Sciweavers

ITNG
2008
IEEE

Hierarchy-Driven Approach for Attack Patterns in Software Security Education

14 years 7 months ago
Hierarchy-Driven Approach for Attack Patterns in Software Security Education
We propose a hierarchy-driven approach to facilitate student learning and foster a deeper understanding of the importance of attack patterns in computer, network, and software security. This is a fundamental point in computer and software security education because the “patch and pray” mentality of software security is insufficient. This is especially important to make known to higher education students before entering the workforce. The importance and significance of our approach is justified by accentuating the deficiencies in previous ad-hoc approaches to teaching attack patterns. Because of the vast amount of information in attack pattern repositories, it is unrealistic to expect students to fully comprehend attack pattern fundamentals and its place in computer, network, and software security. The properties of our approach that fill these deficiencies are covered as well as the proven methodologies that our work is based upon. The concept of hierarchy and refinement are well ...
Joshua J. Pauli, Patrick Henry Engebretson
Added 31 May 2010
Updated 31 May 2010
Type Conference
Year 2008
Where ITNG
Authors Joshua J. Pauli, Patrick Henry Engebretson
Comments (0)