KIT | KIT-Bibliothek | Impressum | Datenschutz

Continuous Secure Software Development and Analysis

Schulz, Sophie ORCID iD icon; Reiche, Frederik; Hahner, Sebastian ORCID iD icon; Schiffl, Jonas ORCID iD icon


Software security becomes increasingly important nowadays. Security should be considered as early as
possible in the software development. However, considering different aspects of security is a complex
task. In this paper, we propose an extendable framework for continuous secure software development
and evolution. The framework provides interconnected analyses on different stages of development.
Explicit assumption management helps to verify the security requirements more properly. Thus, the
security of the system under development can be estimated more accurately. Finally, the concrete assumptions also help to identify and close security gaps that arise during the software’s lifetime.

Verlagsausgabe §
DOI: 10.5445/IR/1000143320
Veröffentlicht am 25.02.2022
Cover der Publikation
Zugehörige Institution(en) am KIT Institut für Informationssicherheit und Verlässlichkeit (KASTEL)
Kompetenzzentrum für angewandte Sicherheitstechnologie (KASTEL)
Publikationstyp Proceedingsbeitrag
Publikationsdatum 23.02.2022
Sprache Englisch
Identifikator ISSN: 1613-0073
KITopen-ID: 1000143320
HGF-Programm 46.23.01 (POF IV, LK 01) Methods for Engineering Secure Systems
Erschienen in Symposium on Software Performance 2021 : Short Paper Proceedings of Symposium on Software Performance, Leipzig, Germany, November 9.-10., 2021. Ed.: D. G. Reichelt, R. Müller, S. Becker, W. Hasselbring, A. v. Hoorn, S. Kounev, A. Koziolek, R. Reussner
Veranstaltung 12th Symposium on Software Performance (SSP 2021), Leipzig, Deutschland, 09.11.2021 – 10.11.2021
Verlag RWTH Aachen
Serie CEUR Workshop Proceedings ; 3043
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft
KITopen Landing Page