Although most people don't give security much attention until their personal or business systems are attacked, this thought-provoking anthology demonstrates that digital security is not only worth thinking about, it's also a fascinating topic. Criminals succeed by exercising enormous creativity, and those defending against them must do the same. ----- << Beautiful Security >>
Research Interest:
My research area is Security in Software Engineering. My research interests mainly include:
- Java Security Problems on Mobile Devices
- Bytecode Instrumentation to address security problems
- Using Aspect-Oriented Programming(AOP) techniques to address security vulnerabilities
- Security Monitoring on Component-based Software
Projects:
- Secure Call with Bytecode Instrumentation
- Monitoring Components using Aspects weaving into Wrappers
- Aspect-Oriented Modelling Secure Method Calls
Refereces:
Courses:
Winter 2008
- CISC865: Semantics of Programming Language by Professor Bob Tennent
- CISC870: Fuzzy Theory and Application by Professor Robin Dawes
- ELEC878: Computer Communication by Dr. Chi-Hsiang Yeh
Fall 2008
- CISC848:Software Reliability and Security by Dr. Mohammad Zulkernine
- ELEC876: Software Re-engineering by Dr. Ying Zou - Audit
Teaching:
CISC327: Software Quality Assurance - Fall 2008
Publications:
- X. Yang and M. Zulkernine. Secure method calls by instrumenting bytecode
with aspects. In The
23rd Annual IFIP WG Working Conference on Data and Applications Security , DBSec'09, volume 5645 of LNCS, pages 126–141, Montreal, Canada, July 2009. Springer.