Title :
Rules of Thumb for Developing Secure Software: Analyzing and Consolidating Two Proposed Sets of Rules
Author_Institution :
Fraunhofer Inst. for Exp. Software Eng., Kaiserslautern
Abstract :
This paper presents guidelines to develop secure applications in the form of "Do\´s and Don\´ts " applying mostly to the software design level, but also to the implementation level. It builds on two collections of similar rules published in two seminal books in the area of secure software development, criticizes and improves those earlier rules and extends them by several new ones. The paper does not cover how to apply such rules in general. The main direction of improvement is making the rules more constructive, less ambiguous, and removing aspects not related to security.
Keywords :
security of data; software reliability; secure software development; software design level; Availability; Books; Computer errors; Computer security; Concrete; Information security; Programming; Software engineering; Software performance; Thumb; design principles; design rules; security; software design;
Conference_Titel :
Availability, Reliability and Security, 2008. ARES 08. Third International Conference on
Conference_Location :
Barcelona
Print_ISBN :
978-0-7695-3102-1
DOI :
10.1109/ARES.2008.142
