安全工程风险分析(SERA)

2016 IEEE/ACM 3rd International Workshop on Software Engineering Research and Industrial Practice (SER&IP) Pub Date : 2016-05-14 DOI:10.1145/2897022.2897024

Carol Woody

{"title":"安全工程风险分析(SERA)","authors":"Carol Woody","doi":"10.1145/2897022.2897024","DOIUrl":null,"url":null,"abstract":"In this presentation, I describe how the SEI’s Security Engineering Risk Analysis (SERA) method provides a structure that connects desired system functionality with the underlying software to evaluate the sufficiency of requirements for software security and the potential operational security risks based on mission impact.","PeriodicalId":330342,"journal":{"name":"2016 IEEE/ACM 3rd International Workshop on Software Engineering Research and Industrial Practice (SER&IP)","volume":"5 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-05-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Security Engineering Risk Analysis (SERA)\",\"authors\":\"Carol Woody\",\"doi\":\"10.1145/2897022.2897024\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this presentation, I describe how the SEI’s Security Engineering Risk Analysis (SERA) method provides a structure that connects desired system functionality with the underlying software to evaluate the sufficiency of requirements for software security and the potential operational security risks based on mission impact.\",\"PeriodicalId\":330342,\"journal\":{\"name\":\"2016 IEEE/ACM 3rd International Workshop on Software Engineering Research and Industrial Practice (SER&IP)\",\"volume\":\"5 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-05-14\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 IEEE/ACM 3rd International Workshop on Software Engineering Research and Industrial Practice (SER&IP)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/2897022.2897024\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE/ACM 3rd International Workshop on Software Engineering Research and Industrial Practice (SER&IP)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2897022.2897024","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

在本次演讲中，我将描述SEI的安全工程风险分析(SERA)方法如何提供一种结构，该结构将所需的系统功能与底层软件连接起来，以评估软件安全性需求的充足性以及基于任务影响的潜在操作安全风险。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Security Engineering Risk Analysis (SERA)

In this presentation, I describe how the SEI’s Security Engineering Risk Analysis (SERA) method provides a structure that connects desired system functionality with the underlying software to evaluate the sufficiency of requirements for software security and the potential operational security risks based on mission impact.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2016 IEEE/ACM 3rd International Workshop on Software Engineering Research and Industrial Practice (SER&IP)

自引率

0.00%

发文量