Metrics
157 Record Views
Conference presentation
Concept mapping for the efficient generation and communication of security assurance cases
Fifth International Multi-Conference on Complexity, Informatics and Cybernetics (IMCIC 2014)
Fifth International Multi-Conference on Complexity, Informatics and Cybernetics (IMCIC 2014) (03/04/2014–03/07/2014)
2014
Abstract
The development of security assurance cases has been touted as one way to improve the security of mission-critical software. However, security assurance cases are not easy to write, communicate, or introduce into the software development process. We describe a two-phase approach to the development of security assurance cases: a first phase in which critical vulnerabilities are identified, and a second phase in which documentation is produced demonstrating that these vulnerabilities have been addressed. Concept maps, an easily understood graphical representation of conceptual knowledge are used to construct the security assurance case. The current work contains a description of a pilot study in the use of this approach.
Related links
Details
- Title
- Concept mapping for the efficient generation and communication of security assurance cases
- Publication Details
- Fifth International Multi-Conference on Complexity, Informatics and Cybernetics (IMCIC 2014)
- Resource Type
- Conference presentation
- Conference
- Fifth International Multi-Conference on Complexity, Informatics and Cybernetics (IMCIC 2014) (03/04/2014–03/07/2014)
- Identifiers
- 99380090619006600
- Academic Unit
- Computer Science; Hal Marcus College of Science and Engineering
- Language
- English