Hunting for Aardvarks: Can Software Security Be Measured? - Multidisciplinary Research and Practice for Information Systems
Conference Papers Year : 2012

Hunting for Aardvarks: Can Software Security Be Measured?

Martin Gilje Jaatun
  • Function : Author
  • PersonId : 1010564
Information and Communication Technology [Oslo]

Abstract

When you are in charge of building software from the ground up, software security can be encouraged through the use of secure software development methodologies. However, how can you measure the security of a given piece of software that you didn’t write yourself? In other words, when looking at two executables, what does “a is more secure than b” mean? This paper examines some approaches to measuring software security, and reccommends that more organisations should employ the Building Security In Maturity Model (BSIMM).

Domains

Computer Science [cs]
Fichier principal
Vignette du fichier
978-3-642-32498-7_7_Chapter.pdf (159.92 Ko) Télécharger le fichier
Origin Files produced by the author(s)

Hal Ifip  : Connect in order to contact the contributor

https://inria.hal.science/hal-01542432

Submitted on : Monday, June 19, 2017-5:01:11 PM

Last modification on : Thursday, December 3, 2020-9:24:12 AM

Long-term archiving on : Friday, December 15, 2017-8:21:50 PM

Download

Dates and versions

hal-01542432 , version 1 (19-06-2017)

Licence

Attribution

Identifiers

Cite

Martin Gilje Jaatun. Hunting for Aardvarks: Can Software Security Be Measured?. International Cross-Domain Conference and Workshop on Availability, Reliability, and Security (CD-ARES), Aug 2012, Prague, Czech Republic. pp.85-92, ⟨10.1007/978-3-642-32498-7_7⟩. ⟨hal-01542432⟩

Export

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

IFIP-LNCS IFIP IFIP-TC IFIP-TC5 IFIP-WG IFIP-TC8 IFIP-CD-ARES IFIP-WG8-4 IFIP-WG8-9 IFIP-LNCS-7465
62 View
147 Download

Altmetric

Share

More