Towards detailed software artifact specification with SPEMArti
Proceedings of the 2011 International Conference on Software and Systems Process
Hi-index | 0.00 |
In this paper we present a security plug-in for the OpenUP/Basic development process. Our security plug-in is based on a structured unified process for secure software development, named S3P (Sustainable Software Security Process). This process provides the formalism required to identify the causes of vulnerabilities and the mitigation techniques that prevent these vulnerabilities. We also present the results of an expert evaluation of the security plug-in. The lessons learned from development of the plug-in and the results of the evaluation will be used when adapting S3P to other software development processes.