|
| This Article | ||
| ||
| Share | ||
| Bibliographic References | ||
| Add to: | ||
 Digg  Furl  Spurl  Blink  Simpy  Google  Del.icio.us  Y!MyWeb | ||
| Search | ||
| ||
| ASCII Text | x | ||
| Barbara Fichtinger, Frances Paulisch, Peter Panholzer, "Driving Secure Software Development Experience in a Diverse Product Environment," IEEE Security & Privacy, vol. 10, no. 2, pp. 97-101, March/April, 2012. | |||
| BibTex | x | ||
| @article{ 10.1109/MSP.2012.35, author = {Barbara Fichtinger and Frances Paulisch and Peter Panholzer}, title = {Driving Secure Software Development Experience in a Diverse Product Environment}, journal ={IEEE Security & Privacy}, volume = {10}, number = {2}, issn = {1540-7993}, year = {2012}, pages = {97-101}, doi = {http://doi.ieeecomputersociety.org/10.1109/MSP.2012.35}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, } | |||
| RefWorks Procite/RefMan/Endnote | x | ||
| TY - MGZN JO - IEEE Security & Privacy TI - Driving Secure Software Development Experience in a Diverse Product Environment IS - 2 SN - 1540-7993 SP97 EP101 EPD - 97-101 A1 - Barbara Fichtinger, A1 - Frances Paulisch, A1 - Peter Panholzer, PY - 2012 KW - Siemens KW - secure software development KW - risk analysis KW - threat analysis KW - software engineering VL - 10 JA - IEEE Security & Privacy ER - | |||
1. Health Insurance Portability and Accountability Act, Public Law No. 104-191, 1996; www.gpo.gov/fdsys/pkg/PLAW-104publ191/html PLAW-104publ191.htm.
2. American Recovery and Reinvestment Act of 2009, Public Law 111-5, 2009; http://frwebgate.access.gpo.gov/cgi-bingetdoc.cgi?dbname=111_cong_bills&docid=f:h1enr.pdf .
3. "Requirements for Secure Control and Telecommunication Systems," ver 1.0, white paper, Bundesverband der Energie- und Wasserwirtschaft e.V. (German Assoc. of Energy and Water Supply), 2008.
4. Cyber Security—Electronic Security Perimeter(s), North Am. Electric Reliability Corp., standard CIP-005-4a, Jan. 2011; www.nerc.com/filesCIP-005-4a.pdf.
5. Cyber Security—Systems Security Management, North Am. Electric Reliability Corp., standard CIP-007-4, Jan. 2011; www.nerc.com/filesCIP-007-4.pdf.
6. Process Control Domain—Security Requirements for Vendors, WIB report M 2784-X-10, Int'l Instrument Users' Assoc., Oct. 2010.
7. CMMI for Development, ver. 1.3, Software Eng. Inst., Carnegie Mellon Univ., Nov. 2010.
8. Microsoft Security Development Lifecycle (SDL), ver. 5.1, Microsoft, 2011; http://msdn.microsoft.com/en-us/librarycc307748.aspx .
9. F. Paulisch and P. Zimmerer, "A Role-Based Qualification and Certification Program for Software Architects: An Experience Report from Siemens," Proc. 2010 Int'l Conf. Software Eng. (ICSE 10), ACM, 2010, pp. 21–27.