? 基于S2S框架的软件可信性统一度量方案
Journal of Computer Science and Technology
Quick Search in JCST
 Advanced Search 
      Home | PrePrint | SiteMap | Contact Us | Help
 
Indexed by   SCIE, EI ...
Bimonthly    Since 1986
Journal of Computer Science and Technology 2018, Vol. 33 Issue (3) :603-620    DOI: 10.1007/s11390-018-1843-2
Regular Paper << Previous Articles | >>
基于S2S框架的软件可信性统一度量方案
Xi Yang1, Member, CCF, ACM, Gul Jabeen1, Ping Luo1, Xiao-Ling Zhu2, Mei-Hua Liu3
1 Key Laboratory for Information System Security, School of Software, Tsinghua University, Beijing 100084, China;
2 School of Computer and Information, Hefei University of Technology, Hefei 230009, China;
3 Department of Foreign Languages and Literatures, Tsinghua University, Beijing 100084, China
A Unified Measurement Solution of Software Trustworthiness Based on Social-to-Software Framework
Xi Yang1, Member, CCF, ACM, Gul Jabeen1, Ping Luo1, Xiao-Ling Zhu2, Mei-Hua Liu3
1 Key Laboratory for Information System Security, School of Software, Tsinghua University, Beijing 100084, China;
2 School of Computer and Information, Hefei University of Technology, Hefei 230009, China;
3 Department of Foreign Languages and Literatures, Tsinghua University, Beijing 100084, China

摘要
参考文献
相关文章
Download: [PDF 759KB]  
摘要 在当前开放、动态且不断变化的互联网环境下,软件是否值得信任日益重要。软件可信性作为一个复杂的高复合概念,已经成为人类不得不面临的重大挑战。此外,如何从本质及根源上认识和定义信任问题,及如何正确、有效度量软件可信性问题,这些对于提高用户选择可信任的软件起着关键性的作用。本文基于人文社会学领域的信任理论,提出了一种可度量的S2S软件可信性框架。并引入一个通用的度量指标“损失量”,旨在将软件可信性三个复合特征的度量结果统一起来。文章给出了软件可信性度量的整体解决方案,包括用于度量能力可信的基于幂函数及时损率的改进J-M模型、度量基本准则可信的基于多短板效应的模糊综合评价改进模型及基于同源代码检测工具的身份可信度量方法。最后,文章给出一个案例来验证方案是可应用的、有效的。
关键词软件可信性   度量方案   损失量   S2S框架   通用指标     
Abstract: As trust becomes increasingly important in software domain, software trustworthiness-as a complex highcomposite concept, has developed into a big challenge people have to face, especially in the current open, dynamic and ever-changing Internet environment. Furthermore, how to recognize and define trust problem from its nature and how to measure software trustworthiness correctly and effectively play a key role in improving users' trust in choosing software. Based on trust theory in the field of humanities and sociology, this paper proposes a measurable S2S (Social-to-Software) software trustworthiness framework, introduces a generalized indicator loss to unify three parts of trustworthiness result, and presents a whole metric solution for software trustworthiness, including the advanced J-M model based on power function and time-loss rate for ability trustworthiness measurement, the fuzzy comprehensive evaluation advanced-model considering effect of multiple short boards for basic standard trustworthiness, and the identity trustworthiness measurement method based on the code homology detecting tools. Finally, it provides a case study to verify that the solution is applicable and effective.
Keywordssoftware trustworthiness   measurement solution   loss   social-to-software (S2S) framework   generalized indicator     
Received 2016-07-28;
本文基金:

This work was supported by the National Natural Science Foundation of China under Grant No. 90818021, the HeGaoJi Program of China under Grant No. 2012zx01039-004-46, and the Information Security Program of National Development and Reform Commission of China under Grant No. 2012-1424.

About author: Xi Yang is a Ph.D. candidate of Tsinghua University, Beijing, and an associate professor of Fuzhou University, Fuzhou. Yang received her Bachelor's degree in information science at University of Shanghai for Science and Technology, Shanghai. She obtained her M.S. degree at Yunnan University, Kunming. She is a member of CCF and ACM. Her research interests include software trustworthiness, information security and software system theory.
引用本文:   
Xi Yang, Gul Jabeen, Ping Luo, Xiao-Ling Zhu, Mei-Hua Liu.基于S2S框架的软件可信性统一度量方案[J]  Journal of Computer Science and Technology , 2018,V33(3): 603-620
Xi Yang, Gul Jabeen, Ping Luo, Xiao-Ling Zhu, Mei-Hua Liu.A Unified Measurement Solution of Software Trustworthiness Based on Social-to-Software Framework[J]  Journal of Computer Science and Technology, 2018,V33(3): 603-620
链接本文:  
http://jcst.ict.ac.cn:8080/jcst/CN/10.1007/s11390-018-1843-2
Copyright 2010 by Journal of Computer Science and Technology