Sciweavers

WETICE
2000
IEEE

Reducing Software Security Risk through an Integrated Approach

14 years 4 months ago
Reducing Software Security Risk through an Integrated Approach
This paper presents joint work by the California Institute of Technology’s Jet Propulsion Laboratory and the University of California at Davis (UC Davis) sponsored by the National Aeronautics and Space Administration Goddard Independent Verification and Validation Facility to develop a security assessment instrument for the software development and maintenance life cycle. Vulnerabilities in operating systems and software applications render an otherwise secure environment insecure. Any operating system or application added to a secure environment that has exploitable security vulnerabilities affects the security of the whole environment. An otherwise secure system can be compromised easily if the system or application software on it, or on a linked system, has vulnerabilities. Therefore, it is critical that software on networked computer systems be free from security vulnerabilities. Security vulnerabilities in software arise from a number of development factors; but these vulnerabi...
David P. Gilliam, John C. Kelly, Matt Bishop
Added 01 Aug 2010
Updated 01 Aug 2010
Type Conference
Year 2000
Where WETICE
Authors David P. Gilliam, John C. Kelly, Matt Bishop
Comments (0)