NCSU

group_project

Visible to the public Argumentation as a Basis for Reasoning about Security

Submitted by mpsingh on Wed, 02/26/2014 - 4:34pm

This project involves the application of argumentation techniques for reasoning about policies, and security decisions in particular. Specifically, we are producing a security-enhanced argumentation framework that (a) provides not only inferences to draw but also actions to take; (b) considers multiparty argumentation; (c) measures the mass of evidence on both attacking and supporting arguments in order to derive a defensible conclusion with confidence; and (d) develops suitable critical questions as the basis for argumentation.

group_project

Visible to the public Shared Perceptual Visualizations For System Security

Submitted by cghealey on Wed, 02/26/2014 - 4:31pm

We are studying how to harness human visual perception in information display, with a specific focus on ways to combine layers of data in a common, well-understood display framework. Our visualization techniques are designed to present data in ways that are efficient and effective, allowing an analyst to explore large amounts of data rapidly and accurately.

TEAM

PI: Christopher G. Healey
Student: Terry Rogers

group_project

Visible to the public Empirical Privacy and Empirical Utility of Anonymized Data

Submitted by Anonymous on Wed, 02/26/2014 - 4:30pm

TEAM

PI: Ting Yu
Students: Xi Gong, Entong Shen

group_project

Visible to the public Software Security Metrics

Submitted by Laurie Williams on Wed, 02/26/2014 - 4:27pm

Software security metrics are commonly considered as one critical component of science of security. We propose to investigate existing metrics and new security metrics to predict which code locations are likely to contain vulnerabilities. In particular, we will investigate security metrics to take into account of comprehensive factors such as software internal attributes, developers who develop the software, attackers who attack the software, and users who use the software.

group_project

Visible to the public Developing a User Profile to Predict Phishing Susceptibility and Security Technology Acceptance

Submitted by cmayhorn on Wed, 02/26/2014 - 4:25pm

Phishing has become a serious threat in the past several years, and combating it is increasingly important. Why do certain people get phished and others do not? In this project, we aim to identify the factors that cause people to be susceptible and resistant to phishing attacks. In doing so, we aim to deploy adaptive anti-phishing measures.

group_project

Visible to the public Attaining Least Privilege Through Automatic Partitioning of Hybrid Programs

Submitted by enck on Wed, 02/26/2014 - 4:23pm

This project investigates the hard problem of resilient architectures from the standpoint of enabling new potential for incorporating privilege separation into computing systems. However, privilege separation alone is insufficient to achieve strong security guarantees. It must also include a security policy for separated components without impacting the functional requirements of the system.

group_project

Visible to the public Improving the Usability of Security Requirements by Software Developers through Empirical Studies and Analysis

Submitted by Travis Breaux on Mon, 10/15/2012 - 6:46pm

Secure software depends upon the ability of software developers to respond to security risks early in the software development process. Despite a wealth of security requirements, often called security controls, there is a shortfall in the adoption and implementation of these requirements. This shortfall is due to the extensive expertise and higher level cognitive skillsets required to comprehend, decompose and reassemble security requirements concepts in the context of an emerging s