Abstract
Current organizational vulnerabilities mainly originate from Web applications. The security holes in Web applications have resulted in credit card theft, damaged financial resources and reputation of institutions, and compromised computers. Existing Web application systems encounter a high record of vulnerabilities that target dependability attributes. Mitigating software vulnerabilities and increasing software protection against bugs or vulnerabilities are critical to increase consumer confidence in software component products. Improved software engineering practices must also be adopted to mitigate the vulnerabilities in modern systems. Component-based software development (CBSD) is a software engineering approach. CBSD has been successfully applied in many domains. However, the CBSD capability to develop secure software applications is lacking to date. Therefore, this article proposes a guideline to overcome the lack of security trust in CBSD process. The proposed guideline embeds dependability attributes into CBSD by using the best practice method. The proposed guideline is significant for eliciting, analyzing, specifying, and composing the dependability attributes of CBSD.
Original language | English |
---|---|
Pages (from-to) | 348-371 |
Number of pages | 24 |
Journal | Journal of Applied Security Research |
Volume | 9 |
Issue number | 3 |
DOIs | |
Publication status | Published - 14 Jul 2014 |
Externally published | Yes |
Keywords
- Component-based software development
- availability
- best practice method
- confidentiality
- dependability attributes
- integrity
- maintainability
- reliability
- safety