Frontiers of Information Technology (2013)
Islamabad, Pakistan Pakistan
Dec. 16, 2013 to Dec. 18, 2013
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/FIT.2013.41
Increasing use of Component Based Software Engineering (CBSE) has raised the issues related with the security of software components. Several methodologies are being used to evaluate security of software components and that of the base system with which it is integrated. Security characteristics of a component must be specified effectively and unambiguously. To make possible software development progression, it will be effective to have a method which evaluates the security of software components. The study presented here attempts to propose analytic network process (ANP) for component security evaluation. The method is applied using ISO/IEC 27002 (ISO 27002) standard.
Security, Software systems, ISO standards, Software engineering, IEC standards
S. Nazir, S. Shahzad, M. Nazir and H. u. Rehman, "Evaluating Security of Software Components Using Analytic Network Process," 2013 11th International Conference on Frontiers of Information Technology (FIT), Islamabad, Pakistan, 2014, pp. 183-188.