论文信息 - Cutting Edge Practices for Secure Software Engineering

Cutting Edge Practices for Secure Software Engineering

Security has become a high priority issue in software engineering. But, it is generally given a side thought. Security features are implemented after engineering the whole software. This paper discusses that security should be implemented right from the inception of software and planned for each phase of SDLC in software Engineering.The paper also suggests recommendations for implementing security at each phase of lifecycle of software. If each phase of the software engineering includes the appropriate security analysis, defenses and countermeasures, it will definitely result in a more robust and reliable software.

Kanchan Hans

[1] Nancy R. Mead,et al. Security quality requirements engineering (SQUARE) methodology , 2005, SESS@ICSE.

[2] Gary McGraw,et al. Point/Counterpoint: Security Band-Aids: More Cost-Effective than "Secure" Coding / Building Secure Software: Better than Protecting Bad Software , 2002, IEEE Softw..

[3] Nancy R. Mead,et al. Software Security Engineering: A Guide for Project Managers , 2004 .

[4] G. McGraw,et al. Testing for security during development: why we should scrap penetrate-and-patch , 1997, Proceedings of COMPASS '97: 12th Annual Conference on Computer Assurance.

[5] Gary McGraw,et al. Software Security: Building Security In , 2006, 2006 17th International Symposium on Software Reliability Engineering.

[6] Mohammad Zulkernine,et al. A Survey on Requirements and Design Methods for Secure Software Development , 2009 .