Defining Misuse within the Development Process

	This Article
	Subscribers, please Login Purchase article: $19 PDF HTML IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Gunnar Peterson Articles by John Steven

November/December 2006 (vol. 4 no. 6)

pp. 81-84

	ASCII Text	x
	Gunnar Peterson, John Steven, "Defining Misuse within the Development Process," IEEE Security and Privacy, vol. 4, no. 6, pp. 81-84, November/December, 2006.

	BibTex	x
	@article{ 10.1109/MSP.2006.149, author = {Gunnar Peterson and John Steven}, title = {Defining Misuse within the Development Process}, journal ={IEEE Security and Privacy}, volume = {4}, number = {6}, issn = {1540-7993}, year = {2006}, pages = {81-84}, doi = {http://doi.ieeecomputersociety.org/10.1109/MSP.2006.149}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - MGZN JO - IEEE Security and Privacy TI - Defining Misuse within the Development Process IS - 6 SN - 1540-7993 SP81 EP84 EPD - 81-84 A1 - Gunnar Peterson, A1 - John Steven, PY - 2006 KW - misuse cases KW - use cases KW - software development life cycle VL - 4 JA - IEEE Security and Privacy ER -

Gunnar Peterson, Arctec Group

John Steven, Cigital

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2006.149

The software development industry often brings in security at the eleventh hour, right before developers throw the code over the wall--that is, deploy it into production--and ask, "Well, is it secure?" At this point, hilarity--for the objective observers, anyhow--ensues as security personnel work feverishly to shove crypto, firewalls, and all the other mechanisms at their disposal into the most egregious risk areas. This article describes how to create useful misuse cases within the development process, thus avoiding the headaches that can arise toward the end of the cycle.

Index Terms:

misuse cases, use cases, software development life cycle

Citation:

Gunnar Peterson, John Steven, "Defining Misuse within the Development Process," IEEE Security and Privacy, vol. 4, no. 6, pp. 81-84, Nov./Dec. 2006, doi:10.1109/MSP.2006.149

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.