Revision as of 12:40, 16 July 2010 edit ScottMHoward (talk \| contribs) 8,765 edits Adding/Fixing a Reference List ← Previous edit		Revision as of 19:07, 16 July 2010 edit undo Rich Farmbrough (talk \| contribs) Edit filter managers, Autopatrolled, Extended confirmed users, File movers, IP block exemptions, Pending changes reviewers, Rollbackers, Template editors 1,734,064 edits m Add references section and/or general fixes., removed orphan tag using AWB Next edit →
Line 1: ~~{{orphan\|date=February 2010}}~~ The '''Oulu University Secure Programming Group''' ('''OUSPG''') is a research group at the [[University of Oulu]] that studies, evaluates and develops methods of implementing and testing application and system software in order to prevent, discover and eliminate implementation level security vulnerabilities in a pro-active fashion. The focus is on implementation level security issues and software security testing. == History == OUSPG has been active as an independent academic research group in the Computer Engineering Laboratory in the Department of Electrical and Information Engineering in the University of Oulu since summer 1996. OUSPG is most known for its participation in protocol implementation security testing, which they called [[Robustness testing]], using the PROTOS mini-simulation method. <ref>Kaksonen, Rauli. 2001. A Functional Method for Assessing Protocol Implementation Security (Licentiate thesis). Espoo. Technical Research Centre of Finland, VTT Publications 448. 128 p. + app. 15 p. ISBN 951-38-5873-1 (soft back ed.) ISBN 951-38-5874-X (on-line ed.).</ref> The PROTOS was co-operated project with VTT and number of industrial partners. The project developed different approaches of testing implementations of protocols using black-box (i.e. functional) testing methods. The goal was to support pro-active elimination of faults with information security implications, promote awareness in these issues and develop methods to support customer driven evaluation and acceptance testing of implementations. Improving the security robustness of products was attempted through supporting the development process. Line 14 ⟶ 12: The work done in PROTOS is continued in PROTOS-GENOME, which applies automatic structure inference combined with ___domain specific reasoning capabilities to enable automated black-box program robustness testing tools without having prior knowledge of the protocol grammar. This work has resulted in a large number of vulnerabilities being found in archive file and anti-virus products. == Commercial spin-offs == The group has produced two spin-off companies, [[Codenomicon]] continues the work of the PROTOS and [[Clarified Networks]] the work in FRONTIER. ==References== {{~~reflist~~Reflist}} {{Dual\|source=University of Oulu\|sourcepath=http://www.ee.oulu.fi/research/ouspg/\|sourcearticle=Oulu University Secure Programming Group\|date=12:21, 30 July 2009 (UTC)}} Line 26 ⟶ 24: * http://www.ee.oulu.fi/research/ouspg/ == External links == * http://www.securityfocus.com/news/474 * https://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html

Oulu University Secure Programming Group: Difference between revisions