TY - JOUR
T1 - Embedding Dependability Attributes into Component-Based Software Development Using the Best Practice Method
T2 - A Guideline
AU - Kahtan, Hasan
AU - Bakar, Nordin Abu
AU - Nordin, Rosmawati
PY - 2014/7/14
Y1 - 2014/7/14
N2 - Current organizational vulnerabilities mainly originate from Web applications. The security holes in Web applications have resulted in credit card theft, damaged financial resources and reputation of institutions, and compromised computers. Existing Web application systems encounter a high record of vulnerabilities that target dependability attributes. Mitigating software vulnerabilities and increasing software protection against bugs or vulnerabilities are critical to increase consumer confidence in software component products. Improved software engineering practices must also be adopted to mitigate the vulnerabilities in modern systems. Component-based software development (CBSD) is a software engineering approach. CBSD has been successfully applied in many domains. However, the CBSD capability to develop secure software applications is lacking to date. Therefore, this article proposes a guideline to overcome the lack of security trust in CBSD process. The proposed guideline embeds dependability attributes into CBSD by using the best practice method. The proposed guideline is significant for eliciting, analyzing, specifying, and composing the dependability attributes of CBSD.
AB - Current organizational vulnerabilities mainly originate from Web applications. The security holes in Web applications have resulted in credit card theft, damaged financial resources and reputation of institutions, and compromised computers. Existing Web application systems encounter a high record of vulnerabilities that target dependability attributes. Mitigating software vulnerabilities and increasing software protection against bugs or vulnerabilities are critical to increase consumer confidence in software component products. Improved software engineering practices must also be adopted to mitigate the vulnerabilities in modern systems. Component-based software development (CBSD) is a software engineering approach. CBSD has been successfully applied in many domains. However, the CBSD capability to develop secure software applications is lacking to date. Therefore, this article proposes a guideline to overcome the lack of security trust in CBSD process. The proposed guideline embeds dependability attributes into CBSD by using the best practice method. The proposed guideline is significant for eliciting, analyzing, specifying, and composing the dependability attributes of CBSD.
KW - Component-based software development
KW - availability
KW - best practice method
KW - confidentiality
KW - dependability attributes
KW - integrity
KW - maintainability
KW - reliability
KW - safety
UR - http://www.scopus.com/inward/record.url?scp=84904293749&partnerID=8YFLogxK
U2 - 10.1080/19361610.2014.913230
DO - 10.1080/19361610.2014.913230
M3 - Article
AN - SCOPUS:84904293749
SN - 1936-1610
VL - 9
SP - 348
EP - 371
JO - Journal of Applied Security Research
JF - Journal of Applied Security Research
IS - 3
ER -