Assessing the Threat Landscape for Software Libraries

Abstract

Libraries are a collection of implementations of behavior written in a computer programming language providing a well-defined interface by which the behavior can be invoked. Although a majority of the code in numerous applications comes from libraries, the risk of security vulnerabilities that comes with these libraries is often overlooked. In this regard, we seek to assess the threat landscape associated with software libraries and discuss mitigation strategies via Security Development Lifecycle (SDL).

DOI: 10.1109/ISSREW.2014.58

8 Figures and Tables

Cite this paper

@article{Kannavara2014AssessingTT, title={Assessing the Threat Landscape for Software Libraries}, author={Raghudeep Kannavara}, journal={2014 IEEE International Symposium on Software Reliability Engineering Workshops}, year={2014}, pages={71-76} }