Towards Automatic Risk Analysis and Mitigation of Software Applications
REGANO, LEONARDO;
2016-01-01
Abstract
This paper proposes a novel semi-automatic risk analysis approach that not only identifies the threats against the assets in a software application, but it is also able to quantify their risks and to suggests the software protections to mitigate them. Built on a formal model of the software, attacks, protections and their relationships, our implementation has shown promising performance on real world applications. This work represents a first step towards a user-friendly expert system for the protection of software applications.Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.