Integrating a Security Plug-in with the OpenUP/Basic Development Process
Barcelona(2008)
摘要
In this paper we present a security plug-in for the OpenUP/Basic development process. Our security plug-in is based on a structured unified process for secure software development, named S3P (Sustainable Software Security Process). This process provides the formalism required to identify the causes of vulnerabilities and the mitigation techniques that prevent these vulnerabilities. We also present the results of an expert evaluation of the security plug-in. The lessons learned from development of the plug-in and the results of the evaluation will be used when adapting S3P to other software development processes.
更多查看译文
关键词
expert evaluation,basic development process,secure software development,sustainable software security process,structured unified process,mitigation technique,security plug-in,software development process,process design,software engineering,programming,software development,software security,development process,computer science,best practices,information science,unified process,computer security,software systems,availability,information security
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要