Abstract :
Some quality models, such as IS0 9126, fail to include computer security. The author explains why security is an essential but difficult facet of quality. As a software professional, you can take several actions to improve the security of your code: (1) learn the techniques of security; (2) when incorporating security features into a system, think like the attacker, i.e. consider each point as a potential weakest link; and, finally, (3) consult an expert
Keywords :
ISO standards; security of data; software quality; software standards; IS0 9126; computer security; expert consultation; information security; program code security; quality models; security techniques learning; software professionals; weakest link; Computer security; Computerized monitoring; Condition monitoring; Cryptography; Information security; Permission; Programming profession; Protection; Sorting; Writing;
