, 2020 , Valletta, Malta

Authors: Stefanie Jasser ^{1

;

2} and Jonas Kelbert ¹

Affiliations: ¹ akquinet AG, Hamburg, Germany ; ² Department of Informatics, University of Hamburg, Hamburg, Germany

Keyword(s): Software Security, Code Cleansing, Security Refactoring, Vulnerability Mitigation, Flaw Prioritization.

Abstract: When analyzing legacy software for security huge result lists may be generated. These lists may contain more than 1,000,000 potential vulnerabilities. In this paper, we propose an approach to secure such legacy systems: we define a process to systematically assess and process potential vulnerabilities using contextual system knowledge. The process is complemented with tool-supported technical measures to actually mitigate the vulnerabilities and code injection. The approach allows to efficiently repair vulnerabilities in legacy systems while ensuring system availability for critical systems using a safe go-live technique. We evaluate our approach by an industrial case study to show the applicability and flexibility of our code security cleansing approach.

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.188.152.162

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Jasser, S. and Kelbert, J. (2020). An Approach to Secure Legacy Software Systems. In Proceedings of the 6th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-399-5; ISSN 2184-4356, SciTePress, pages 299-309. DOI: 10.5220/0008902802990309

@conference{icissp20,
author={Stefanie Jasser. and Jonas Kelbert.},
title={An Approach to Secure Legacy Software Systems},
booktitle={Proceedings of the 6th International Conference on Information Systems Security and Privacy - ICISSP},
year={2020},
pages={299-309},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0008902802990309},
isbn={978-989-758-399-5},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 6th International Conference on Information Systems Security and Privacy - ICISSP
TI - An Approach to Secure Legacy Software Systems
SN - 978-989-758-399-5
IS - 2184-4356
AU - Jasser, S.
AU - Kelbert, J.
PY - 2020
SP - 299
EP - 309
DO - 10.5220/0008902802990309
PB - SciTePress