Software security is about protecting information and ensuring that systems continue to function correctly even when under malicious attack. The traditional approach of securing a system has been to create defensive walls such as intrusion detection systems and firewalls around it, but there are always cracks in these walls, and thus such measures are no longer sufficient by themselves. We need to be able to build better, more robust and more “inherently secure” systems, and we should strive to achieve these qualities in all software systems, not just in the ones that “obviously” need special protection.
This workshop will focus on techniques, experiences and lessons learned for engineering secure and dependable software using the DevOps paradigm, as well as other forms of agile development.
Suggested topics include, but are not limited to:
Security in DevOps
Security aspects of software deployment
Security in Continuous Deployment
Security Architecture in Agile Development
Security testing in DevOps
Container security for DevOps
Security automation tools
Security in agile software development
Agile security requirements
Risk management in software projects
Agile testing for security
Quantitative measurement of security properties
Static and dynamic analysis for security
Verification and assurance techniques for security properties
Security and usability
Design and deployment of secure services
Secure composition and adaptation of services
Teaching secure software development
Experience reports on successfully attuning developers to secure software engineering
Industry experience talks
09月14日
2017
会议日期
初稿截稿日期
初稿录用通知日期
注册截止日期
终稿截稿日期
留言