Open Access Open Access  Restricted Access Subscription Access

An Analyzer-Based Security Measurement Model for Increasing Software Security


Affiliations
1 Department of Information Technology and Management, Shih Chien University, Taipei, Taiwan, Province of China
 

Software security has become an increasingly important issue for information and software system. Secure vulnerabilities of software system may cause a company out of business and even destroy the social normal operation. How to improve software security becomes a critical issue in software development process. In this paper, utilizing the static program analyzer and dynamic simulation analyzer to collect metrics, proposes an Analyzer-based Software Security Measurement (ASSM) model. Applying ASSM model, the secure flaws of software system can be identified clearly. And, using a Rule-based Software Security Improvement (RSSI) operation to control and improve security defects and security vulnerability of software system. The security risk of software system can be reduced efficiently.

Keywords

Software Security, Security vulnerability, Security Metric, Measurement Model, ASSM.
User
Notifications
Font Size

Abstract Views: 358

PDF Views: 158




  • An Analyzer-Based Security Measurement Model for Increasing Software Security

Abstract Views: 358  |  PDF Views: 158

Authors

Sen-Tarng Lai
Department of Information Technology and Management, Shih Chien University, Taipei, Taiwan, Province of China

Abstract


Software security has become an increasingly important issue for information and software system. Secure vulnerabilities of software system may cause a company out of business and even destroy the social normal operation. How to improve software security becomes a critical issue in software development process. In this paper, utilizing the static program analyzer and dynamic simulation analyzer to collect metrics, proposes an Analyzer-based Software Security Measurement (ASSM) model. Applying ASSM model, the secure flaws of software system can be identified clearly. And, using a Rule-based Software Security Improvement (RSSI) operation to control and improve security defects and security vulnerability of software system. The security risk of software system can be reduced efficiently.

Keywords


Software Security, Security vulnerability, Security Metric, Measurement Model, ASSM.