Addressing Security Issues Related to Modern Software
Topic Information
Dear Colleagues,
Unfortunately, the recently introduced area of DevSecOps—in medium to large companies—currently lacks automated security tools. While most existing solutions predominantly target only one narrow step of the software development life cycle (SDLC) process, a much-needed holistic overview of the global security solution is missing. Despite this, in terms of security, DevSecOps is considered the best application development. By integrating security early on in the development process, it is possible to ensure it is a continuous service delivery as opposed to being developed in siloes. In this context, this Topic is requesting the submission of papers that incorporate automated security tools throughout the software development life cycle. Specifically, these works must perform targeted security checks and collect valuable information and intelligence from each step and apply advanced machine learning and artificial intelligence methods to convert this intelligence into actionable insights and recommendations, following an open-source approach for the core functionality, which will be supported by a realistic and viable business model. We invite authors to submit original contributions in all areas of artificial intelligence, cybersecurity, and software security. Topics of interest include but are not limited to the following:
- Adversarial machine learning techniques applied to DevSecOps;
- Al techniques for vulnerability prediction;
- Artificial intelligence for automatic error correction;
- Artificial intelligence techniques for algorithmic verification;
- Automatic abstraction techniques applicable to programming code;
- Automatic modelling of software and hardware attacks and defences using artificial intelligence algorithms;
- Automatic prediction of security flaws in software and hardware using deep learning algorithms;
- Deep learning techniques for modelling threats and vulnerabilities in software;
- Deep learning techniques for symbolic model checking;
- Deep learning techniques for the detection of programming errors in binary and modern programming languages.
Prof. Dr. Luis Javier García Villalba
Dr. Ana Lucila Sandoval Orozco
Topic Editors
Keywords
- DevSecOps automation
- holistic security
- AI/ML security
- SDLC security integration
- vulnerability prediction
- deep learning threats
- open-source security
- continuous security validation
Participating Journals
Computers
ElectronicsEntropyInformationMathematicsSensorsAIApplied Sciences