On the Security Cost of Using a Free and Open Source Component in a Proprietary Product

The work presented in this paper is motivated by the need to estimate the security effort of consuming Free and Open Source Software (FOSS) components within a proprietary software supply chain of a large European software vendor. To this extent we have identified three different cost models: centralized (the company checks each component and propagates changes to the different product groups), distributed (each product group is in charge of evaluating and fixing its consumed FOSS components), and hybrid (only the least used components are checked individually by each development team). We investigated publicly available factors (\eg, development activity such as commits, code size, or fraction of code size in different programming languages) to identify which one has the major impact on the security effort of using a FOSS component in a larger software product

Dietary Saccharomyces cerevisiae boulardii CNCM I-1079 positively affects performance and intestinal ecosystem in broilers during a campylobacter jejuni infection

In poultry production, probiotics have shown promise to limit campylobacteriosis at the farm level, the most commonly reported zoonosis in Europe. The aim of this trial was to evaluate the effects of Saccharomyces supplementation in Campylobacter jejuni challenged chickens on performance and intestinal ecosystem. A total of 156 day old male Ross 308 chicks were assigned to a basal control diet (C) or to a Saccharomyces cerevisiae boulardii CNCM I-1079 supplemented diet (S). All the birds were orally challenged with C. jejuni on day (d) 21. Live weight and growth performance were evaluated on days 1, 21, 28 and 40. The histology of intestinal mucosa was analyzed and the gut microbiota composition was assessed by 16S rRNA. Performance throughout the trial as well as villi length and crypt depth were positively influenced by yeast supplementation. A higher abundance of operational taxonomic units (OTUs) annotated as Lactobacillus reuteri and Faecalibacterium prausnitzii and a lower abundance of Campylobacter in fecal samples from S compared to the C group were reported. Supplementation with Saccharomyces cerevisiae boulardii can effectively modulate the intestinal ecosystem, leading to a higher abundance of beneficial microorganisms and modifying the intestinal mucosa architecture, with a subsequent improvement of the broilers' growth performance

Identifying Implicit Vulnerabilities through Personas as Goal Models

When used in requirements processes and tools, personas have the potential to identify vulnerabilities resulting from misalignment between user expectations and system goals. Typically, however, this potential is unfulfilled as personas and system goals are captured with different mindsets, by different teams, and for different purposes. If personas are visualised as goal models, it may be easier for stakeholders to see implications of their goals being satisfied or denied, and designers to incorporate the creation and analysis of such models into the broader RE tool-chain. This paper outlines a tool-supported approach for finding implicit vulnerabilities from user and system goals by reframing personas as social goal models. We illustrate this approach with a case study where previously hidden vulnerabilities based on human behaviour were identified

The future of Cybersecurity in Italy: Strategic focus area

This volume has been created as a continuation of the previous one, with the aim of outlining a set of focus areas and actions that the Italian Nation research community considers essential. The book touches many aspects of cyber security, ranging from the definition of the infrastructure and controls needed to organize cyberdefence to the actions and technologies to be developed to be better protected, from the identification of the main technologies to be defended to the proposal of a set of horizontal actions for training, awareness raising, and risk management

Dynamic factor model with infinite-dimensional factor space:forecasting

The paper compares the pseudo real-time forecasting performance of three Dynamic Factor Models: (i) The standard principal-component model introduced by Stock and Watson in 2002, (ii) The model based on generalized principal components, introduced by Forni, Hallin, Lippi and Reichlin in 2005, (iii) The model recently proposed by Forni, Hallin, Lippi and Zaffaroni in 2015. We employ a large monthly dataset of macroeconomic and financial time series for the U.S. economy, which includes the Great Moderation, the Great Recession and the subsequent recovery (an update of the so-called Stock and Watson dataset). Using a rolling window for estimation and prediction, we find that (iii) significantly outperforms (i) and (ii) in the Great Moderation period for both Industrial Production and Inflation, that (iii) is also the best method for Inflation over the full sample. However, (iii) is outperformed by (ii) and (i) over the full sample for Industrial Production