Lotfi ben-Othmane, What Roles Can Empirical Research Play to Advance Software Security Knowledge?

Software is an essential component to the operation of business information systems, cyber physical systems, and various personal devices. Despite increased awareness and concern about software security threats, current state of the art of software engineering practices are inadequate: new categories of security weaknesses are commonly reported. Challenges that hinder development of secure software start with difficulty of identifying threats and estimating risks. Practices such as incremental software development also pose challenges to software security. This talk discusses through a set of examples how empirical research can help to advance the state of the art of secure software engineering. About the speaker: Lotfi ben Othmane is a Lecturer (aka Teaching Assistant Professor) at Iowa State University, USA. He was the Head of the Department Secure Software Engineering at Fraunhofer Institute for Secure Information Technology, Germany. Dr. ben Othmane has extensive experience in industry and academia in Tunisia, Canada, USA, The Netherlands, and Germany. His research interests include the use of empirical research in secure software development, development of secure systems using an agile approach, and cyber-resilience in connected vehicles. He has about 40 peer-reviewed publications. Dr. ben Othmane received his Ph.D. degree from Western Michigan University, USA, in 2010; M.S. degree from University of Sherbrooke, Canada, in 2000; and B.S degree from University of Sfax, Tunisia, in 1995.