DOI : https://doi.org/10.18517/ijaseit.1.4.84

Generalized Software Security Framework

Smriti Jain (1), Maya Ingle (2)
(1) School of Computer Science & Information Technology, Devi Ahilya Vishwa Vidhyalaya, India
(2) Indore Institute of Computer Applications Rau, India
Fulltext View | Download
How to cite (IJASEIT) :
Jain, Smriti, and Maya Ingle. “Generalized Software Security Framework”. International Journal on Advanced Science, Engineering and Information Technology, vol. 1, no. 4, Aug. 2011, pp. 413-7, doi:10.18517/ijaseit.1.4.84.
Citation Format :
Security of information has become a major concern in today's digitized world. As a result, effective techniques to secure information are required. The most effective way is to incorporate security in the development process itself thereby resulting into secured product. In this paper, we propose a framework that enables security to be included in the software development process. The framework consists of three layers namely; control layer, aspect layer and development layer. The control layer illustrates the managerial control of the entire software development process with the help of governance whereas aspect layer recognizes the security mechanisms that can be incorporated during the software development to identify the various security features. The development layer helps to integrate the various security aspects as well as the controls identified in the above layers during the development process. The layers are further verified by a survey amongst the IT professionals. The professionals concluded that the developed framework is easy to use due to its layered architecture and, can be customized for various types of softwares.

Authors who publish with this journal agree to the following terms:

    1. Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal.
    2. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgement of its initial publication in this journal.
    3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (See The Effect of Open Access).