SERF

1st International Workshop on Software Engineering and Digital Forensics

September 4, 2017, Padeborn, Germany

01

Co-located with ESEC/FSE, 4-8 September 2017 - Padeborn, Germany.

Keynote

Building Forensics In: Supporting the Investigation of Digital Criminal Activities

Logging mechanisms that capture detailed traces of user activity, including creating, reading, updating, and deleting (CRUD) data, facilitate meaningful forensic analysis following a security or privacy breach. However, software requirements often inadequately and inconsistently state “what” user actions should be logged, thus hindering meaningful forensic analysis. In this talk, we will explore a variety of techniques for building a software system that supports forensic analysis. We will discuss systematic heuristics-driven and patterns-driven processes for identifying log events that must be logged based on user actions and potential accidental and malicious use, as described in natural language software artifacts. We then discuss systematic process for creating a black-box test suite for verifying the identified log events are logged. Using the results of executing the black-box test suite, we propose and evaluate a security metric for measuring the forensic-ability of user activity logs.

----------------------------------------------------------------------------------------------------------------------------------------------------------------

    Prof. Laurie Williams

      Professor Laurie Williams is the Interim Department Head of Computer Science and a       Professor in the Computer Science Department of the College of Engineering at North       Carolina State University (NCSU). Laurie is a co-director of the NCSU Science of
      Security Lablet sponsored by the National Security Agency. Laurie’s research focuses
      on software security; agile software development practices and processes; software
      reliability, and software testing and analysis.