• DocumentCode
    2598787
  • Title

    Addressing software security and mitigations in the life cycle

  • Author

    Gilliam, David ; Powell, John ; Haugh, Eric ; Bishop, Matt

  • Author_Institution
    Jet Propulsion Lab., California Inst. of Technol., Pasadena, CA, USA
  • fYear
    2003
  • fDate
    3-4 Dec. 2003
  • Firstpage
    201
  • Lastpage
    206
  • Abstract
    Traditionally, security is viewed as an organizational and information technology (IT) systems function comprising of firewalls, intrusion detection systems (IDS), system security settings and patches to the operating system (OS) and applications running on it. Until recently, little thought has been given to the importance of security as a formal approach in the software life cycle. The Jet Propulsion Laboratory has approached the problem through the development of an integrated formal software security assessment instrument (SSAI) with six foci for the software life cycle.
  • Keywords
    formal specification; information technology; security of data; Jet Propulsion Laboratory; firewalls; information technology; intrusion detection systems; software life cycle; software security assessment instrument; system security; Application software; Data security; Information security; Instruments; Intrusion detection; Laboratories; Propulsion; Software maintenance; Software systems; Software tools;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Software Engineering Workshop, 2003. Proceedings. 28th Annual NASA Goddard
  • Print_ISBN
    0-7695-2064-2
  • Type

    conf

  • DOI
    10.1109/SEW.2003.1270744
  • Filename
    1270744
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2598787