Abstract
Security is a non-functional requirement difficult-to-handle during software development. However, it appears to be common in software engineering, that security is taken care of during the design- and test-phase only. If security is neglected during the implementation phase, flaws will be introduced. Those may be - if at all - found during testing where the cost-to-fix is higher as if found during the implementation phase. Hence, this research proposal suggests to investigate the extent to which code analysis tools can be used as a step towards continuous security inspection in software engineering projects. By automating security testing in development flaws can be found as soon as they are introduced. This could greatly reduce the cost to fix flaws and help building more secure software.
Index Terms
- Security by Design in Software Engineering
Recommendations
Towards ensuring security by design in cyber-physical systems engineering processes
ICSSP '18: Proceedings of the 2018 International Conference on Software and System ProcessEngineering cyber-physical systems secure by design requires engineers to consider security from the ground up. However, current systems engineering processes are not tailored to cyber-physical systems, or lack an integration with security engineering. ...
DLR secure software engineering: position and vision paper
SEAD '18: Proceedings of the 1st International Workshop on Security Awareness from Design to DeploymentDLR as research organization increasingly faces the task to share its self-developed software with partners or publish openly. Hence, it is very important to harden the softwares to avoid opening attack vectors. Especially since DLR software is ...
Exploring Security Procedures in Secure Software Engineering: A Systematic Mapping Study
EASE '22: Proceedings of the 26th International Conference on Evaluation and Assessment in Software EngineeringVarious new technologies have developed as software security solutions have become more critical. One of the essential parts of software quality is the product's security. Though providing examples covering all phases of secure software development is ...
Comments