System Engineering Security
2009 (English)Conference paper (Refereed)
Organizations’ integrate different systems and software applications in order to provide a complete set of services to their customers. However, different types of organisations are facing a common problem today, namely problems with security in their systems. The reason is that focus is on functionality rather than security. Besides that, security, if considered, comes too late in the system and software engineering processes; often during design or implementation phase. Moreover, majority of system engineers do not have knowledge in security. However, security experts are rarely involved in development process. Thus, systems are not developed with security in mind, which usually lead to problems and security breaches. We propose an approach of integration security throughout engineering process. To assure that necessary actions concerning security have been taken during development process, we propose semi-automated preventive controls.
Place, publisher, year, edition, pages
Springer Berlin/Heidelberg, 2009.
IdentifiersURN: urn:nbn:se:kth:diva-95354DOI: 10.1007/978-3-642-04592-9_102OAI: oai:DiVA.org:kth-95354DiVA: diva2:527937
The 13th InternationalConference on Knowledge-Based and Intelligent Information & Engineering Systems