SCOPUS 정보 검색 플랫폼

Proceedings - International Conference on Software Engineering

Volumn 2006-May, Issue , 2006, Pages 3-9

Towards a structured unified process for software security

(3) Ardi, Shanai a Byers, David a Shahmehri, Nahid a

a LINKÖPING UNIVERSITY (Sweden)

Author keywords

Software development process; Software security; Vulnerability analysis

Indexed keywords

ENCODING (SYMBOLS); SOFTWARE ENGINEERING; SOFTWARE TESTING;

PENETRATION TESTING; SECURITY ACTIVITIES; SOFTWARE DEVELOPMENT PROCESS; SOFTWARE LIFE CYCLES; SOFTWARE SECURITY; SOFTWARE VULNERABILITIES; STRUCTURED APPROACH; VULNERABILITY ANALYSIS;

SOFTWARE DESIGN;

EID: 84910598342 PISSN: 02705257 EISSN: None Source Type: Conference Proceeding
DOI: 10.1145/1137627.1137630 Document Type: Conference Paper

Times cited : (32)

References (17)

1
- 0032595618
- Embracing change with extreme programming
- K. Beck. Embracing change with extreme programming. IEEE Computer, 32(10):70-77, 1999.
- (1999) IEEE Computer , vol.32 , Issue.10 , pp. 70-77
- Beck, K.¹

2
- 0003827816
- Addison-Wesley
- K. Beck. Extreme Programming Explained: Embrace Change. Addison-Wesley, 1999.
- (1999) Extreme Programming Explained: Embrace Change
- Beck, K.¹

3
- 2342577744
- Addison-Wesley
- G. Hoglund and G. McGraw. Exploiting Software: How to Break Code. Addison-Wesley, 2004.
- (2004) Exploiting Software: How to Break Code
- Hoglund, G.¹ McGraw, G.²

4
- 10944269120
- Building more secure software with improved development processes
- Nov-Dec
- M. Howard. Building more secure software with improved development processes. Security & Privacy Magazine, 2(6):63-65, Nov-Dec 2004.
- (2004) Security & Privacy Magazine , vol.2 , Issue.6 , pp. 63-65
- Howard, M.¹

5
- 0010729284
- Microsoft Press
- M. Howard and D. LeBlanc. Writing Secure Code. Microsoft Press, 2003.
- (2003) Writing Secure Code
- Howard, M.¹ LeBlanc, D.²

6
- 0003902726
- Addison-Wesley
- I. Jacobson, G. Booch, and J. Rumbaugh. Unified Software Development Process. Addison-Wesley, 1999.
- (1999) Unified Software Development Process
- Jacobson, I.¹ Booch, G.² Rumbaugh, J.³

7
- 4344606310
- Wiley
- J. Koziol, D. Litchfield, D. Aitel, C. Anley, S. Eren, N. Mehta, and R. Hassel. The Shellcoder's Handbook: Discovering and Exploiting Security Holes. Wiley, 2004.
- (2004) The Shellcoder's Handbook: Discovering and Exploiting Security Holes
- Koziol, J.¹ Litchfield, D.² Aitel, D.³ Anley, C.⁴ Eren, S.⁵ Mehta, N.⁶ Hassel, R.⁷

8
- 0028514027
- A taxonomy of computer program security flaws, with examples
- C. Landwehr, A. Bull, J. McDermott, and W. Choi. A taxonomy of computer program security flaws, with examples. ACM Computing Surveys, 26(3):211-255, 1994.
- (1994) ACM Computing Surveys , vol.26 , Issue.3 , pp. 211-255
- Landwehr, C.¹ Bull, A.² McDermott, J.³ Choi, W.⁴

9
- 0022102587
- Fault tree analysis, methods and applications-A review
- August
- W. S. Lee, D. L. Grosh, F. A. Tillman, and C. H. Lie. Fault tree analysis, methods and applications-a review. IEEE Transactions on Reliability, R-34, August 1985.
- (1985) IEEE Transactions on Reliability, R-34
- Lee, W.S.¹ Grosh, D.L.² Tillman, F.A.³ Lie, C.H.⁴

10
- 0028391939
- Cleanroom process model
- March
- R. C. Linger. Cleanroom process model. IEEE Software, 11(2):50-56, March 1994.
- (1994) IEEE Software , vol.11 , Issue.2 , pp. 50-56
- Linger, R.C.¹

11
- 21644480889
- The trustworthy computing security development lifecycle
- IEEE Computer Society, December
- S. B. Lipner. The trustworthy computing security development lifecycle. In Proceedings of the 20th Annual Computer Security Applications Conference, pages 2-13. IEEE Computer Society, December 2004.
- (2004) Proceedings of the 20th Annual Computer Security Applications Conference , pp. 2-13
- Lipner, S.B.¹

12
- 2342469291
- Software security
- Mar-Apr
- G. McGraw. Software security. Security & Privacy Magazine, 2(2):80-83, Mar-Apr 2004.
- (2004) Security & Privacy Magazine , vol.2 , Issue.2 , pp. 80-83
- McGraw, G.¹

13
- 0037680682
- Prentice-Hall
- S. R. Palmer and J. M. Felsing. A Practical Guide to Feature-Driven Development. Prentice-Hall, 2002.
- (2002) A Practical Guide to Feature-Driven Development
- Palmer, S.R.¹ Felsing, J.M.²

14
- 84953382955
- Appendix B: Processes to produce secure software
- S. T. Redwine and N. Davis. Task force for improving security across the development lifecycle task force report, Appendix B: Processes to produce secure software, 2004.
- (2004) Task Force for Improving Security Across the Development Lifecycle Task Force Report
- Redwine, S.T.¹ Davis, N.²

15
- 84953415533
- accessed June
- SSE-CMM website. http://www.sse-cmm.org/(accessed June 2005).
- (2005)

16
- 34547274967
- (accessed June 2005)
- J. Viega. The CLASP application security process, 2005. http://www.securesoftware.com/(accessed June 2005).
- (2005) The CLASP Application Security Process
- Viega, J.¹

17
- 0003925663
- Addison-Wesley
- J. Viega and G. McGraw. Building Secure Software. Addison-Wesley, 2002.
- (2002) Building Secure Software
- Viega, J.¹ McGraw, G.²

* 이 정보는 Elsevier사의 SCOPUS DB에서 KISTI가 분석하여 추출한 것입니다.