Presentation is loading. Please wait.

Presentation is loading. Please wait.

CMSC 345 Defensive Programming Practices from Software Engineering 6th Edition by Ian Sommerville.

Published byRosamond Eaton Modified over 6 years ago

Similar presentations

Presentation on theme: "CMSC 345 Defensive Programming Practices from Software Engineering 6th Edition by Ian Sommerville."— Presentation transcript:

1 CMSC 345 Defensive Programming Practices from Software Engineering 6th Edition by Ian Sommerville

2 Defensive Programming Tactics
Errors in system development can lead to security loop holes Unchecked I/O Unguarded Array bounds These loop holes allow accidental or malicious people to possibly gain more privileged access then they should have

3 Types of damage from External Attack
Denial of Service Normal usage of the system by authorized users has been denied Corruption of programs or data Program or data contents can be modified, producing undesirable results Disclosure of confidential information Including things like passwords or SSN

4 Common Security Terms Exposure Vulnerability Attack Threats Control
Possible loss or harm in a computing system Vulnerability A weakness in a computer-based system that may be exploited to cause loss or harm Attack An exploitation of a system vulnerability Threats Circumstances that have potential to cause loss or harm Control A protective measure that reduces a system vulnerability

5 To Ensure Security of a System
Vulnerability Avoidance i.e. don’t connect a computer to the network if it doesn’t need to communicate with others Attack Detection & Neutralization i.e. using a virus checker to protect the computer from further exploitation Exposure Limitation i.e. regular back ups and constant security patch application protect a system from long term exposure

6 Dependable Software Fault Avoidance Fault Tolerance
Design and implement the system in such a way as to minimize human error Fault Tolerance Design and implement the system such that even if faults do occur, they do not negatively impact the system

7 Dangerous Constructs Pointers Dynamic Memory Allocation Parallelism
Biggest source of buffer overflows Dynamic Memory Allocation Could easily lead to memory leaks Parallelism Very difficult to minimize inter-process dependencies Recursion Difficult to debug and could result in accidental allocation of all a system’s memory

8 More Dangerous Constructs
Interrupts Forced control to another area of code irrespective of code currently running could lead to critical operations being terminated Inheritance Could be difficult to track down code that your instantiation called on if there’s an error Default Input Processing Never allow input to absorbed into your program without first checking its contents for malicious intent

9 Information Hiding Similar to government security concept of ‘need to know’ Only allow programming constructs to gain direct access to methods and variables that they absolutely need for execution Languages like Java make this easier then languages like C Information Hiding prevents accidental or malicious use of your code

10 Good Testing Reduces Dangers
Requirements inspection & management Continually review your requirements to make sure that you are developing your code to spec Code inspections Have your peers review your code looking for common problems and ask why you designed certain things in certain ways Static analysis Run a tool like lint or ITS4 against your code to search for common programming errors See for more information and other tools Good Test planning & management Ensures that you cover all the bases and ensures that system requirements match up well with the final product

11 Static Analysis Software tool which scans the source text of a program and detects possible faults or anomalies Frequently used during code inspections Can be integrated into your development environment ITS4 can be melded with emacs /GS is the new part of MS Visual C++

12 Static Analysis Checks For…
Control flow analysis Highlights loops with multiple entry & exit points and unreachable code Data use analysis Checks variable usage for things like Variables that are declared but never used Variables that are written twice without an intervening assignment

13 Static Analysis Checks For…
Interface Analysis Performs additional type checking to ensure proper use Information Flow Analysis Identifies dependencies between input and output variables Path Analysis Unravels your program to show all the possible paths

Download ppt "CMSC 345 Defensive Programming Practices from Software Engineering 6th Edition by Ian Sommerville."

Similar presentations

Verification and Validation

Verification and Validation
Understand Database Security Concepts

Understand Database Security Concepts
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 20 Slide 1 Critical systems development.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 20 Slide 1 Critical systems development.
Static code check – Klocwork

Static code check – Klocwork
Testing Without Executing the Code Pavlina Koleva Junior QA Engineer WinCore Telerik QA Academy Telerik QA Academy.

Testing Without Executing the Code Pavlina Koleva Junior QA Engineer WinCore Telerik QA Academy Telerik QA Academy.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 3 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 3 Wenbing Zhao Department of Electrical and Computer Engineering.
Web Defacement Anh Nguyen May 6 th, 2010. Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.

Web Defacement Anh Nguyen May 6 th, Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.
19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.

19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.
Introducing Computer and Network Security

Introducing Computer and Network Security
©Ian Sommerville 2000Software Engineering, 6th edition. Chapter 19Slide 1 Verification and Validation l Assuring that a software system meets a user's.

©Ian Sommerville 2000Software Engineering, 6th edition. Chapter 19Slide 1 Verification and Validation l Assuring that a software system meets a user's.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.
Methods For The Prevention, Detection And Removal Of Software Security Vulnerabilities Jay-Evan J. Tevis Department of Computer Science and Software Engineering.

Methods For The Prevention, Detection And Removal Of Software Security Vulnerabilities Jay-Evan J. Tevis Department of Computer Science and Software Engineering.
1CMSC 345, Version 4/04 Verification and Validation Reference: Software Engineering, Ian Sommerville, 6th edition, Chapter 19.

1CMSC 345, Version 4/04 Verification and Validation Reference: Software Engineering, Ian Sommerville, 6th edition, Chapter 19.
CSCI 5801: Software Engineering

CSCI 5801: Software Engineering
Secure Embedded Processing through Hardware-assisted Run-time Monitoring Zubin Kumar.

Secure Embedded Processing through Hardware-assisted Run-time Monitoring Zubin Kumar.
©Ian Sommerville 2000Software Engineering, 6th edition. Chapter 19Slide 1 Verification and Validation l Assuring that a software system meets a user's.

©Ian Sommerville 2000Software Engineering, 6th edition. Chapter 19Slide 1 Verification and Validation l Assuring that a software system meets a user's.
Project Quality Management

Project Quality Management
Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders.

Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders.
Security Exploiting Overflows. Introduction r See the following link for more info: operating-systems-and-applications-in-

Security Exploiting Overflows. Introduction r See the following link for more info: operating-systems-and-applications-in-
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 22 Slide 1 Verification and Validation.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 22 Slide 1 Verification and Validation.

Similar presentations

Ads by Google