Cited By
View all- Williams MDouglass R(2023)Ensuring the Security of Defense IoT Through Automatic Code GenerationIoT for Defense and National Security10.1002/9781119892199.ch16(307-323)Online publication date: 6-Jan-2023
Automatic generation of network element software (AGNES): short paper
Authors: 
Christopher A. Rouff, M. Douglas Williams, Qinqing Zhang, Daniel J. Bennett, Raymond C. McDowell, Anthony R. Nowicki, J. Aaron Pendergrass, Daniel R. Anderson, Robert Douglass, 
Bradley T. Dufresne, Jonathan T. PhamAuthors Info & Claims
Christopher A. Rouff, M. Douglas Williams, Qinqing Zhang, Daniel J. Bennett, Raymond C. McDowell, Anthony R. Nowicki, J. Aaron Pendergrass, Daniel R. Anderson, Robert Douglass, Bradley T. Dufresne, Jonathan T. PhamAuthors Info & ClaimsArticle No.: 15, Pages 1 - 4
Abstract
The security of computer networks is critical to our nation's civil and military infrastructure. Eliminating vulnerabilities in network software will significantly improve security of our computer and military systems. The Automatic Generation of Network Element Software (AGNES) code generator will generate network element software that is free from known weaknesses which in turn will reduce vulnerabilities. AGNES uses an ontology of coding solutions based on network element standards and the Common Weakness Enumeration (CWE) database to avoid common weaknesses. The generated software will be put through rigorous static analysis to validate the absence of known weaknesses. The generated code will be compared to open source software for comparison of code quality, functionality and performance.
References
[1]
J. Broekstra and A. Kampman. 2002. Sesame: A Generic Architecture for Storing and Querying RDF and RDF Schema. In Proc. of the 1st International Semantic Web Conference (ISWC2002).
[2]
Matthew Flatt. 2011. Creating Languages in Racket. Queue 9, 11, (Nov 2011).
[3]
C.L. Hedrick. 1988. Routing information protocol.
[4]
Graphical Network Simulator-3. URL http://www.gns3.com
[5]
Internet Engineering Task Force (IETF). URL https://www.ietf.org
[6]
O. Lassila and R.R. Swick. 1999. Resource Description Framework (RDF) Model and Syntax Specification. URL http://www.w3.org/TR/1999/REC-rdf-syntax-19990222.
[7]
R.A. Martin and S. Barnum. 2008. Common weakness enumeration (CWE) status update. Ada Letters, XXVIII (1):88--91.
[8]
J. McCarthy. 1960. Recursive functions of symbolic expressions and their computation by machine, Part I. Commun. ACM 3, 4 (April 1960), 184--195.
[9]
MITRE. 2008. Common weakness enumeration (CWE). URL http://cwe.mitre.org/data/slices/2000.html
[10]
A. Repenning and A. Ioannidou. 2007. X-expressions in XMLisp: S-expressions and extensible markup language unite. In Proceedings of the 2007 International Lisp Conference (ILC '07). ACM, New York, NY, USA.
[11]
rdf4j. URL http://rdf4j.org
Index Terms
- Automatic generation of network element software (AGNES): short paper
Recommendations
An exploratory study on the relationship of smells and design issues with software vulnerabilities
MSR4P&S 2022: Proceedings of the 1st International Workshop on Mining Software Repositories Applications for Privacy and SecuritySoftware vulnerabilities are one of the leading causes of the loss of confidential data resulting in financial damages in the industry. As a result, software companies strive to discover potential vulnerabilities before the software is deployed. While ...
Mining trends and patterns of software vulnerabilities
We mine software vulnerabilities to facilitate vendors in making decisions about future vulnerabilities in software applications.Results show that no significant difference exists in trend of vulnerabilities.Sequential patterns of vulnerability events ...
Estimating Software Vulnerabilities: A Case Study Based on the Misclassification of Bugs in MySQL Server
ARES '13: Proceedings of the 2013 International Conference on Availability, Reliability and SecuritySoftware vulnerabilities are an important part of the modern software economy. Being able to accurately classify software defects as a vulnerability, or not, allows developers and end users to expend appropriately more effort on fixing those defects ...
Comments
Information & Contributors
Information
Published In
April 2017
106 pages
ISBN:9781450348553
DOI:10.1145/3064814
- General Chairs:
- Joseph P. Trien,
- Stacy J. Prowell,
- John R. Goodall,
- Justin M. Beaver,
- Program Chair:
- Robert A. Bridges
Copyright © 2017 ACM.
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
Published: 04 April 2017
Check for updates
Author Tags
Qualifiers
- Short-paper
Conference
CISRC'17
CISRC'17: Twelfth Annual Cyber and Information Security Research Conference
April 4 - 6, 2017
Tennessee, Oak Ridge, USA
Acceptance Rates
CISRC '17 Paper Acceptance Rate 8 of 22 submissions, 36%;
Overall Acceptance Rate 69 of 136 submissions, 51%
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- View Citations1Total Citations
- 80Total Downloads
- Downloads (Last 12 months)1
- Downloads (Last 6 weeks)0
Reflects downloads up to 07 Mar 2025
Other Metrics
Citations
Cited By
View all- Williams MDouglass R(2023)Ensuring the Security of Defense IoT Through Automatic Code GenerationIoT for Defense and National Security10.1002/9781119892199.ch16(307-323)Online publication date: 6-Jan-2023
View Options
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in