Towards a Comprehensive View of Secure Software Engineering

Author

Essafi, Mehrez ; Labed, Lamia ; Ben Ghezala, Henda

Author_Institution

Univ. of Manouba, Manouba

fYear

2007

fDate

14-20 Oct. 2007

Firstpage

181

Lastpage

186

Abstract

Secure software engineering is a big challenge. This is mainly due to the increasing complexity, openness and extensibility of modern applications, which make a complete analysis of security requirements very hard. The overall problem space is consequently no longer easily comprehensible for developers. This paper is an attempt to explore some of these issues underlying secure software engineering. We propose a secure software engineering framework, which suggests considering secure software engineering along four different, but complementary, views. Each view is capturing a particular relevant aspect of secure software engineering. Our motivations for developing this framework are to: (a) help understand and clarify the secure software engineering domain, (b) guide in classifying and comparing both secure software and securing approaches and (c) help researchers to identify new research axes.

Keywords

security of data; software engineering; secure software engineering; securing approaches; security requirements; Application software; Bridges; Computer security; Information security; Joining processes; Knowledge engineering; Laboratories; National security; Programming; Software engineering;

fLanguage

English

Publisher

ieee

Conference_Titel

Emerging Security Information, Systems, and Technologies, 2007. SecureWare 2007. The International Conference on

Conference_Location

Valencia

Print_ISBN

978-0-7695-2989-9

Type

conf

DOI

10.1109/SECUREWARE.2007.4385331

Filename

4385331