Using Malware Analysis to Identify Overlooked Security Requirements
Despite the reported attacks on critical systems, operational techniques such as malware analysis are not used to inform early lifecycle activities, such as security requirements engineering. In our CERT research, it was thought that malware analysis reports (Found in databases such as Rapid 7), could be used to identify misuse cases that pointed towards overlooked security requirements. If such requirements could be identified, they could be incorporated into future systems that were similar to those that were successfully attacked. A process was defined, and then CMU Master of Software Engineering project was sponsored to develop a tool. The hope was that the malware report databases were amenable to automated processing, and that they would point to flaws such as those documented in the CWE and CAPEC databases. It turned out to not be so simple. This talk will describe our initial research results, and the research remaining to be done. A second team of CMU graduate students is continuing to assist in the research and tool development. Their progress as of the time of the conference will also be discussed.
The Colloquium™ recognizes that the protection of information and infrastructures that are used to create, store, process, and communicate information is vital to business continuity and security. The goal of The Colloquium™ is to work together to define current and emerging requirements for information assurance education and to influence and encourage the development and expansion of information assurance curricula, especially at the graduate and undergraduate levels.
If you value our mission of service, please consider making a donation, or supporting the organization through charitable pledges.
Recent Posts
29th Colloquium - Presentations
Below are the abstracts and submitted slides for paper presentations at the 29th Colloquium. Article order is alphabetical and features works corresponding to CISSE™ and CCERP tracks. We kindly ask authors and presenters to please consider sending your presentation media to Andrew so they can be included in the conference proceedings.
29th Colloquium - Impact Summary
The 29th Colloquium brought together educators, researchers, industry experts, and government leaders to advance cybersecurity education in an era defined by AI and rapid technological change. This impact summary highlights the reach, participation, and collective achievements that made this year’s event one of our most engaged and successful gatherings this decade.
|
© 2025 CISSE™. All rights reserved. This copyright notice applies only to website content on CISSE.info. It does not apply to the Open Journal platform at CISSE.info/journal. All journal articles are © their respective authors and published under the CC BY 4.0 license. |