Journal Article10.9734/BJMCS/2015/19872
Revisiting Software Security Risks
17
TL;DR: This paper examines the associated security risks of software through different inputs of security risk management procedure through the form of a checklist for security risk evaluation and anagement at software design phase.
read more
Abstract: Robustness of secure software is directly associated with better market and refining relations between customers and software vendors. Nowadays robustness of secure software is an assessment tool to find healthier market room by way of developing highly integrated quot ient between customers and vendors. Software security risk management is a very highly appeal ing phenomenon to control security through establishing expensive countermeasures of security hazar ds and by controlling them. Existing approaches for security risk management are merely available whi ch are having direct or indirect impact with the simple implementations through planning, development of establ ished security requirements for modifications and execution of security design policies. This paper examines the associated security risks of software through different inputs of security risk management procedure. This review may be helpful to discover the new pitches of risk management techniques of software security controls at design level for high quality secure product. A contribution is made after reviewing views of authors in this paper in the form of a checklist for security risk evaluation and m anagement at software design phase.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Evaluating the Usable-Security of Healthcare Software Through Unified Technique of Fuzzy Logic, ANP and TOPSIS
TL;DR: This study proposes the use of a novel technique of combining the Analytic Network Method, Fuzzy Sets, and Technique for Order of Preference by Similarity to Ideal Solution (TOPSIS) to test usability together with security to evaluate the usability-security of healthcare software.
A hybrid fuzzy rule-based multi-criteria framework for sustainable-security assessment of web application
Rajeev Kumar,Rajeev Kumar,Abdullah Baz,Hosam Alhakami,Wajdi Alhakami,Alka Agrawal,Raees Ahmad Khan +6 more
TL;DR: The Fuzzy Analytic Hierarchy Process (Fuzzy AHP) is used for evaluating the efficacy of the overall sustainable-security and its characteristics of web applications to achieve the high level of sustainable- security in web applications.
45
Integrated Fuzzy Based Computational Mechanism for the Selection of Effective Malicious Traffic Detection Approach
TL;DR: In this article, the authors have used the Fuzzy AHP methodology to address the issues related to the vagueness, uncertainties and total awareness of languages, and the Technique for Order Preference by Similarity to Ideal Solution (TOPSIS) was implemented in order to assess the order of preference.
Ontology-based context-sensitive software security knowledge management modeling
TL;DR: The need for including application context sensitive modeling within a case-based software security management system is highlighted and the context-driven and ontology-based frameworks are taken and prioritized according to their weights which were achieved by using the Fuzzy AHP methodology.
References
Information security policy compliance: an empirical study of rationality-based beliefs and information security awareness
TL;DR: The results show that an employee's intention to comply with the ISP is significantly influenced by attitude, normative beliefs, and self-efficacy to comply, and the role of ISA and compliance-related beliefs in an organization's efforts to encourage compliance is shed.
1.9K
Software risk management: principles and practices
TL;DR: The emerging discipline of software risk management is described, it is defined as an attempt to formalize the risk-oriented correlates of success into a readily applicable set of principles and practices.
1.7K
Risk analysis in software design
D. Verdon,Gary McGraw +1 more
- 01 Jul 2004
TL;DR: How, by considering the resulting ranked risks, business stakeholders can determine how to manage particular risks and what the most cost-effective controls might be is looked at.
168
Determinants and Value of Enterprise Risk Management: Empirical Evidence from the Literature
Nadine Gatzert,Michael Martin +1 more
TL;DR: In this paper, a comparative assessment of empirical evidence from the literature regarding the determinants of ERM and its value once implemented is conducted, showing that particularly the company size and the level of institutional ownership are significantly positively related to the implementation of enterprise risk management in most empirical studies.
130
Information Security Risk Analysis Methods and Research Trends: AHP and Fuzzy Comprehensive Method
TL;DR: Development and application of soft computing such as rough sets, grey sets, fuzzy systems, generic algorithm, support vector machine, and Bayesian network and hybrid model are developed.
76