Thumbnail
Access Restriction
Subscribed

Author Medeiros, I. ♦ Neves, N.F. ♦ Correia, M.
Source IEEE Xplore Digital Library
Content type Text
Publisher Institute of Electrical and Electronics Engineers, Inc. (IEEE)
File Format PDF
Copyright Year ©2013
Language English
Subject Domain (in DDC) Technology ♦ Engineering & allied operations ♦ Applied physics
Subject Keyword Temperature measurement ♦ Databases ♦ Wireless application protocol ♦ Energy measurement ♦ Software ♦ Browsers ♦ Monitoring
Abstract Industry is using power meters to monitor the consumption of energy and achieving cost savings. This monitoring often involves energy metering software with a web interface. However, web applications often have vulnerabilities that can be exploited by cyber-attacks. We present an approach and a tool to solve this problem by analyzing the application source code and automatically inserting fixes to remove the discovered vulnerabilities. We demonstrate the use of the tool with two open source energy metering applications in which it found and corrected 17 vulnerabilities. By looking in more detail into some of these vulnerabilities, we argue that they are very serious, leading to the following impacts: violation of user privacy, counter the benefits of energy metering, and serve as entering points for attacks on other user software.
Description Author affiliation: INESC-ID, Univ. of Lisboa, Lisbon, Portugal (Correia, M.) || Fac. of Sci., Univ. of Lisboa, Lisbon, Portugal (Medeiros, I.; Neves, N.F.)
ISBN 9781479907526
Educational Role Student ♦ Teacher
Age Range above 22 year
Educational Use Research ♦ Reading
Education Level UG and PG
Learning Resource Type Article
Publisher Date 2013-07-29
Publisher Place Germany
Rights Holder Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Size (in Bytes) 242.79 kB
Page Count 6
Starting Page 701
Ending Page 706


Source: IEEE Xplore Digital Library