Software Verification and Validation: A Practitioner's Guide
Software Verification and Validation: A Practitioner's Guide
The Art of Deception: Controlling the Human Element of Security
The Art of Deception: Controlling the Human Element of Security
Official (ISC)2 Guide to the CISSP Exam
Official (ISC)2 Guide to the CISSP Exam
Adopting a Software Security Improvement Program
IEEE Security and Privacy
Web Development Evolution: The Assimilation of Web Engineering Security
LA-WEB '05 Proceedings of the Third Latin American Web Congress
IEEE Security and Privacy
Journal of Web Engineering
Agile web engineering (AWE) process: perceptions within a fortune 500 financial services company
Journal of Web Engineering
| Hi-index | 0.00 |
There are a number of critical factors driving security in Web Engineering. These include: economic issues, people issues, and legislative issues. This paper presents the argument that a Security Improvement Approach (SIA), which can be applied to different Web engineering development processes, is essential to successfully addressing Web application security. In this paper, the criteria that any SIA will have to address, for a Web engineering process, are presented. The criteria are derived with supporting empirical evidence based on an in-depth security survey conducted within a Fortune 500 financial service sector organization and supporting literature. The contribution of this paper is two fold. The criteria presented in this paper can be used to assess the security of an existing Web engineering process and also to guide Security Improvement Initiatives in Web Engineering.