Model-driven software security engineering for the cloud

Professor John Grundy (Swinburne University)

GENERAL Software Engineering

DATE: 2013-07-31
TIME: 12:00:00 - 13:30:00
LOCATION: CSIT Seminar Room, N101
CONTACT: JavaScript must be enabled to display this email address.

Software security engineering is a challenging problem. The emergence of cloud computing platforms as a "new" way to deliver software services in many ways compounds the problem: multiple tenants have differing security requirements; service and cloud providers have differing (sometimes conflicting) security requirements and platforms; and many security issues are emergent at run-time as tenants, service providers, cloud providers and deployment environments all evolve. We describe our recent research into securing cloud-hosted software applications from cloud provider, service provider, and cloud consumer (tenant) perspectives. This includes a new infrastructure-as-a-service security monitoring appliance, a new platform-as-a-service security analysis, design and management framework, and a novel tenant security requirements capture and management console. We describe several evaluations of these approaches identifying key strengths and weaknesses and some of our on-going research in this area.
John Grundy is Professor of Software Engineering and Deputy Dean of the Faculty of ICT at Swinburne University of Technology. Previously he was Head of Computer Science and Software Engineering at Swinburne, Head of Department for Electrical and Computer Engineering at the University of Auckland, New Zealand, and Director of Software Engineering, University of Auckland. He has published widely in the areas of automated software engineering, model-driven engineering, visual languages, software architecture and software methods and tools. He is an Associate Editor for IEEE Transactions on Software Engineering, IEEE Software and Automated Software Engineering. He is currently the CORE Australia President, was on the ERA 2012 MIC Panel, and is on the Steering Committee for the IEEE/ACM International Conference on Automated Software Engineering. He is a Fellow of Automated Software Engineering and Fellow of Engineers Australia.

Updated:  25 July 2013 / Responsible Officer:  JavaScript must be enabled to display this email address. / Page Contact:  JavaScript must be enabled to display this email address. / Powered by: Snorkel 1.4