Predicting Security Flaws through Architectural Flaws
October 2018 • Poster
Robert Schiela, Rick Kazman
This poster describes efforts toward using automated architecture analysis to identify, prevent, and mitigate security flaws in code.
Software Engineering Institute
Security defects due to implementation and interface dependencies across multiple source code files are difficult and expensive to find and fix. This research is aimed at evaluating the efficacy of using architectural modular analysis tools to identify security defects and the effect of refactoring on removing security defects. The project’s goal is to use automated architecture analysis to identify, prevent, and mitigate security flaws in code.