Developer-Friendly Software Security

Authored by: Victoria McIntyre , Jungwoo Ryoo , Kyung-Won Park , Hyoungshick Kim

Encyclopedia of Software Engineering

Print publication date:  November  2010
Online publication date:  November  2010

Print ISBN: 9781420059779
eBook ISBN: 9781351249270
Adobe ISBN:

10.1081/E-ESE-120052061

 Download Chapter

 

Abstract

Software security is being increasingly considered important in the software development process. However, in practice, software security is often neglected due to inherent constraints such as time to market and budget. Various efforts have been undertaken to address the problem of enhancing the security quality of software. For example, managers can provide secure coding standards and guidelines, and encourage software engineers to follow these recommended practices. However, it is not feasible to expect every software engineer to become an expert in software security and apply one’s security knowledge. A more realistic model is to minimize the software security–related burden imposed on software engineers by providing as much support as possible. A number of different approaches may be taken to provide this support, and the choice of methods depends on the size and nature of the organization developing the software. We refer to this new mind-set toward software security as “developer-friendly software security.” This entry explores ways to promote the developer-friendly software security concept in a software development organization.

 Cite
Search for more...
Back to top

Use of cookies on this website

We are using cookies to provide statistics that help us give you the best experience of our site. You can find out more in our Privacy Policy. By continuing to use the site you are agreeing to our use of cookies.