Measures and Measurement for Secure Software Development

Abstract

This article discusses how measurement can be applied to software development processes and work products to monitor and improve the security characteristics of the software being developed. It is aimed at practitioners - designers, architects, requirements specialists, coders, testers, and managers - who desire guidance as to the best way to approach measurement for secure development. It does not address security measurements of system or network operations.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Feb 02, 2007
Accession Number
AD1171176

Entities

People

  • Carol Dekkers
  • David Zubrow
  • James Mccurley

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Ground and Sea Platforms

DTIC Thesaurus Topics

  • Best Practices
  • Computer Programming
  • Computer Programs
  • Computer Science
  • Cycles
  • Data Analysis
  • Databases
  • Department Of Defense
  • Department Of Homeland Security
  • Engineering
  • Guidance
  • Homeland Security
  • Indicators
  • Life Cycles
  • Materials
  • Measurement
  • Physical Security
  • Risk
  • Risk Analysis
  • Risk Management
  • Security
  • Software Development
  • United States
  • Vulnerability

Fields of Study

  • Computer science
  • Engineering

Readers

  • Aerospace Test and Evaluation
  • Software Engineering.