Title :
Knowledge for software security
Author :
Barnum, Sean ; McGraw, Gary
Abstract :
A critical challenge facing software security today is the dearth of experienced practitioners. Approaches that rely solely on apprenticeship as a method of propagation won´t scale quickly enough to address this burgeoning problem, so as the field evolves and establishes best practices, knowledge management can play a central role in encapsulating and spreading the emerging discipline more efficiently. This article is about the kinds of security knowledge that can provide a solid foundation for software security practices.
Keywords :
knowledge management; security of data; knowledge management; software security; Best practices; Buildings; Capability maturity model; Catalogs; Computer architecture; Computer security; Guidelines; Java; Privacy; Spirals; software development cycle; software security;
Journal_Title :
Security & Privacy, IEEE
DOI :
10.1109/MSP.2005.45
