DocumentCode :
638291
Title :
A Practical Model for Rating Software Security
Author :
Haiyun Xu ; Heijmans, Jeroen ; Visser, Joost
Author_Institution :
Software Improvement Group, Amsterdam, Netherlands
fYear :
2013
fDate :
18-20 June 2013
Firstpage :
231
Lastpage :
232
Abstract :
This paper introduces a model for rating software security based on the ISO 25010 standard for software product quality. To rate software security, the authors define eleven system properties, which reflect how a typical software product addresses the confidentiality, integrity, non-repudiation, accountability and authenticity. The paper presents these properties, how to rate them, and how to aggregate the ratings.
Keywords :
ISO standards; security of data; software quality; software standards; ISO 25010 standard; rating software security; security quality model; software product quality; Authentication; Data models; ISO standards; Product design; Quality assessment; Software; Software security; security model; software product quality;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Software Security and Reliability-Companion (SERE-C), 2013 IEEE 7th International Conference on
Conference_Location :
Gaithersburg, MD
Print_ISBN :
978-1-4799-2924-5
Type :
conf
DOI :
10.1109/SERE-C.2013.11
Filename :
6616351
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=638291
بازگشت