Skip to Main content Skip to Navigation
Conference papers

Hunting for Aardvarks: Can Software Security Be Measured?

Abstract : When you are in charge of building software from the ground up, software security can be encouraged through the use of secure software development methodologies. However, how can you measure the security of a given piece of software that you didn’t write yourself? In other words, when looking at two executables, what does “a is more secure than b” mean? This paper examines some approaches to measuring software security, and reccommends that more organisations should employ the Building Security In Maturity Model (BSIMM).
Document type :
Conference papers
Complete list of metadata

Cited literature [18 references]  Display  Hide  Download

https://hal.inria.fr/hal-01542432
Contributor : Hal Ifip <>
Submitted on : Monday, June 19, 2017 - 5:01:11 PM
Last modification on : Thursday, December 3, 2020 - 9:24:12 AM
Long-term archiving on: : Friday, December 15, 2017 - 8:21:50 PM

File

978-3-642-32498-7_7_Chapter.pd...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Martin Jaatun. Hunting for Aardvarks: Can Software Security Be Measured?. International Cross-Domain Conference and Workshop on Availability, Reliability, and Security (CD-ARES), Aug 2012, Prague, Czech Republic. pp.85-92, ⟨10.1007/978-3-642-32498-7_7⟩. ⟨hal-01542432⟩

Share

Metrics

Record views

108

Files downloads

308