Merging software engineering and cyber security engineering: novel approaches for security requirements specification and design
Project Abstract
My dissertation project is: Merging software engineering and cyber security engineering: novel approaches for security requirements specification and design. Software engineering is the process of creating, testing, and maintaining software. We then want to incorporate cyber security, which means making sure the software is protected from unauthorized access, cyberattacks, theft, or damage.My motivation behind this project is to create a framework that allows for:- Improved cyber security stance- Proactive cyber security measures- Reduced vulnerabilities and exploits- Faster response time to threats- Cost saving over the entire lifecycleThe idea seems simple, of course software needs cyber security, however cyber security has not always had the recognition it does now. The threat of criminal offence against companies that do not properly secure their software means that cyber security is just as important as the software itself. It is this pressure to have secure software that makes the merging of software engineering and cyber security engineering not only obvious but paramount to creating a commercially viable software product.This project focuses on the first two parts of the project lifecycle: requirements analysis and design. I researched how current leading companies create their software. I sought answers from people with real world experience either by questionnaire or Interview. From there I made my own basic framework and evolved it to learn from all the sources I studied. Finally, I created a polished framework and then used the framework to create various example methodologies for real world use.Ultimately, I have created practical framework and its application guidelines for practitioners seeking to implement this integrated approach in their development processes. This framework creates software that has security by design whilst making sure development teams work together with greater cohesion than currently available methodologies.
Keywords: Software Development, Cyber Security, Secure Design Principles
Conference Details
Session: Poster Session A at Poster Stand 99
Location: Sir Stanley Clarke Auditorium at Tuesday 7th 13:30 – 17:00
Markers: Giedre Sabaliauskaite, C�cilia Pradic
Course: BSc Computer Science, 3rd Year
Future Plans: I’m looking for work