Secure software design maintenance using enhanced Task-Oriented Security Maintenance (TOSIM) model
Most software today is not secure, containing security vulnerabilities that can be exploited by people with malicious intent to cause financial and physical damage. One of the reasons for this is that most research efforts have been put into general development and maintenance processes, which have...
Saved in:
Main Authors: | , |
---|---|
Format: | Article |
Published: |
2013
|
Subjects: | |
Online Access: | http://eprints.utm.my/id/eprint/40793/ |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
id |
my.utm.40793 |
---|---|
record_format |
eprints |
spelling |
my.utm.407932017-08-13T01:03:22Z http://eprints.utm.my/id/eprint/40793/ Secure software design maintenance using enhanced Task-Oriented Security Maintenance (TOSIM) model Abdulrazzak, Essa Zaki Ghani, Imran QA75 Electronic computers. Computer science Most software today is not secure, containing security vulnerabilities that can be exploited by people with malicious intent to cause financial and physical damage. One of the reasons for this is that most research efforts have been put into general development and maintenance processes, which have included the implementation of some models. One such model used for software maintenance is the task-oriented maintenance model. This maintenance model does not focus on how to maintain secure software. Thus, this study identifies software design issues that need to be addressed during the maintenance stage in order to enhance the task-oriented maintenance model into a task- oriented security maintenance (TOSiM) model. The proposed enhanced model aspires to avoid design vulnerabilities by taking security features into consideration. In order to adequately study the suitability of such a model, two case studies have been conducted with software industry experts, and the results have been analyzed. The analysis shows that the enhanced model can be used to train software designers and architects in how to maintain secure software designs, while decreasing vulnerability. 2013 Article PeerReviewed Abdulrazzak, Essa Zaki and Ghani, Imran (2013) Secure software design maintenance using enhanced Task-Oriented Security Maintenance (TOSIM) model. Science International (Lahore), 25 (2). pp. 235-244. ISSN 1013-5316 |
institution |
Universiti Teknologi Malaysia |
building |
UTM Library |
collection |
Institutional Repository |
continent |
Asia |
country |
Malaysia |
content_provider |
Universiti Teknologi Malaysia |
content_source |
UTM Institutional Repository |
url_provider |
http://eprints.utm.my/ |
topic |
QA75 Electronic computers. Computer science |
spellingShingle |
QA75 Electronic computers. Computer science Abdulrazzak, Essa Zaki Ghani, Imran Secure software design maintenance using enhanced Task-Oriented Security Maintenance (TOSIM) model |
description |
Most software today is not secure, containing security vulnerabilities that can be exploited by people with malicious intent to cause financial and physical damage. One of the reasons for this is that most research efforts have been put into general development and maintenance processes, which have included the implementation of some models. One such model used for software maintenance is the task-oriented maintenance model. This maintenance model does not focus on how to maintain secure software. Thus, this study identifies software design issues that need to be addressed during the maintenance stage in order to enhance the task-oriented maintenance model into a task- oriented security maintenance (TOSiM) model. The proposed enhanced model aspires to avoid design vulnerabilities by taking security features into consideration. In order to adequately study the suitability of such a model, two case studies have been conducted with software industry experts, and the results have been analyzed. The analysis shows that the enhanced model can be used to train software designers and architects in how to maintain secure software designs, while decreasing vulnerability. |
format |
Article |
author |
Abdulrazzak, Essa Zaki Ghani, Imran |
author_facet |
Abdulrazzak, Essa Zaki Ghani, Imran |
author_sort |
Abdulrazzak, Essa Zaki |
title |
Secure software design maintenance using enhanced Task-Oriented Security Maintenance (TOSIM) model |
title_short |
Secure software design maintenance using enhanced Task-Oriented Security Maintenance (TOSIM) model |
title_full |
Secure software design maintenance using enhanced Task-Oriented Security Maintenance (TOSIM) model |
title_fullStr |
Secure software design maintenance using enhanced Task-Oriented Security Maintenance (TOSIM) model |
title_full_unstemmed |
Secure software design maintenance using enhanced Task-Oriented Security Maintenance (TOSIM) model |
title_sort |
secure software design maintenance using enhanced task-oriented security maintenance (tosim) model |
publishDate |
2013 |
url |
http://eprints.utm.my/id/eprint/40793/ |
_version_ |
1643650558360289280 |
score |
13.2014675 |