Security metrics to improve misuse case model

Assessing security at an early stage of the web application development life cycle helps to design a secure system that can withstand malicious attacks. Measuring security at the requirement stage of the system development life cycle assists in mitigating vulnerabilities and increasing the security...

Full description

Saved in:
Bibliographic Details
Main Authors: A.A., Abdulrazeg, N.M., Norwawi, N., Basir
Format: Conference Paper
Language:en_US
Published: 2015
Subjects:
Online Access:http://ddms.usim.edu.my/handle/123456789/9241
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Universiti Sains Islam Malaysia
Language: en_US
Description
Summary:Assessing security at an early stage of the web application development life cycle helps to design a secure system that can withstand malicious attacks. Measuring security at the requirement stage of the system development life cycle assists in mitigating vulnerabilities and increasing the security of the developed system, which reduces cost and rework. In this paper, we present a security metrics model based on the Goal Question Metric approach, focusing on the design of the misuse case model. The security metrics model assists in examining the misuse case model to discover and fix defects and vulnerabilities before moving to the next stages of system development. The presented security metrics are based on the OWASP top 10-2010, in addition to misuse case modelling antipattern. © 2012 IEEE.