In this talk, I will briefly go over software vulnerabilities and how prevalent these vulnerabilities are. I present studies on C++ and C# on code-sharing platform and describe how these vulnerabilities migrated to real-world applications. Afterward, I will describe how software vulnerabilities may cause availability and/or dependability problems. Then, I will show how security, a mechanism that usually produces overhead, can be improved, and at the same time system availability is also improved. Basically, we proposed a re-ranking system for vulnerabilities in industrial control systems and present quantitative results on how the system dependability is improved when vulnerabilities are fixed based on our proposed re-ranking system. In this path, we had to define quantitative software metrics to assess the availability of a system for the first time (to the best based of our knowledge) back in 2015. In the latter part of the talk, I will go over some other research themes and mechanisms to improve dependability and security at the same time and illustrate their effectiveness by Experiments.
Dr. Ashkan Sami obtained his B.S. in Electrical Engineering from Virginia Tech; U.S.A. and his PhD from Tohoku University; Japan, where his PhD became a Japanese national project and earned him a tenured faculty position at Tohoku University. Ashkan created the first open source malware dataset for academic research in 2010. His current work on security has been presented in BBC and the Register and several Stack Exchange blogs by Stack Overflow managers. Dr. Sami became National Elite’s Foundation Professor in 2019.
Seminar Recording - YouTube Link: https://www.youtube.com/watch?v=r9rVLUOh6P8