This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
How to Think about Security
March/April 2006 (vol. 4 no. 2)
pp. 68-71
James A. Whittaker, Florida Institute of Technology
Richard Ford, Florida Institute of Technology
Learning how to think about security means adopting a different mindset than we've had in the past. As a community, software developers have been thinking too much like "good guys" and thus ended up developing insecure software because they failed to predict attack scenarios. The only way to effectively develop good security in software is to learn to think like the "bad guys." Thinking like the adversary helps us to better identify and mitigate threats.
Index Terms:
security, security checklists, threat modeling, systems analysis
Citation:
James A. Whittaker, Richard Ford, "How to Think about Security," IEEE Security & Privacy, vol. 4, no. 2, pp. 68-71, March-April 2006, doi:10.1109/MSP.2006.39
Usage of this product signifies your acceptance of the Terms of Use.