A Kohonen SOM architecture for intrusion detection on in-vehicle communication networks

The diffusion of connected devices in modern vehicles involves a lack in security of the in-vehicle communication networks such as the controller area network (CAN) bus. The CAN bus protocol does not provide security systems to counter cyber and physical attacks. Thus, an intrusion-detection system to identify attacks and anomalies on the CAN bus is desirable. In the present work, we propose a distance-based intrusion-detection network aimed at identifying attack messages injected on a CAN bus using a Kohonen self-organizing map (SOM) network. It is a power classifier that can be trained both as supervised and unsupervised learning. SOM found broad application in security issues, but was never performed on in-vehicle communication networks. We performed two approaches, first using a supervised X-Y fused Kohonen network (XYF) and then combining the XYF network with a K-means clustering algorithm (XYF-K) in order to improve the efficiency of the network. The models were tested on an open source dataset concerning data messages sent on a CAN bus 2.0B and containing large traffic volume with a low number of features and more than 2000 different attack types, sent totally at random. Despite the complex structure of the CAN bus dataset, the proposed architectures showed a high performance in the accuracy of the detection of attack messages

An Evaluation of Software Measurement Processes in Pakistani Software Industry

Implementing a successful measurement process is a challenging task. Most measurement studies report measurement models, experiences, and lessons learned based on pilot projects or case studies in a limited scope to overcome specific challenges. This paper identifies 14 basic measurement practices and proposes a model of 18 success factors for implementing measurement processes with respect to the identified measurement theories in our systematic literature review (SLR), i.e., A systematic literature review on software measurement programs, by Tahir et al. , 2016. In addition, a survey is conducted to evaluate the state of measurement practices and to validate the proposed model based on the feedback from 200 software professionals working in Pakistani software industry. The state of measurement practices in the industry is mostly not according to the identified measurement theories in the SLR. For instance, more than 50 measurement models reported in the literature but only 10% software organizations follow any measurement model. 75% of organizations do not follow any measurement standard. 80% software organizations do not use any measurement tool. The proposed model is validated by applying structural equation modeling on the survey data. Furthermore, among 18 success factors, it is statistically significant that Pakistani software professionals strongly believe in necessity of three factors for successful implementation of a measurement process, i.e., synchronization between measurement process and software process improvement, use of measurement standards, and use of measurement models. In addition, they also believe that a successful measurement process will improve prediction, monitoring and management of software projects, and support in achievement of individual and organization-wide objectives. Software organizations might consider this paper in planning and improving their measurement processes

Multiview Framework for goal oriented measurement plan design

The need for systematic evaluation of process quality and of the resulting products has always been an issue of primary importance within the software engineering community. In the past few years many factors have determined changes in the software process scenario that inevitably impact on software quality. To this end, goal oriented measurement models, such as Goal Question Metrics (GQM), have become essential for assessing desired quality and for enacting software process improvement (SPI). Although the importance of measurement is a shared issue, many software organizations encounter difficulties and strive to define and adopt measurement plans successfully. Causes are most likely attributable to critical issues such as measurement plan dimensions, complexity, dependencies among goals. Often the industrial projects are characterized by GQM plans with numerous quality factors and, consequently, numerous goals. This makes both measurement and interpretation procedures quite onerous. Furthermore, managing a measurement plan turns out to be quite costly and requires numerous investments. To this end, this work proposes a GQM-based approach (Multiview Framework) that provides support in designing a structured measurement plan in order to overcome the common problems mentioned previously, and manage large industrial measurement plans. The proposed approach has been validated through a post mortem analysis, consisting in a legacy data study, carried out on industrial project dat

Multiview Framework for goal oriented measurement plan design

Abstract. The need for systematic evaluation of process quality and of the resulting products has always been an issue of primary importance within the software engineering community. In the past few years many factors have determined changes in the software process scenario that inevitably impact on software quality. To this end, goal oriented measurement models, such as Goal Question Metrics (GQM), have become essential for assessing desired quality and for enacting software process improvement (SPI). Although the importance of measurement is a shared issue, many software organizations encounter difficulties and strive to define and adopt measurement plans successfully. Causes are most likely attributable to critical issues such as measurement plan dimensions, complexity, dependencies among goals. Often the industrial projects are characterized by GQM plans with numerous quality factors and, consequently, numerous goals. This makes both measurement and interpretation procedures quite onerous. Furthermore, managing a measurement plan turns out to be quite costly and requires numerous investments. To this end, this work proposes a GQM-based approach (Multiview Framework) that provides support in designing a structured measurement plan in order to overcome the common problems mentioned previously, and manage large industrial measurement plans. The proposed approach has been validated through a post mortem analysis, consisting in a legacy data study, carried out on industrial project data.

Monitoring oriented agile based web applications development methodology for small software firms in Jordan

Small software firms (SSF) is vital to the software industry in many countries as they provide substantial growth to their economy. In Jordan, most software companies that are involved with developing Web applications are small firms. However, the extent of applying best Web applications development and management practices in these firms is limited. Besides, the existing software development methods are still lack of monitoring the quality of process and product. As a result, the Web application being developed exceeds deadlines and budget, and not meeting user requirements. Therefore, this research aims to construct a new methodology referred as Monitoring Oriented Agile Based Web Applications Development (MOGWD) Methodology for SSF. This study introduced an Extended Agile Method by extending the Scrum method with Extreme Programming (XP) elements. The Extended Agile Method was improved by combining common steps of Web design method and incorporating the Goal Oriented Monitoring Method (GOMM). The GOMM has defined twenty goals. Each goal has one or more questions. The questions are answered through the defined metrics. There are 101 qualitative metrics for monitoring the process quality, and 37 quantitative metrics for monitoring the process and product quality. Moreover, the proposed MOGWD methodology defines four phases: Plan, Do, Check and Act. The MOGWD methodology was evaluated using expert review and case study. The evaluation results show that the MOGWD methodology has gained SSF practitioners’ satisfaction and found to be practical for the real environment. This study contributes to the field of Agile based development and Web applications measurement. It also provides SSF practitioners a development methodology that monitors the quality of the process and product for Web development