Off-campus Eastern Washington University users: To download EWU Only theses, please use the following link to log into our proxy server with your EWU NetID and password.

Non-EWU users: Please talk to your local librarian about requesting this thesis through Interlibrary loan.

Date of Award

Spring 2003

Rights

Access perpetually restricted to EWU users with an active EWU NetID

Document Type

Thesis: EWU Only

Degree Name

Master of Science (MS) in Computer Science

Department

Computer Science

Abstract

Java is a popular programming language designed by Sun Microsystems and used for desktop applications, server-side programming, mobile phones and pocket personal computers. Java was designed as a secure language and the developers considered many pitfalls common to C and C++ applications. However, some security errors can still persist due to developers' neglect or complexity of applications. The prototypic solution, presented in this paper, is targeted towards elimination of such errors. Code security and Java code security specifically was not a critical issue a decade ago. However, the development of the Internet-based applications and network architectures, which now employ millions of stand-alone computers that perhaps were never intended to be connected, poses new threats for software security. This paper will attempt to describe the framework for a fuzzy logic code analysis tool that determines the relative security of the application while it is being developed. The tool, if built, will aid developers in their design and implementation processes and will allow for stronger and more secure code. The assumption of this framework relies on Java source code being ready to go into production. When a developer can fully attest that the necessary functionality had been added to the code, it is then time to run a security analysis to determine the most probable security errors with the help of this tool

Download
Off-Campus Download

Share

COinS