This area addresses three very closely related research questions that cannot be treated separately: In Secure Coding, we research methods and solutions for developing software that is inherently more secure. In Code Analysis, we continue our extremely successful research in the area of malicious code detection. One result of this research, Anubis, is already widely used by security organizations all over the world, such as the Australian and Japanese computer emergency response teams (CERTs). In another project, Pathfinder, we develop next generation malicious code detection methods. Open research issues include the improved stealthiness of the platform, an improved coverage of the execution path analysis, and research into botnet economics. One interesting related research issue is data leakage prevention, which will include elements of areas Data Security and Privacy, Secure Coding and Code Analysis, and Hardware and Network Security. Digital Forensics encompasses aspects of secure coding and code analysis, such as time-line reconstruction and the analysis of concurrency control and recovery (CCR) libraries in database forensics. Moreover, digital forensics is an emerging field in digital preservation.
