How can the developer benefit from security modeling?

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Shanai Ardi Articles by David Byers Articles by Per Hakon Meland Articles by Inger Anne Tondel Articles by Nahid Shahmehri

The Second International Conference on Availability, Reliability and Security (ARES'07)

How can the developer benefit from security modeling?

Vienna, Austria

April 10-April 13

ISBN: 0-7695-2775-2

	ASCII Text	x
	Shanai Ardi, David Byers, Per Hakon Meland, Inger Anne Tondel, Nahid Shahmehri, "How can the developer benefit from security modeling?," Availability, Reliability and Security, International Conference on, pp. 1017-1025, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007.

	BibTex	x
	@article{ 10.1109/ARES.2007.96, author = {Shanai Ardi and David Byers and Per Hakon Meland and Inger Anne Tondel and Nahid Shahmehri}, title = {How can the developer benefit from security modeling?}, journal ={Availability, Reliability and Security, International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2775-2}, pages = {1017-1025}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2007.96}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Availability, Reliability and Security, International Conference on TI - How can the developer benefit from security modeling? SN - 0-7695-2775-2 SP1017 EP1025 A1 - Shanai Ardi, A1 - David Byers, A1 - Per Hakon Meland, A1 - Inger Anne Tondel, A1 - Nahid Shahmehri, PY - 2007 KW - null VL - 0 JA - Availability, Reliability and Security, International Conference on ER -

Shanai Ardi, Linkopings universitet

David Byers, Linkopings universitet

Per Hakon Meland, SINTEF ICT, Norway

Inger Anne Tondel, SINTEF ICT, Norway

Nahid Shahmehri, Linkopings universitet

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ARES.2007.96

Security has become a necessary part of nearly every software development project, as the overall risk from malicious users is constantly increasing, due to increased consequences of failure, security threats and exposure to threats. There are few projects today where software security can be ignored. Despite this, security is still rarely taken into account throughout the entire software lifecycle; security is often an afterthought, bolted on late in development, with little thought to what threats and exposures exist. Little thought is given to maintaining security in the face of evolving threats and exposures.

Software developers are usually not security experts. However, there are methods and tools available today that can help developers build more secure software. Security modeling, modeling of e.g. threats and vulnerabilities, is one such method that, when integrated in the software development process, can help developers prevent security problems in software. We discuss these issues, and present how modeling tools, vulnerability repositories and development tools can be connected to provide support for secure software development.

Citation:

Shanai Ardi, David Byers, Per Hakon Meland, Inger Anne Tondel, Nahid Shahmehri, "How can the developer benefit from security modeling?," ares, pp.1017-1025, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.