首页    期刊浏览 2024年11月29日 星期五
登录注册

文章基本信息

  • 标题:Security Evaluation and Hardening of Free and Open Source Software (FOSS)
  • 本地全文:下载
  • 作者:Robert Charpentier ; Mourad Debbabi ; Dima Alhadidi
  • 期刊名称:Electronic Communications of the EASST
  • 电子版ISSN:1863-2122
  • 出版年度:2010
  • 卷号:33
  • 语种:English
  • 出版社:European Association of Software Science and Technology (EASST)
  • 摘要:Recently, Free and Open Source Software (FOSS) has emerged as an alternative to Commercial-Off- The-Shelf (COTS) software. Now, FOSS is perceived as a viable long-term solution that deserves careful consideration because of its potential for significant cost savings, improved reliability, and numerous advantages over proprietary software. However, the secure integration of FOSS in IT infrastructures is very challenging and demanding. Methodologies and technical policies must be adapted to reliably compose large FOSS-based software systems. A DRDC Valcartier-Concordia University feasibility study completed in March 2004 concluded that the most promising approach for securing FOSS is to combine advanced design patterns and Aspect-Oriented Programming (AOP). Following the recommendations of this study a three years project have been conducted as a collaboration between Concordia University, DRDC Valcartier, and Bell Canada. This paper aims at presenting the main contributions of this project. It consists of a practical framework with the underlying solid semantic foundations for the security evaluation and hardening of FOSS.
国家哲学社会科学文献中心版权所有