scholarly journals Secure Software Development Techniques and Challenges in their Practical Application

2020 ◽  
Author(s):  
Sun Jun Ee ◽  
Yi Hong Tong ◽  
Ahmed Ifrah Ibrahim ◽  
F Zahra
Keyword(s):  
Software Development ◽  
Development Environment ◽  
Software Companies ◽  
Development Framework ◽  
Security Practices ◽  
Secure Software ◽  
User Data ◽  
Secure Software Development ◽  
Software Development Practices ◽  
Software Development Techniques

The main focus of this paper is to analyze and discuss the secure software development practices currently being adopted in the industry along with their significance, as well as to identify the challenges faced by developers when undertaking measures and techniques in writing secure software. It is a well-known fact that software security has been the top priority of many software companies such as Google and Facebook to thwart attackers and protect user data in this world full of cybercriminals. Understanding how most software companies in the industry operate to ensure security helps developers to identify strengths and weaknesses in their current security frameworks. Hence, by researching into previous literature and papers that are relevant to the topic and by conducting an interview with a professional in the field, this paper provides insights on the most popular secure software development framework and practices in the world as well as problems faced by companies when adopting these practices. Several security practices and activities that are required to create secure software are discovered alongside the problems that arise when companies are trying to apply these practices. This paper also proposes a few solutions that can be used to resolve these problems, which can be easily understood and implemented by software companies to transition into a truly secure software development environment.

Toward effective adoption of secure software development practices

2018 ◽  
Vol 85 ◽  
pp. 33-46 ◽  
Author(s):  
Shams Al-Amin ◽  
Nirav Ajmeri ◽  
Hongying Du ◽  
Emily Z. Berglund ◽  
Munindar P. Singh
Keyword(s):  
Software Development ◽  
Secure Software ◽  
Secure Software Development ◽  
Software Development Practices

A Survey on Secure Software Development Lifecycles

2014 ◽  
pp. 17-33
Author(s):  
José Fonseca ◽  
Marco Vieira
Keyword(s):  
Software Development ◽  
Software Security ◽  
Software Products ◽  
Development Lifecycle ◽  
Software Product ◽  
Secure Software ◽  
Secure Software Development ◽  
Software Development Practices ◽  
Complete Solutions ◽  
The Web

This chapter presents a survey on the most relevant software development practices that are used nowadays to build software products for the web, with security built in. It starts by presenting three of the most relevant Secure Software Development Lifecycles, which are complete solutions that can be adopted by development companies: the CLASP, the Microsoft Secure Development Lifecycle, and the Software Security Touchpoints. However it is not always feasible to change ongoing projects or replace the methodology in place. So, this chapter also discusses other relevant initiatives that can be integrated into existing development practices, which can be used to build and maintain safer software products: the OpenSAMM, the BSIMM, the SAFECode, and the Securosis. The main features of these security development proposals are also compared according to their highlights and the goals of the target software product.

A Survey on Secure Software Development Lifecycles

2013 ◽  
pp. 57-73 ◽  
Author(s):  
José Fonseca ◽  
Marco Vieira
Keyword(s):  
Software Development ◽  
Software Security ◽  
Software Products ◽  
Development Lifecycle ◽  
Software Product ◽  
Secure Software ◽  
Secure Software Development ◽  
Software Development Practices ◽  
Complete Solutions ◽  
The Web

This chapter presents a survey on the most relevant software development practices that are used nowadays to build software products for the web, with security built in. It starts by presenting three of the most relevant Secure Software Development Lifecycles, which are complete solutions that can be adopted by development companies: the CLASP, the Microsoft Secure Development Lifecycle, and the Software Security Touchpoints. However it is not always feasible to change ongoing projects or replace the methodology in place. So, this chapter also discusses other relevant initiatives that can be integrated into existing development practices, which can be used to build and maintain safer software products: the OpenSAMM, the BSIMM, the SAFECode, and the Securosis. The main features of these security development proposals are also compared according to their highlights and the goals of the target software product.

Analysis of the Principles and Criteria for Secure Software Development

2020 ◽  
Author(s):  
Roumen Trifonov ◽  
Ognian Nakov ◽  
Galya Pavlova ◽  
Slavcho Manolov ◽  
Georgy Tsochev ◽  
...  
Keyword(s):  
Software Development ◽  
Secure Software ◽  
Secure Software Development

scholarly journals Systematic Mapping of the Literature on Secure Software Development

IEEE Access ◽  
2021 ◽  
Vol 9 ◽  
pp. 36852-36867
Author(s):  
Hernan Nina ◽  
Jose Antonio Pow-Sang ◽  
Monica Villavicencio
Keyword(s):  
Software Development ◽  
Systematic Mapping ◽  
Secure Software ◽  
Secure Software Development
Sign in / Sign up

Export Citation Format

Share Document