DAUIN - GR-16 - SOFTWARE ENGINEERING GROUP - SOFTENG
Code Quality and Software Library Security Analysis in the IoT Context: A Static Analysis Approach
Research Groups DAUIN - GR-16 - SOFTWARE ENGINEERING GROUP - SOFTENG
Thesis type EXPERIMENTAL
Description The Internet of Things (IoT) is transforming our world, making our homes, cities, and workplaces increasingly interconnected. However, with this growing pervasiveness, new challenges emerge regarding the security and code quality of IoT devices and systems.
This thesis proposal falls within the scope of the PRIN (Projects of Relevant National Interest) project "AsCoT-SCE", recently accepted by the Ministry of University and Research. The project focuses on the development of methodologies and formalisms for the definition and representation of the functionality of APIs in IoT environments, and how these can be validated and certified.
The thesis will aim to analyze the quality of the code and the security of software libraries used in IoT contexts. Students will work on the design and implementation of advanced static analysis techniques for controlling software functions and third-party libraries, with a particular focus on the recognition and reporting of potential security risks.
The thesis work will help mitigate the risks associated with incorporating potentially insecure software components into IoT systems. Students will have the opportunity to deal with the complexity of software code and the potential risks associated with library security. This thesis will address the delicate balance between code efficiency and security, with a particular focus on vulnerability prevention.
The thesis will offer a unique opportunity to gain a deep understanding of the security challenges in the IoT world, as well as the strategies to manage these issues through code quality analysis and software library security assessment. Moreover, students will have the opportunity to work in an advanced research context.
Deadline 19/06/2024 PROPONI LA TUA CANDIDATURA