Hedayatpour, Saman and Kama, Mohd. Nazri and Chuprat, Suriayati (2014) Analyzing security aspects during software design phase using attack-based analysis model. International Journal of Software Engineering and its Applications, 8 (3). pp. 143-156. ISSN 1738-9984
Full text not available from this repository.
Official URL: http://dx.doi.org/10.14257/ijseia.2014.8.3.14
Abstract
In recent years, concentration on software design phase for evaluating security into the developing software increased where the cost of fixing errors in design level is several times less than the cost of fixing errors in the coding or implementation levels. One of the main challenges in facing current models that evaluate security into the software design phase refers to the need for existence of security experts to analyze the system from a security angle of view while this additional task makes the project more costly and lengthy. In this work we address this problem by defining a method for using known attacks' and threats' properties and behaviors instead of using a drawn misuse case for assessing potential risks in the developing software. The main contribution of this work refers to defining a model for analyzing security aspects into the software design phase while additional cost and time are not required for system analyzing by security experts
Item Type: | Article |
---|---|
Uncontrolled Keywords: | secure software, security analysis, software design, software threats |
Subjects: | Q Science > QA Mathematics > QA75 Electronic computers. Computer science |
Divisions: | Advanced Informatics School |
ID Code: | 51860 |
Deposited By: | Siti Nor Hashidah Zakaria |
Deposited On: | 01 Feb 2016 03:53 |
Last Modified: | 31 Oct 2018 12:39 |
Repository Staff Only: item control page