{"title":"软件信息泄露分析:如何使其对it行业有用?","authors":"Kushal Anjaria, Arun Mishra","doi":"10.1016/j.fcij.2017.04.002","DOIUrl":null,"url":null,"abstract":"<div><p>Nowadays the software is becoming complex as clients expect a number of functionalities in software. In such scenario, information leakage can't be avoided. As a result, a lot of research is going on to develop tools, methods and policies to find and minimize the leakage. The paper proposes a method to provide a measure, especially to the IT organizations to find how the information leakage at one portion of the software can propagate leakage risk to the other portions of the software or entire software. The paper uses the quantitative analysis of information leakage and cost function based statistical method to find the leakage risk propagation in the software. The method proposed in the paper facilitates the organizations by allowing them to set the organization specific parameters. The proposed method has been applied to the function of Linux to demonstrate the information leakage risk propagation. When organizations find information leakage in the software, their sustaining engineering or quality management teams simply rectify the software portion. But it becomes difficult for the organizations to document the overall mitigation of the risk of leakage. Thus, using the proposed method, organizations will be able to quantify the information leakage risk mitigation.</p></div>","PeriodicalId":100561,"journal":{"name":"Future Computing and Informatics Journal","volume":"2 1","pages":"Pages 10-18"},"PeriodicalIF":0.0000,"publicationDate":"2017-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1016/j.fcij.2017.04.002","citationCount":"6","resultStr":"{\"title\":\"Information leakage analysis of software: How to make it useful to IT industries?\",\"authors\":\"Kushal Anjaria, Arun Mishra\",\"doi\":\"10.1016/j.fcij.2017.04.002\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><p>Nowadays the software is becoming complex as clients expect a number of functionalities in software. In such scenario, information leakage can't be avoided. As a result, a lot of research is going on to develop tools, methods and policies to find and minimize the leakage. The paper proposes a method to provide a measure, especially to the IT organizations to find how the information leakage at one portion of the software can propagate leakage risk to the other portions of the software or entire software. The paper uses the quantitative analysis of information leakage and cost function based statistical method to find the leakage risk propagation in the software. The method proposed in the paper facilitates the organizations by allowing them to set the organization specific parameters. The proposed method has been applied to the function of Linux to demonstrate the information leakage risk propagation. When organizations find information leakage in the software, their sustaining engineering or quality management teams simply rectify the software portion. But it becomes difficult for the organizations to document the overall mitigation of the risk of leakage. Thus, using the proposed method, organizations will be able to quantify the information leakage risk mitigation.</p></div>\",\"PeriodicalId\":100561,\"journal\":{\"name\":\"Future Computing and Informatics Journal\",\"volume\":\"2 1\",\"pages\":\"Pages 10-18\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-06-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"https://sci-hub-pdf.com/10.1016/j.fcij.2017.04.002\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Future Computing and Informatics Journal\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S2314728816300654\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Future Computing and Informatics Journal","FirstCategoryId":"1085","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2314728816300654","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Information leakage analysis of software: How to make it useful to IT industries?
Nowadays the software is becoming complex as clients expect a number of functionalities in software. In such scenario, information leakage can't be avoided. As a result, a lot of research is going on to develop tools, methods and policies to find and minimize the leakage. The paper proposes a method to provide a measure, especially to the IT organizations to find how the information leakage at one portion of the software can propagate leakage risk to the other portions of the software or entire software. The paper uses the quantitative analysis of information leakage and cost function based statistical method to find the leakage risk propagation in the software. The method proposed in the paper facilitates the organizations by allowing them to set the organization specific parameters. The proposed method has been applied to the function of Linux to demonstrate the information leakage risk propagation. When organizations find information leakage in the software, their sustaining engineering or quality management teams simply rectify the software portion. But it becomes difficult for the organizations to document the overall mitigation of the risk of leakage. Thus, using the proposed method, organizations will be able to quantify the information leakage risk mitigation.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
