发布求助
文献互助 智能选刊 最新文献

International Conference on Software Engineering Advances (ICSEA 2007)最新文献

筛选
英文 中文
S2D-ProM: A Strategy Oriented Process Model for Secure Software Development S2D-ProM:面向策略的安全软件开发过程模型
International Conference on Software Engineering Advances (ICSEA 2007) Pub Date : 2007-09-10 DOI: 10.1109/ICSEA.2007.59
Mehrez Essafi, L. L. Jilani, H. Ghézala
{"title":"S2D-ProM: A Strategy Oriented Process Model for Secure Software Development","authors":"Mehrez Essafi, L. L. Jilani, H. Ghézala","doi":"10.1109/ICSEA.2007.59","DOIUrl":"https://doi.org/10.1109/ICSEA.2007.59","url":null,"abstract":"Building secure software is about taking security into account during all phases of software development. This practice is missing in, widely used, traditional developments due to domain immaturity, newness of the field and process complexity. Software development includes two views, a product view and a process view. Product view defines what the product is, whereas process view describes how the product is developed. Here we are concerned with the process view. Modelling the process allows simulate and analyze a software development process, which can help developers better understand, manage and optimize the software development process. In this paper we present our approach S2D-ProM, for Secure Software Development Process Model, which is a strategy oriented process model. This latter, capture steps and strategies that are required for the development of secure software and provide a two level guidance. The first level guidance is strategic helping developers choosing one among several strategies. The second level guidance is tactical helping developers achieving their selection for producing secure software. The proposed process model is easily extensible and allows building customized processes adapted to context, developer's finalities and product state. This flexibility allows the environment evolving through time to support new securing strategies.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"30 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-09-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"116996396","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 22
A Modeling Framework for the Development of Provably Secure E-Commerce Applications 开发可证明安全的电子商务应用程序的建模框架
International Conference on Software Engineering Advances (ICSEA 2007) Pub Date : 2007-08-25 DOI: 10.1109/ICSEA.2007.7
Nina Moebius, Dominik Haneberg, W. Reif, G. Schellhorn
{"title":"A Modeling Framework for the Development of Provably Secure E-Commerce Applications","authors":"Nina Moebius, Dominik Haneberg, W. Reif, G. Schellhorn","doi":"10.1109/ICSEA.2007.7","DOIUrl":"https://doi.org/10.1109/ICSEA.2007.7","url":null,"abstract":"Developing security-critical applications is very difficult and the past has shown that many applications turned out to be erroneous after years of usage. For this reason it is desirable to have a sound methodology for developing security-critical e-commerce applications. We present an approach to model these applications with the Unified Modeling Language (UML) [1] extended by a UML profile to tailor our models to security applications. Our intent is to (semi-) automatically generate a formal specification suitable for verification as well as an implementation from the model. Therefore we offer a development method seamlessly integrating semi-formal and formal methods as well as the implementation. This is a significant advantage compared to other approaches not dealing with all aspects from abstract models down to code. Based on this approach we can prove security properties on the abstract protocol level as well as the correctness of the protocol implementation in Java with respect to the formal model using the refinement approach. In this paper we concentrate on the modeling with UML and some details regarding the transformation of this model into the formal specification. We illustrate our approach on an electronic payment system called Mondex [10]. Mondex has become famous for being the target of the first ITSEC evaluation of the highest level E6 which requires formal specification and verification.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"252 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"121054578","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 15
DEUCE : Separating Concerns in User Interfaces DEUCE:分离用户界面中的关注点
International Conference on Software Engineering Advances (ICSEA 2007) Pub Date : 2007-08-25 DOI: 10.1109/ICSEA.2007.28
Sofie Goderis, D. Deridder, Ellen Van Paesschen
{"title":"DEUCE : Separating Concerns in User Interfaces","authors":"Sofie Goderis, D. Deridder, Ellen Van Paesschen","doi":"10.1109/ICSEA.2007.28","DOIUrl":"https://doi.org/10.1109/ICSEA.2007.28","url":null,"abstract":"As current software systems evolve continuously, both the application and its user interface (UI) have to be adapted. However, UI code is often scattered through and entangled with the application code. In large and complex UIs, this tangling renders the implementation complex and hard to maintain. The Deuce framework (Declarative User Interface Concerns Extrication) intends to reduce the complexity of UI implementations by applying separation of concerns on three UI concerns: presentation logic, business and data logic, and connection logic. It does so by using a declarative meta-language (SOUL) on top of an object oriented language (Smalltalk) such that an adequate language is provided to describe the entire structure and behavior of the UI, as well as linking it with the application.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"17 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"116102922","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 2
Towards Trace Based Model Synthesis for Program Understanding and Test Automation 面向程序理解和测试自动化的基于跟踪的模型综合
International Conference on Software Engineering Advances (ICSEA 2007) Pub Date : 2007-08-25 DOI: 10.1109/ICSEA.2007.80
T. Kanstrén
{"title":"Towards Trace Based Model Synthesis for Program Understanding and Test Automation","authors":"T. Kanstrén","doi":"10.1109/ICSEA.2007.80","DOIUrl":"https://doi.org/10.1109/ICSEA.2007.80","url":null,"abstract":"Effective maintenance and evolution of complex, software intensive systems requires understanding how the system works and having tests available to verify the effects of changes. Understanding complex systems is difficult, and testability of these systems is often low due to design constraints, system complexity and long- term evolution. Thus understanding the system and adding new tests is difficult. Yet, especially in these cases, the understanding and tests are important to verify the system correctness over long-term evolution. This paper discusses synthesizing models from system traces and using these models to facilitate program understanding and test automation. Basing the models on execution traces allows generation of automated tests even for low testability systems. Generating and visualizing abstracted models facilitates program understanding, which helps in system maintenance.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"150 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"128661372","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 2
The Testing Process - A Decision Based Approach 测试过程-基于决策的方法
International Conference on Software Engineering Advances (ICSEA 2007) Pub Date : 2007-08-25 DOI: 10.1109/ICSEA.2007.75
L. Borner, Timea Illes-Seifert, B. Paech
{"title":"The Testing Process - A Decision Based Approach","authors":"L. Borner, Timea Illes-Seifert, B. Paech","doi":"10.1109/ICSEA.2007.75","DOIUrl":"https://doi.org/10.1109/ICSEA.2007.75","url":null,"abstract":"Software processes often focus on artifacts, activities and roles, treating decisions to be made during the software development process only implicitly. However, awareness of these decisions increases their quality by forcing the decision-makers to search for alternatives and to trade off between them. In this paper, we propose a decision hierarchy for the testing process. This hierarchy comprises all decisions made during testing and reflects dependencies between them. Additionally, we present the results of four case studies to which we applied this decision hierarchy.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"37 11","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"114026150","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 9
Home Network Service Programs described in a Rule-based Language 以基于规则的语言描述的家庭网络服务程序
International Conference on Software Engineering Advances (ICSEA 2007) Pub Date : 2007-08-25 DOI: 10.1109/ICSEA.2007.39
M. Shimokura, S. Nakanishi, T. Ohta
{"title":"Home Network Service Programs described in a Rule-based Language","authors":"M. Shimokura, S. Nakanishi, T. Ohta","doi":"10.1109/ICSEA.2007.39","DOIUrl":"https://doi.org/10.1109/ICSEA.2007.39","url":null,"abstract":"Rule-based languages allow programs to be easily described at a high and abstract level, however, they suffer from long execution times. A state transition model, one of a standard model for developing telecommunication services programs, can be used to simply described home network services. To reduce the complexity of development, this paper proposes a method for describing service programs using a rule-based language. In this paper the easy-of-use of this method for novice users is tested using a home network to control a robot toy.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"34 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"126452713","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 2
Encouraging Teamwork in an Undergraduate Software Engineering Course 在本科软件工程课程中鼓励团队合作
International Conference on Software Engineering Advances (ICSEA 2007) Pub Date : 2007-08-25 DOI: 10.1109/ICSEA.2007.31
Cynthia Y. Lester
{"title":"Encouraging Teamwork in an Undergraduate Software Engineering Course","authors":"Cynthia Y. Lester","doi":"10.1109/ICSEA.2007.31","DOIUrl":"https://doi.org/10.1109/ICSEA.2007.31","url":null,"abstract":"Students typically do not like to work in teams, especially computer science majors. Computer science is often perceived as an \"asocial\" discipline that does not foster teamwork, interactivity, or collaboration. Yet, teamwork and collaboration are the very characteristics that the workplace demands, particularly when designing and developing large scale software projects. Therefore, being able to effectively work in teams is an essential learning outcome for software engineering students and as educators, we must ensure that students not only possess technical skills, but soft skills as well. The goal of the research in progress was to create a collaborative learning environment that fostered teamwork and team learning for students enrolled in an undergraduate software engineering course. The paper summarizes how previous computing experience, background, and computer self-efficacy were used to create teams that represent those found in today's workplace. Implications and suggestions for future research are also provided.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"24 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"134121961","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 1
Improving the Integration of the Software Supply Chain via the Semantic Web 基于语义Web的软件供应链集成研究
International Conference on Software Engineering Advances (ICSEA 2007) Pub Date : 2007-08-25 DOI: 10.1109/ICSEA.2007.42
R. Oberhauser, Rainer Schmidt
{"title":"Improving the Integration of the Software Supply Chain via the Semantic Web","authors":"R. Oberhauser, Rainer Schmidt","doi":"10.1109/ICSEA.2007.42","DOIUrl":"https://doi.org/10.1109/ICSEA.2007.42","url":null,"abstract":"Supply chains are a significant concept for improving the cooperation of vendors and customers for material products. While the assembly of increasingly complex components in modern software development resembles a supply chain, classical supply chain management concepts are rarely applied. An interruption in the flow of information exists between the development/maintenance phases and operational phases, resulting in ignorance, inefficiencies, and suboptimal quality and support levels. One reason for this is the effort necessary to integrate the software lifecycle processes, coupled with the dispersion of information needed for execution of (semi-)automated software lifecycle workflows across semantically heterogeneous sources. Furthermore, the manual derivation of abstract IT (e.g., ITIL) and software processes into concrete processes and workflows results in low quality and inefficiencies. This paper describes an approach for improving the integration of software supply chains via the (semi- )automated realization of abstract software lifecycle processes and workflows in conjunction with semantic web technologies.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"10 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"131638772","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 16
Goal Sketching: Towards Agile Requirements Engineering 目标草图:走向敏捷需求工程
International Conference on Software Engineering Advances (ICSEA 2007) Pub Date : 2007-08-25 DOI: 10.1109/ICSEA.2007.36
K. Boness, R. Harrison
{"title":"Goal Sketching: Towards Agile Requirements Engineering","authors":"K. Boness, R. Harrison","doi":"10.1109/ICSEA.2007.36","DOIUrl":"https://doi.org/10.1109/ICSEA.2007.36","url":null,"abstract":"This paper describes a technique that can be used as part of a simple and practical agile method for requirements engineering. The technique can be used together with Agile Programming to develop software in internet time. We illustrate the technique and introduce lazy refinement, responsibility composition and context sketching. Goal sketching has been used in a number of real-world development projects, one of which is described here.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"53 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"133269208","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 30
A Novel Framework for Test Domain Reduction using Extended Finite State Machine 基于扩展有限状态机的测试域约简框架
International Conference on Software Engineering Advances (ICSEA 2007) Pub Date : 2007-08-25 DOI: 10.1109/ICSEA.2007.9
Nutchakorn Ngamsaowaros, Peraphon Sophatsathit
{"title":"A Novel Framework for Test Domain Reduction using Extended Finite State Machine","authors":"Nutchakorn Ngamsaowaros, Peraphon Sophatsathit","doi":"10.1109/ICSEA.2007.9","DOIUrl":"https://doi.org/10.1109/ICSEA.2007.9","url":null,"abstract":"Test case generation is an expensive, tedious, and error- prone process in software testing. In this paper, test case generation is accomplished using an Extended Finite State Machine (EFSM). The proper domain representative along the specified path is selected based on fundamental calculus approximation. The pre/post-conditions of class behavior is derived from a continuous or piece-wise continuous function whose values are chosen from partitioned subdomains. Subsequent test data for the designated class can be generated from the selected test frames. In so doing, the domain is partitioned wherein reduced test cases are generated, yet insuring complete test coverage of the designated test plan. The proposed modeling technique will be conducive toward a new realm of test domain analysis. Its validity can also be procedurally proved by straightforward mathematical principles.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"3 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"131273402","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 2
下一页 尾页
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
请完成安全验证×
相关产品
×
本文献相关产品
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信