ISSRE 2018 Best Research Paper Award
Abstract: Microservices are gaining popularity as an architectural paradigm for service-oriented applications especially suited for highly dynamic contexts requiring loosely-coupled independent services frequent software releases decentralized governance and data management. Because of the high flexibility and evolvability characterizing microservice architectures (MSAs) it is difficult to estimate their reliability at design time as it changes continuously due to the servicesâ€™ upgrades and/or to the way applications are used by customers. This paper presents a testing method for on-demand reliability estimate of microservice applications in their operational phase. The method allows to faithfully assess upon request the reliability of a MSA-based application under a scarce testing budget at any time when it is in operation and exploiting field data about microservice usage and failing/successful demands. A new in-vivo testing algorithm is developed based on an adaptive web sampling strategy named Microservice Adaptive Reliability Testing (MART). The method is evaluated by simulation as well as by experimentation on an example application based on the Netflix Open Source Software MSA with encouraging results in terms of estimation accuracy and especially efficiency.
QRS 2018 Best Research Paper Award
Abstract: A relevant objective of software reliability assessment is to get unbiased estimates with an acceptable trade-off between the number of tests required and the variance of the estimate. A low variance is desirable to increase the confidence in the estimate, but too many tests may be required by conventional reliability assessment testing techniques based solely on the operational profile. This article presents probabilistic sampling-based testing, a new technique using unequal probability sampling to exploit auxiliary information about the software under test so as to assess reliability unbiasedly and efficiently. The technique expedites the assessment process assuming the availability of some prior belief about input regions failure proneness. The evaluation by simulation and experimentally shows promising results in terms of estimate accuracy and efficiency.
New thesis proposals
2016 GUFPI-ISMA Student Award
ISSRE 2017 Best Research Paper Award
Abstract: Android has become the most popular mobile OS, as it enables device manufacturers to introduce customizations to compete with value-added services. However, customizations make the OS less dependable and secure, since they can introduce software flaws. Such flaws can be found by using fuzzing, a popular testing technique among security researchers.
This paper presents Chizpurfle, a novel "gray-box" fuzzing tool for vendor-specific Android services. Testing these services is challenging for existing tools, since vendors do not provide source code and the services cannot be run on a device emulator. Chizpurfle has been designed to run on an unmodified Android OS on an actual device. The tool automatically discovers, fuzzes, and profiles proprietary services. This work evaluates the applicability and performance of Chizpurfle on the Samsung Galaxy S6 Edge, and discusses software bugs found in privileged vendor services.
Abstract: Testing software efficiently for reliability improvement and/or assessment is an as much old and studied topic as a still open and tricky challenge. It is related to the ability of appropriately designing testing strategies to get the best result (in terms of delivered reliability or of accurate reliability estimate) at low cost.
Conventional techniques are based on the operational profile (a.k.a. operational testing) and on software reliability growth models (SRGMs). Although these are pillars of software reliability engineering, they suffer from serious limitations related to the assumptions they rely on, but also related to their inherent inability to cope with ultra-reliable systems.
The seminar surveys some of the fundamental issues of reliability testing. It then presents practical policies to allocate testing effort optimally from the reliability perspective, and to design new sampling-based strategies for efficient test cases selection.
The seminar will take place at the Centre for Software Reliability (CSR) of the City University of London (Room AG01) on July 13th 2017, from 13:00 to 14:00.
CSR announcement here
held by Prof. Andrew S. Tanenbaum, Vrije Universiteit, Amsterdam.
The seminar will take place at the Dipartimento di Ingegneria Elettrica e delle Tecnologie dell’Informazione (Ed. 3/A DIETI, Room SOFTEL, Floor I) on Wednesday November 30th 2016, from 12.30 to 14.00.
Abstract and further details here
held by Prof. Peter Popov, City University London, during his visiting period at DESSERT lab (from 25/10/2016 to 25/11/2016).
The seminar will take place at the Dipartimento di Ingegneria Elettrica e delle Tecnologie dell’Informazione (DIETI, Meeting room, 4th floor) on Thursday November 3rd, 2016, starting from 10:00 am.
Abstract and further details here
13th European Workshop on Performance Engineering (EPEW 2016)
Call for Contributions
Authors are invited to submit technical papers describing original research. Accepted papers will be published in the conference proceedings, in the Lecture Notes in Computer Science (LNCS) series, by Springer-Verlag.
Papers must not exceed 15 pages in camera-ready form, including figures and references, in Springer LNCS style. All submissions must be in English. Submissions will be handled by EasyChair:
June 1st, 2016: Abstract Submission
June 8th, 2016: Paper Submission
July 15th, 2016: Authors Notification
July 31st, 2016: Camera ready
July 31st, 2016: Registration deadline
Agapios Platis, University of the Aegean
Dieter Fiems, Ghent University
Marco Paolieri, University of Florence
The 3rd IEEE International Workshop on Reliability and Security Data Analysis (RSDA 2016)
Special Issue of the IEEE Transactions on Dependable and Secure Computing (TDSC) entitled Data-Driven Dependability and
Paper submission deadline: 16 Nov 2016;
All reviews back and first round notification: 13 March 2017;
Revised submission deadline: 15 May 2017;
All reviews back and final notification: 24 July 2017.
Domenico Cotroneo, Federico II University of Naples, ITALY (email@example.com)
Karthik Pattabiraman, University of British Columbia, CANADA (firstname.lastname@example.org)
Antonio Pecchia, Federico II University of Naples, ITALY (email@example.com)
Call for Papers
Journal Home Page
8th International Conference on Security of Information and Networks (SIN 2015)
In Technical Cooperation with ACM Special Interest Group on Security, Audit and Control (SIGSAC).
IEEE Transactions on Services Computing (TSC)
Service-based cloud systems are being used in business-, mission- and safety-critical scenarios to achieve operational goals. Their characteristics of
complexity, heterogeneity, and fast-changing dynamics bring difficult challenges to the research and industry communities. Among them, security and dependability (Sec. & Dep.) have been widely identified as increasingly relevant issues. Crucial aspects to be addressed include: metrics, techniques and tools
for assessing Sec. & Dep.; modeling and evaluation of the impact of accidental and malicious threats; failure and recovery analysis; Sec. & Dep. testing, testbeds, benchmarks; infrastructure interdependencies, interoperability in presence of Sec. & Dep. guarantees.
The 3rd edition of the IEEE International Workshop on Software Certification (WoSoCer2013)
The WoSoCer workshop series brings together researchers, practitioners, companies, domain experts, and regulatory authorities interested in investigating and discussing new strategies, methods, processes, formalisms and techniques for the development and the assessment of safety and security-critical software. Researchers and practitioners from both academia and industry, as well as people from certification authorities, that work on different aspects of software certification, are invited to participate; the workshop aims to foster interactions among these players, and to propose solutions for improving the development of critical systems, as well as the certification process as a whole.
The 2013 edition of WoSoCer is co-located with the 24th IEEE International Symposium on Software Reliability Engineering (ISSRE), and it will take place in Pasadena, CA, USA, in November 4-7.
The 2nd Workshop on Dependability and Certification
The scope of this workshop is to establish a discussion forum among academic and industrial specialists in the development and assessment of safety critical systems. It features talks covering challenges and market trends of dependable systems industry, and highlighting findings of the recent research in the field. The workshop aims to drive an active discussion on the addressed topics and to foster new collaborations among practitioners working in the area of fault injection, verification, security and certification of critical systems.
16th-20th January 2011 - Winter School on Hot Topics in Secure and Dependable Computing for Critical Infrastructure (SDCI 2012), Cortina Jan 16th-20th 2012 - More details
Full paper submission: June 8th 2011
Workshop website -> RACOS 2011
Full paper submission: 20 Sept. 2010
Avviso di Seminario
Lunedì 21 Giugno 2010 alle ore 11:30 presso la sala riunioni del Dipartimento di Informatica e Sistemistica in via Claudio 21 - Napoli, il Prof. Rivalino Matias Jr. della Federal University of Uberlândia, Brasile, terrà il seguente seminario nell'ambito del Corso di Dottorato di Ricerca in Ingegneria Informatica e Automatica – Scuola di Dottorato in Ingegneria dell'Informazione: The fundamental of Software Aging Theory. Verranno discussi gli aspetti teorici e le implicazioni pratiche del fenomeno del software agng, presentati casi di studio reali e vari progetti in corso relativi allo studio sperimentale di questo fenomeno.
Progetto COSMIC-FARM (www.cosmiclab.it),
Mercoledì 20 Giugno alle ore 10 si terrà presso la sede di SELEX sistemi integrati di Roma, un seminario tenuto dal Prof. Philippe Kruchten sulle Architetture Software dal titolo:“Software Architecture: Perspectives on a Maturing Discipline”. dettagli
Martedì 19 giugno Worksop Selex nell'ambito delle attività del progetto Iniziativa Software e COSMIC (dettagli)
Mercoledì 9 Maggio, introdotta nuova sezione courses.
Giovedì 10 Maggio, inizio del corso "Mobile Systems" per l'European Master on Critical Networked Systems. dettagli
Martedì 22 Maggio, inizio del corso "Tecniche per il trattamento e la comprensione automatica del linguaggio naturale" per Il Master per il trattamento semantico dei documenti. dettagli
Seminario del prof. Peter Croll della Queensland University of Technology, Brisbane, Australia su "Privacy with Critical Government ICT Systems: Challenges and Technologies". 2 Maggio 2007, ore 11:30, presso la sala riunioni del DIS (Univ. di Napoli Fedrico II), via Claudio 21, Napoli.
bando per n. 7 collaborazioni a progetto
da reclutare, per la durata di mesi 12, Progetto "Mo.de.m." per l'attuazione di percorsi
di formazione a distanza, nell'ambito della Misura 3.22 del POR Campania 2000-2006
October 27, 2006 - Meeting Finale Progetto FIRB WEB-MINDS .
October 9, 2006 - Inaugurazione Laboratorio CINI-ITEM "C. Savy"