• Title/Summary/Keyword: Software Analysis

Search Result 9,551, Processing Time 0.037 seconds

Design and Implementation of Software Vulnerability Analysis Algorithm through Static Data Access Analysis

  • Lim, Hyun-il
    • Journal of the Korea Society of Computer and Information
    • /
    • v.20 no.8
    • /
    • pp.69-75
    • /
    • 2015
  • Nowadays, software plays various roles in applications in wide areas. However, the security problems caused by software vulnerabilities increase. So, it is necessary to improve software security and safety in software execution. In this paper, we propose an approach to improve the safety of software execution by managing information used in software through static data access analysis. The approach can detect the exposures of secure data in software execution by analyzing information property and flows through static data access analysis. In this paper, we implemented and experimented the proposed approach with a base language, and verify that the proposed approach can effectively detect the exposures of secure information. The proposed approach can be applied in several areas for improving software safety by analysing vulnerabilities from information flows in software execution.

FAULT TREE ANALYSIS OF KNICS RPS SOFTWARE

  • Park, Gee-Yong;Koh, Kwang-Yong;Jee, Eunk-Young;Seong, Poong-Hyun;Kwon, Kee-Choon;Lee, Dae-Hyung
    • Nuclear Engineering and Technology
    • /
    • v.40 no.5
    • /
    • pp.397-408
    • /
    • 2008
  • This paper describes the application of a software fault tree analysis (FTA) as one of the analysis techniques for a software safety analysis (SSA) at the design phase and its analysis results for the safety-critical software of a digital reactor protection system, which is called the KNICS RPS, being developed in the KNICS (Korea Nuclear Instrumentation & Control Systems) project. The software modules in the design description were represented by function blocks (FBs), and the software FTA was performed based on the well-defined fault tree templates for the FBs. The SSA, which is part of the verification and validation (V&V) activities, was activated at each phase of the software lifecycle for the KNICS RPS. At the design phase, the software HAZOP (Hazard and Operability) and the software FTA were employed in the SSA in such a way that the software HAZOP was performed first and then the software FTA was applied. The software FTA was applied to some critical modules selected from the software HAZOP analysis.

A Study of Software Hazard Analysis for Safety Critical Function in Military Aircraft

  • Oh, Hung-Jae;Hong, Jin-Pyo
    • Journal of IKEEE
    • /
    • v.16 no.2
    • /
    • pp.145-152
    • /
    • 2012
  • This paper is the Software Hazard Analysis (SWHA) which will study the managerial process and the technical methode and techniques inherent in the performance of software safety task within the Military Aircraft System Safety program. This SWHA identifies potential hazardous effects on the software intensive systems and provides a comprehensive and qualitative assessment of the software safety. The purpose of this paper is to identify safety critical functions of software in Military A/C. The identified software hazards associated with the design or function will be evaluated for risks and operational constraint to further improve the software design requirement, analysis and testing efforts for safety critical software. This common SWHA, the first time analysis in KOREA, was review all avionics OFP(Operational Flight Program), and focus only on software segments which are safety critical. This paper provides a important understanding between the customer and developer as to how the software safety for the Military A/C will be accomplished. It will also provide the current best solution which may as one consider the necessary step in establishing a credible and cost-effective software safety program.

A Case Study on Applying Function Point Analysis Technique to Measure the Size of Software Systems based on UML (UML기반 소프트웨어시스템의 규모측정을 위한 기능점수분석기법의 응용에 관한 연구)

  • 안계중;이남용
    • The Journal of Society for e-Business Studies
    • /
    • v.7 no.2
    • /
    • pp.173-190
    • /
    • 2002
  • Over the past decade, numerous software managers and engineers have been concerned with measuring the size and complexity of software systems. Function point analysis technique is one of the most popular software sizing techniques. A reasonable software development plan through cost and time estimation should be a prerequisite for the successful project at the beginning stage of the project. It is generally known that software size measurement is useful for this kind of estimation and the function point analysis technique would be more effective than the others. However, it is difficult to apply the technique to object-oriented methodology widely used in the software industry. Thus, the purpose of this study is to present a case study on how to apply function point analysis technique to sizing of the software systems based on UML. The results of this study can be useful to managers and engineers.

  • PDF

A Document-Driven Method for Certifying Scientific Computing Software for Use in Nuclear Safety Analysis

  • Smith, W. Spencer;Koothoor, Nirmitha
    • Nuclear Engineering and Technology
    • /
    • v.48 no.2
    • /
    • pp.404-418
    • /
    • 2016
  • This paper presents a documentation and development method to facilitate the certification of scientific computing software used in the safety analysis of nuclear facilities. To study the problems faced during quality assurance and certification activities, a case study was performed on legacy software used for thermal analysis of a fuelpin in a nuclear reactor. Although no errors were uncovered in the code, 27 issues of incompleteness and inconsistency were found with the documentation. This work proposes that software documentation follow a rational process, which includes a software requirements specification following a template that is reusable, maintainable, and understandable. To develop the design and implementation, this paper suggests literate programming as an alternative to traditional structured programming. Literate programming allows for documenting of numerical algorithms and code together in what is termed the literate programmer's manual. This manual is developed with explicit traceability to the software requirements specification. The traceability between the theory, numerical algorithms, and implementation facilitates achieving completeness and consistency, as well as simplifies the process of verification and the associated certification.

The Impact of the Competitiveness of Intermediate Software on Enterprise Results: a Case Study of Chinese Intermediate Software

  • Liu, Zi-Yang
    • Journal of the Korea Society of Computer and Information
    • /
    • v.23 no.12
    • /
    • pp.123-129
    • /
    • 2018
  • The purpose of this paper is to draw a conclusion on the impact of intermediate software on enterprise results. In this paper, product innovation and product reliability are especially used as analytical factors. An exploratory analytical study is conducted on the competitiveness of intermediate software, in the hope of gaining a new understanding of the competitiveness of intermediate software. Data are analyzed using such quantitative analytical tools as SPSS and AMOS. Using reliability analysis, validity analysis and structural equation model analysis, the final results are achieved. According to the analysis results, we can draw the following conclusions: the competitiveness of intermediate software has a positive impact on the innovation of software products. The competitiveness of intermediate software doesn't have a positive impact on the reliability of software products. Product innovation has a positive impact on enterprise results. Product reliability also has a positive impact on enterprise results. By analyzing the conclusions, we can make certain suggestions and draw implications on the competitiveness of China's software industry.

Development of Automation Software for Corner Radius Analysis of Composite Laminated Structure (복합재 적층 구조물의 코너 부 파손 해석을 위한 자동화 소프트웨어 개발)

  • Hyeon, Ju-Ha;Moon, Yong-Ho;Ha, Seok-Wun
    • Journal of Convergence for Information Technology
    • /
    • v.8 no.3
    • /
    • pp.107-114
    • /
    • 2018
  • Recently, as aviation industry has been activated, development of software related to composite materials has been demanded. Composite analysis requires specialized structural analysis and test evaluation. Therefore, it is necessary to use existing commercial software to analyze the composite structure, but existing commercial software only provides limited functions. Especially, since there is no specialized software for corner structure analysis of aerospace composites spa structure, much human resources and time are consumed in structural analysis. In order to solve this problem, we developed a GUI-based automation software based on user-friendly GUI that reflects the existing corner structure analysis procedure and provides multiple breakdown criteria. To verify the reliability of the structural analysis results of the developed software, it was confirmed that there is no problem in the structural analysis performance as a result of comparing with the existing analysis results.

Country Clustering Based on Environmental Factors Influencing on Software Piracy (소프트웨어 불법복제에 영향을 미치는 환경 요인에 기반한 국가 분류)

  • Suh, Bomil;Shim, Junho
    • The Journal of Information Systems
    • /
    • v.26 no.4
    • /
    • pp.227-246
    • /
    • 2017
  • Purpose: As the importance of software has been emphasized recently, the size of the software market is continuously expanding. The development of the software market is being adversely affected by software piracy. In this study, we try to classify countries around the world based on the macro environmental factors, which influence software piracy. We also try to identify the differences in software piracy for each classified type. Design/methodology/approach: The data-driven approach is used in this study. From the BSA, the World Bank, and the OECD, we collect data from 1990 to 2015 for 127 environmental variables of 225 countries. Cronbach's ${\alpha}$ analysis, item-to-total correlation analysis, and exploratory factor analysis derive 15 constructs from the data. We apply two-step approach to cluster analysis. The number of clusters is determined to be 5 by hierarchical cluster analysis at the first step, and the countries are classified by the K-means clustering at the second step. We conduct ANOVA and MANOVA in order to verify the differences of the environmental factors and software piracy among derived clusters. Findings: The five clusters are identified as underdeveloped countries, developing countries, developed countries, world powers, and developing country with large market. There are statistically significant differences in the environmental factors among the clusters. In addition, there are statistically significant differences in software piracy rate, pirated value, and legal software sales among the clusters.

A Statistical Software for Measurement Systems Analysis (측정시스템 분석용 통계소프트웨어의 개발)

  • 이승훈;이종환
    • Journal of Korean Society for Quality Management
    • /
    • v.28 no.1
    • /
    • pp.175-195
    • /
    • 2000
  • In this study, we developed a statistical software for measurement systems analysis. This software is patterned after the Measurement Systems Analysis Reference Manual developed by the Automotive Industry Action Group (AIAG). This software includes stability analysis, bias and linearity analysis, and gage R&R studies. This software was developed by using Delphi(version 4.0) and can be implemented on MS Windows 95 or higher level.

  • PDF

Extension of MARTE Profile for Model-based Power Consumption Analysis of Embedded Software with UML 2.0 (UML 2.0을 사용한 모델 기반의 임베디드 소프트웨어 소모 전력 분석을 위한 MARTE Profile의 확장)

  • Pyeon, Ho-Rim;Kim, Jong-Phil;Hong, Jang-Eui
    • Journal of KIISE:Software and Applications
    • /
    • v.37 no.4
    • /
    • pp.252-263
    • /
    • 2010
  • The needs of low-power embedded software are being increased. Along with the needs, the studies to predict the power consumption of embedded software are also being increased. Although existing studies for power analysis have been performed in source code-based, these code-based analysis have some shortages of long analysis time and much feedback efforts. Recently some studies of power analysis based on software models are prompted. This paper describes on the model-based approach using UML diagrams in embedded software development process. Specially we focus on the extension of OMG's MARTE Profile to support model-based analysis. The MARTE extension gives the possibility of power analysis using just UML diagrams without any other analysis model in embedded software development.