رکورد قبلیرکورد بعدی

" Study of Outdated Cryptography Algorithms Posts of Stack Overflow "


Document Type : Latin Dissertation
Language of Document : English
Record Number : 1110743
Doc. No : TLpq2489769181
Main Entry : Kharche, Shraddha
: Narain, Sashank
Title & Author : Study of Outdated Cryptography Algorithms Posts of Stack Overflow\ Kharche, ShraddhaNarain, Sashank
College : University of Massachusetts Lowell
Date : 2021
student score : 2021
Degree : M.S.
Page No : 48
Abstract : There are many online forums where software developers involve themselves in technical discussions and one of the most popular platforms is Stack Overflow. Though these forums are helping developers to pass hurdle in their development process, many recent studies have shown that copying insecure code from these online forums is the leading cause of software vulnerabilities in applications. Even today, there are a number of posts on Stack Overflow that mention outdated algorithms like AES/ECB and they are still being viewed and up voted by users. Stack Overflow is a completely user driven platform and does not provide any mechanism which will alert users about the vulnerabilities associated with such algorithms. The aforementioned problems motivates us to study the Stack Overflow posts which has reference to outdated cryptography algorithms, and focus on answering two questions: Is it feasible to build a system that identifies weak cryptographic algorithms or hashing function and alert users? If a question contains weak cryptographic algorithms, do responders alert the users or do they simply focus on providing a working solution? To answer these, we have designed and developed a mary tree with a list of encryption algorithms and hashing functions available. We identified cryptographic algorithm keywords from posts text and traversed the tree, where tree leaves suggest if there is a need of potential warning or not. We applied this process both to posts questions and answers to analyze if the question and answers correlate by verifying if they traverse the same tree path. We ran our designed system against 6 million Stack Overflow Posts, which had 5169 cryptography related posts. We could successfully find several posts which had both questions and answers referring to outdated algorithms, and do not have any warnings from responders.
Subject : Applied mathematics
: Computer engineering
: Computer science
: Information technology
: Web studies
کپی لینک

پیشنهاد خرید
پیوستها
عنوان :
نام فایل :
نوع عام محتوا :
نوع ماده :
فرمت :
سایز :
عرض :
طول :
2489769181_21712.pdf
2489769181.pdf
پایان نامه لاتین
متن
application/pdf
2.40 MB
85
85
نظرسنجی
نظرسنجی منابع دیجیتال

1 - آیا از کیفیت منابع دیجیتال راضی هستید؟