DocumentCode :
1924143
Title :
Towards Evaluation of Security Assurance during the Software Development Lifecycle
Author :
Uusitalo, Ilkka ; Karppinen, Kaarina ; Ahonen, Pasi ; Pentikainen, H.
Author_Institution :
VTT Tech. Res. Centre of Finland, Oulu
fYear :
2009
fDate :
16-19 March 2009
Firstpage :
817
Lastpage :
822
Abstract :
It is difficult to state whether a certain software product is developed securely enough. An evaluation methodology that takes the security assurance methods used during the software development lifecycle into account is one step closer to a solution to this problem. In this paper we discuss our first heuristics for security assurance evaluation that would give guidelines on the trustworthiness of the software development lifecycle. The input for evaluations include the context, expert opinions, outcome of the methods and reputation. Our evaluation heuristics are a step towards being able to deduce about the level of assurance for a software process, compared to a certain context-specific baseline.
Keywords :
security of data; software performance evaluation; security assurance; software development lifecycle; Application software; Availability; Guidelines; Large-scale systems; Programming; Reconfigurable logic; Security; Software engineering; Software systems; Software tools; Software security assurance; evaluation; lifecycle; trust;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Availability, Reliability and Security, 2009. ARES '09. International Conference on
Conference_Location :
Fukuoka
Print_ISBN :
978-1-4244-3572-2
Electronic_ISBN :
978-0-7695-3564-7
Type :
conf
DOI :
10.1109/ARES.2009.124
Filename :
5066570
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=1924143
بازگشت