Islam, Shareeful and Falcarin, Paolo (2011) ‘Measuring Security Requirements for Software Security’, IEEE 10th International Conference on Cybernetic Intelligent Systems (CIS). London, 1-2 Sep 2011.
7.pdf - Accepted Version
Available under License Creative Commons Attribution No Derivatives.
Download (188Kb) | Preview
For the last decade’s software security has gained attention by industries, experts and all other communities. Secure software is about mitigating risks from assets to achieve business goals. Security is highly depending on the context where software is deployed. But measuring software security even within a specific context is still not mature. This is because properties and metrics for measuring security are not properly defined and methods are lacking to provide a complete picture for measuring software security. Here we identify security requirements through asset based risk management process to describe soft ware security goal. Then based on the Goal-Question-Metric approach the identified security requirements are evaluated for measuring software security.
|Item Type:||Conference or Event Item (Paper)|
|Additional Information:||Citation: Islam, S.and Falcarin, P. (2011), 'Measuring Security Requirements for Software Security', Cybernetic Intelligent Systems (CIS), IEEE 10th International Conference on, London: 1-2 Sep 2011, pp70-75..|
|Divisions:||Schools > Architecture Computing and Engineering, School of|
|Depositing User:||Mr Stephen Grace|
|Date Deposited:||04 May 2012 15:52|
|Last Modified:||22 Feb 2013 13:12|
Actions (login required)