Security Risks: Management and Mitigation in the Software Life Cycle

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by David P. Gilliam

13th IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE'04)

University of Modena and Reggio Emilia, Italy

June 14-June 16

ISBN: 0-7695-2183-5

	ASCII Text	x
	David P. Gilliam, "Security Risks: Management and Mitigation in the Software Life Cycle," Enabling Technologies, IEEE International Workshops on, pp. 211-216, 13th IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE'04), 2004.

	BibTex	x
	@article{ 10.1109/ENABL.2004.55, author = {David P. Gilliam}, title = {Security Risks: Management and Mitigation in the Software Life Cycle}, journal ={Enabling Technologies, IEEE International Workshops on}, volume = {0}, year = {2004}, issn = {1524-4547}, pages = {211-216}, doi = {http://doi.ieeecomputersociety.org/10.1109/ENABL.2004.55}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Enabling Technologies, IEEE International Workshops on TI - Security Risks: Management and Mitigation in the Software Life Cycle SN - 1524-4547 SP211 EP216 A1 - David P. Gilliam, PY - 2004 KW - null VL - 0 JA - Enabling Technologies, IEEE International Workshops on ER -

David P. Gilliam, California Institute of Technology

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ENABL.2004.55

A formal approach to managing and mitigating security risks in the software life cycle is requisite to developing software that has a higher degree of assurance that it is free of security defects which pose risk to the computing environment and the organization. Due to its criticality, security should be integrated as a formal approach in the software life cycle. Both a software security checklist and assessment tools should be incorporated into this life cycle process and integrated with a security risk assessment and mitigation tool. The current research at JPL addresses these areas through the development of a Software Security Assessment Instrument (SSAI) and integrating it with a Defect Detection and Prevention (DDP) risk management tool.

Citation:

David P. Gilliam, "Security Risks: Management and Mitigation in the Software Life Cycle," wetice, pp.211-216, 13th IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE'04), 2004

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.