M. Felderer, Basel Katt, P. Kalb, J. Jürjens, Martín Ochoa, F. Paci, L. M. Tran, T. Tun, Koen Yskout, R. Scandariato, F. Piessens, Dries Vanoverberghe, Elizabeta Fourneret, M. Gander, Bjørnar Solhaug, R. Breu
{"title":"Evolution of Security Engineering Artifacts: A State of the Art Survey","authors":"M. Felderer, Basel Katt, P. Kalb, J. Jürjens, Martín Ochoa, F. Paci, L. M. Tran, T. Tun, Koen Yskout, R. Scandariato, F. Piessens, Dries Vanoverberghe, Elizabeta Fourneret, M. Gander, Bjørnar Solhaug, R. Breu","doi":"10.4018/IJSSE.2014100103","DOIUrl":null,"url":null,"abstract":"Security is an important quality aspect of modern open software systems. However, it is challenging to keep such systems secure because of evolution. Security evolution can only be managed adequately if it is considered for all artifacts throughout the software development lifecycle. This article provides state of the art on the evolution of security engineering artifacts. The article covers the state of the art on evolution of security requirements, security architectures, secure code, security tests, security models, and security risks as well as security monitoring. For each of these artifacts the authors give an overview of evolution and security aspects and discuss the state of the art on its security evolution in detail. Based on this comprehensive survey, they summarize key issues and discuss directions of future research.","PeriodicalId":89158,"journal":{"name":"International journal of secure software engineering","volume":"50 1","pages":"48-98"},"PeriodicalIF":0.0000,"publicationDate":"2014-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"16","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International journal of secure software engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.4018/IJSSE.2014100103","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 16
Abstract
Security is an important quality aspect of modern open software systems. However, it is challenging to keep such systems secure because of evolution. Security evolution can only be managed adequately if it is considered for all artifacts throughout the software development lifecycle. This article provides state of the art on the evolution of security engineering artifacts. The article covers the state of the art on evolution of security requirements, security architectures, secure code, security tests, security models, and security risks as well as security monitoring. For each of these artifacts the authors give an overview of evolution and security aspects and discuss the state of the art on its security evolution in detail. Based on this comprehensive survey, they summarize key issues and discuss directions of future research.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
