Assessing and improving the quality of security methodologies for distributed systems. Issue 11 (30th August 2018)
- Record Type:
- Journal Article
- Title:
- Assessing and improving the quality of security methodologies for distributed systems. Issue 11 (30th August 2018)
- Main Title:
- Assessing and improving the quality of security methodologies for distributed systems
- Authors:
- Uzunov, Anton V.
Fernandez, Eduardo B.
Falkner, Katrina - Abstract:
- Abstract: Security methodologies represent systematic approaches for introducing security attributes into a system throughout the development lifecycle. While isolated attempts have been made to demonstrate the value of particular security methodologies, the "quality" of security methodologies, as such, has never been given due consideration; indeed, it has never been studied as a self‐standing topic. The literature therefore entirely lacks supportive artifacts that can provide a basis for assessing, and hence for improving, a security methodology's quality. In this paper, we fill the aforementioned gap by proposing a comprehensive quality framework and accompanying process, within the context of an existing approach to engineering security methodologies, which can be used for both (bottom‐up) quality assessment and (top‐down) quality improvement. The main framework elements can be extended and customized to allow an essentially arbitrary range of methodology features to be considered, thus forming a basis for flexible, fine‐grained quality control. We demonstrate the bottom‐up application of the latter framework and process on three real‐life security methodologies for distributed systems, taken as case studies. Based on the assessment results, we subsequently show in detail (for one) and briefly discuss (for the remaining set) how the case study methodologies can be re‐engineered to improve their quality.
- Is Part Of:
- Journal of software. Volume 30:Issue 11(2018)
- Journal:
- Journal of software
- Issue:
- Volume 30:Issue 11(2018)
- Issue Display:
- Volume 30, Issue 11 (2018)
- Year:
- 2018
- Volume:
- 30
- Issue:
- 11
- Issue Sort Value:
- 2018-0030-0011-0000
- Page Start:
- n/a
- Page End:
- n/a
- Publication Date:
- 2018-08-30
- Subjects:
- engineering security methodologies -- quality assessment -- quality framework -- quality improvement -- security engineering -- security methodology quality -- security process modeling
Software engineering -- Periodicals
Computer software -- Development -- Periodicals
Software maintenance -- Periodicals
005.1 - Journal URLs:
- http://onlinelibrary.wiley.com/journal/10.1002/(ISSN)2047-7481 ↗
http://onlinelibrary.wiley.com/ ↗ - DOI:
- 10.1002/smr.1980 ↗
- Languages:
- English
- ISSNs:
- 2047-7473
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 8507.xml