Litcius/Paper detail

Automating the early detection of security design flaws

Katja Tuma, Laurens Sion, Riccardo Scandariato, Koen Yskout

202039 citationsDOI

Abstract

Security by design is a key principle for realizing secure software systems and it is advised to hunt for security flaws from the very early stages of development. At design-time, security analysis is often performed manually by means of either threat modeling or expert-based design inspections. However, when leveraging the wide range of established knowledge bases on security design flaws (e.g., CWE, CAWE), these manual assessments become too time consuming, error-prone, and infeasible in the context of contemporary development practices with frequent iterations. This paper focuses on design inspection and explores the potential for automating the application of inspection rules to speed up the security analysis.

Topics & Concepts

Computer scienceComputer securitySoftware security assuranceKey (lock)Context (archaeology)Security testingThreat modelSoftwareSecurity information and event managementInformation securitySoftware engineeringSecurity serviceCloud computing securityOperating systemBiologyCloud computingProgramming languagePaleontologySoftware Engineering ResearchInformation and Cyber SecurityAdvanced Malware Detection Techniques
Automating the early detection of security design flaws | Litcius