Abstract
This chapter presents an example outlining the process and results of a software security risk analysis. Unlike other types of security risk analyses, a software security analysis focuses on the design and implementation of the online application rather than the network and physical environment in which the application is deployed. An example is used to illustrate the benefits of a software security risk analysis and demonstrate how software security extends and complements conventional security and business risk analyses.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Arkin, B., Hill, F., Marks, S., McGraw, G., Schmid M., and Walls, T. “How We Learned to Cheat at Online Poker: A Study in Software Security.” Developer.com: Tech Focus, (September 28, 1999).
Craft, R., Wyss, G., Vandewart, R., and Funkhouser, D. “An Open Framework for Risk Management.” Proc. 21rst NISSC (1998).
Goldberg, I. and Wagner, D. “Randomness and the Netscape Browser.” Dr. Dobbs Journal, (January, 1996.)
Meritt, J. “A Method for Quantitative Risk Analysis.” Proc. 22nd NISSC (1999).
Meritt, J. “Risk Management.” Proc. 21rst NISSC (1998).
Schneier, B. Applied Cryptography (Second Edition). John Wiley and Sons, 1996.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2001 Springer Science+Business Media New York
About this chapter
Cite this chapter
Arkin, B. (2001). Software Security Analysis: an Example Case Study. In: Ghosh, A.K. (eds) E-Commerce Security and Privacy. Advances in Information Security, vol 2. Springer, Boston, MA. https://doi.org/10.1007/978-1-4615-1467-1_2
Download citation
DOI: https://doi.org/10.1007/978-1-4615-1467-1_2
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4613-5568-7
Online ISBN: 978-1-4615-1467-1
eBook Packages: Springer Book Archive