Is there such a thing anymore as a software system that doesn't need to be secure? Almost every softwarecontrolled system faces threats from potential adversaries, from Internet-aware client applications running on PCs, to complex telecommunications and power systems accessible over the Internet, to commodity software with copy protection mechanisms. Software engineers must be cognizant of these threats and engineer systems with credible defenses, while still delivering value to customers. In this paper, we present our perspectives on the research issues that arise in the interactions between software engineering and security. Keywords Security, Software Engineering, Copy protection, Watermarking. 1 BACKGROUND Just about every software system deployed today must defend itself from malicious adversaries. Modern society is critically dependent on a wide range of software systems. Threats from a software security breach could range from the very mild (such as the defeat of copy prot...
Premkumar T. Devanbu, Stuart G. Stubblebine