SecEval: An Evaluation Framework for Engineering Secure Systems
dc.contributor.author | Busch, Marianne | |
dc.contributor.author | Koch, Nora | |
dc.contributor.author | Wirsing, Martin | |
dc.contributor.editor | Fill, Hans-Georg | |
dc.contributor.editor | Karagiannis, Dimitris | |
dc.contributor.editor | Reimer, Ulrich | |
dc.date.accessioned | 2019-03-19T14:06:58Z | |
dc.date.available | 2019-03-19T14:06:58Z | |
dc.date.issued | 2014 | |
dc.description.abstract | Engineering secure software systems is not an easy task. Many methods, notations and tools - we call them knowledge objects - exist to support engineers in the development of such software. A main problem is the selection of appropriate knowledge objects. Therefore, we build the conceptual framework SECEVAL to support the evaluation and comparison of security features, vulnerabilities, methods, notations and tools. It provides an evaluation process and a model, which comprises concepts related to security context, data collection and data analysis. Our approach is validated by a case study in the area of security testing of web applications. | en |
dc.identifier.isbn | 978-388579-619-0 | |
dc.identifier.pissn | 1617-5468 | |
dc.identifier.uri | https://dl.gi.de/handle/20.500.12116/20949 | |
dc.language.iso | en | |
dc.publisher | Gesellschaft für Informatik e.V. | |
dc.relation.ispartof | Modellierung 2014 | |
dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings, Volume P-225 | |
dc.title | SecEval: An Evaluation Framework for Engineering Secure Systems | en |
dc.type | Text/Conference Paper | |
gi.citation.endPage | 352 | |
gi.citation.publisherPlace | Bonn | |
gi.citation.startPage | 337 | |
gi.conference.date | 19.-21. März 2014 | |
gi.conference.location | Wien, Österreich | |
gi.conference.sessiontitle | Regular Research Papers |
Dateien
Originalbündel
1 - 1 von 1