The Place and Role of Security Patterns in Software Development Process
Mazhelis, O., & Naumenko, A. (2006). The Place and Role of Security Patterns in Software Development Process. In E. Fernandez-Medina, & M. I. Yague (Eds.), Security in information systems : proceedings of the 4th International Workshop on Security in Information Systems, WOSIS 2006 (pp. 91-100). Insticc press. https://doi.org/10.5220/0002478700910100
© 2006 SciTePress
Security is one of the key quality attributes for many contemporary software products. Designing, developing, and maintaining such software necessitates the use of a secure-software development process which specifies how achieving this quality goal can be supported throughout the development life-cycle. In addition to satisfying the explicitly-stated functional security requirements, such process is aimed at minimising the number of vulnerabilities in the design and the implementation of the software. The secure software development is a challenging task spanning various stages of the development process. This inherent difficulty may be to some extent alleviated by the use of the so-called security patterns, which encapsulate knowledge about successful solutions to recurring security problems. The paper provides an overview of the state of the art in the secure software development processes and describes the role and place of security patterns in these processes. The current usage of patterns in the secure software development is analysed, taking into account both the role of patterns in the development processes, and the limitations of the security patterns available. ...
Parent publication ISBN978-972-8865-52-8
ConferenceInternational workshop on security in information systems
Is part of publicationSecurity in information systems : proceedings of the 4th International Workshop on Security in Information Systems, WOSIS 2006
Publication in research information system
MetadataShow full item record
Showing items with similar title or keywords.
Stirbu, Vlad; Mikkonen, Tommi (Springer International Publishing, 2021)Assuring traceability from requirements to implementation is a key element when developing safety critical software systems. Traditionally, this traceability is ensured by a waterfall-like process, where phases follow each ...
Security principles for package management as part of software development lifecycle and processes Muranen, Markus (2019)Use of third-party software packages has become increasingly popular in software projects. Reusing source code via packages can help developers focus on writing the parts of the software that are unique to their application ...
Secure software design and development : towards practical models for implementing information security into the requirements engineering process Väyrynen, Aino-Maria; Räisänen, Elina (2020)Vaatimusmäärittelyprosessin tavoitteena on kerätä ja jalostaa ratkaisuiksi tuotteen tai palvelun sidosryhmiksi tunnistettujen osapuolten ajatuksia ja tarpeita. Näiden ratkaisujen avulla poistetaan asiakkaan liiketoiminnassa ...
Ahlgren, Riikka (University of Jyväskylä, 2011)
Melegati, Jorge; Wang, Xiaofeng; Abrahamsson, Pekka (IEEE, 2019)Recent studies have proposed the use of experiments to guide software development in order to build features that the user really wants. Some authors argue that this approach represents a new way to develop software that ...