P11: Defending against code injection attacks using Secure Design Pattern (APSEC 2022 - Posters) - APSEC 2022

Tue 6 - Fri 9 December 2022

Who

Anivesh Panjiyar, Debanjan Sadhya

Track

APSEC 2022 Posters

Time Zone

The program is currently displayed in (GMT+09:00) Osaka, Sapporo, Tokyo.

Use conference time zone: (GMT+09:00) Osaka, Sapporo, TokyoSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

When

Thu 8 Dec 2022 10:30 - 12:00 at Hall - Posters

Abstract

Several software vulnerabilities emerge during the design phase of a software development process, which can be addressed using secure design patterns. However, using these patterns over web application vulnerabilities is comparatively more tricky for developers than using traditional design patterns. Although several practices exist for addressing software security vulnerabilities, they are sometimes difficult to reuse due to their implementation-specific nature. In this study, we discuss the secure design patterns that are intended to prevent vulnerabilities from being accidentally introduced into code or reduce the effects of flaws. The patterns are created by combining current best security design practices and adding security-specific functionality to the existing design patterns. Hence, this work outlines a convenient mechanism for deciding which secure design patterns to use for addressing online application vulnerabilities. We have demonstrated the applicability of our concept over a prevalent database security threat, namely SQL injection.

Anivesh Panjiyar

ABV-Indian Institute of Information Technology and Management Gwalior

India

Debanjan Sadhya

ABV-Indian Institute of Information Technology and Management Gwalior

India

Time Zone

The program is currently displayed in (GMT+09:00) Osaka, Sapporo, Tokyo.

Use conference time zone: (GMT+09:00) Osaka, Sapporo, TokyoSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Session Program

Thu 8 Dec
Displayed time zone: Osaka, Sapporo, Tokyo change

	10:30 - 12:00	PostersPosters at Hall

	10:30 90m Poster		P04: Bytecode Obfuscation for Smart Contracts Posters Qifan Yu Hohai University, Pengcheng Zhang Hohai University, Hai Dong RMIT University, Yan Xiao National University of Singapore, Shunhui Ji Hohai University
	10:30 90m Poster		P16: How Does Grit Affect the Performance of Software Developers? Posters Hodaka Shinbori Kindai University, Masateru Tsunoda Kindai University
	10:30 90m Poster		P05: An additional approach to pre-trained code model with multilingual natural languages Posters Teruno Kajiura Japan Women's University, Nao Souma Japan Women's University, Miyu Sato Japan Women's University, Mai Takahashi Japan Women's University, Kimio Kuramitsu Japan Women's University
	10:30 90m Poster		P13: Risk assessment to design business process incorporating AI tasks Posters Ryo Soga Hitachi, Ltd., Hideyuki Kanuka Hitachi, Ltd., Daisuke Fukui Hitachi, Ltd., Masayoshi Mase Hitachi, Ltd.
	10:30 90m Poster		P09: Systematic Literature Review on Educational Effectiveness of Project-Based Learning for Software Development Posters Hane Kondo Graduate School of Education, Tokyo Gakugei Unversity, Atsuo Hazeyama Tokyo Gakugei University
	10:30 90m Poster		P19: Battle of the Blocs: Quantity and Quality of Software Engineering Research by Origin Posters Lorenz Graf-Vlachy University of Stuttgart Pre-print
	10:30 90m Poster		P15: On the Scrutinization of the NFT Valuation Factors Posters Aiden Cheung Island School, Jacky Keung City University of Hong Kong
	10:30 90m Poster		P17: A new measure to assess the systematicity of the abstracts of reviews self-identifying as systematic reviews Posters Alvine Boaye Belle York University, Yixi Zhao York University
	10:30 90m Poster		P12: SceneCommitter: a screen scenario review system using the GitHub and Figma WebAPI in the waterfall based software development Posters Mihato Ueda Department of Informatics Education, Tokyo Gakugei Unversity, Yousuke Asano Graduate School of Education, Tokyo Gakugei Unversity, Hane Kondo Graduate School of Education, Tokyo Gakugei Unversity, Oh Sato Graduate School of Education, Tokyo Gakugei Unversity, Atsuo Hazeyama Tokyo Gakugei University
	10:30 90m Poster		P01: A Preliminary Finding on Programs Fixed by an APR Tool based on a Genetic Algorithm Posters Kanon Harada Ritsumeikan University, Katsuhisa Maruyama Ritsumeikan University
	10:30 90m Poster		P11: Defending against code injection attacks using Secure Design Pattern Posters Anivesh Panjiyar ABV-Indian Institute of Information Technology and Management Gwalior, Debanjan Sadhya ABV-Indian Institute of Information Technology and Management Gwalior
	10:30 90m Poster		P14: DigiSoC - Digital Software City - toward Software 3R: Reduce, Reuse, and Recycle Posters Shinobu Saito NTT
	10:30 90m Poster		P18: How Does Future Perspective Affect Job Satisfaction and Turnover Intention of Software Engineers? Posters Ikuto Yamagata Kindai University, Masateru Tsunoda Kindai University, Keitaro Nakasai National Institute of Technology, Kagoshima College
	10:30 90m Poster		P03: Verifying Attention Robustness of Deep Neural Networks against Semantic Perturbations Posters Satoshi Munakata Fujitsu, Caterina Urban Inria & École Normale Supérieure \| Université PSL, Haruki Yokoyama Fujitsu Limited, Koji Yamamoto Fujitsu, Kazuki Munakata Fujitsu
	10:30 90m Poster		P08: What Pakistani Computer Science and Software Engineering Students Think about Software Testing? Posters Luiz Capretz ACM disntiguished member and IEEE senior member, Abdul Rehman Gilal Universiti of Teknologi PETRONAS
	10:30 90m Poster		P02: Comparison of Developer’s Work Efficiency between Different Editors Posters Sentaro Onizuka Osaka University, Tetsuya Kanda Osaka University, Katsuro Inoue Nanzan University
	10:30 90m Poster		P06: EDPS: Early Dropout Prediction System of MOOC Courses Posters Zhang Jiaxuan University of Jinan, Kun Ma University of Jinan
	10:30 90m Poster		P10: A Support Tool for Test Case First Posters Taiga Wakamatsu Kyushu Institute College of Technology, Yutaro Mikaduki Kyushu Institute of Technology, Noriyuki Kushiro Kyushu Institute of Technology
	10:30 90m Poster		P07: Comparison of Different Keyphrase Extraction Algorithms for Supporting Problem Selection in Online Judge System Posters Ryota Shinhama Doshisha University, Erina Makihara Doshisha University, Keiko Ono Doshisha University, Akitaka Yaguchi Doshisha University, Ayumu Taisho Doshisha University