short-paper

DLR secure software engineering: position and vision paper

Authors:
Rohan Krishnamurthy

German Aerospace Center (DLR), Jena, Germany

German Aerospace Center (DLR), Jena, Germany
View Profile

,
Michael Meinel

German Aerospace Center (DLR), Berlin, Germany

German Aerospace Center (DLR), Berlin, Germany
View Profile

,
Carina Haupt

German Aerospace Center (DLR), Berlin, Germany

German Aerospace Center (DLR), Berlin, Germany
View Profile

,
Andreas Schreiber

German Aerospace Center (DLR), Cologne, Germany

German Aerospace Center (DLR), Cologne, Germany
View Profile

,
Patrick Mäder

Technical University Ilmenau, Ilmenau, Germany

Technical University Ilmenau, Ilmenau, Germany
View Profile

SEAD '18: Proceedings of the 1st International Workshop on Security Awareness from Design to DeploymentMay 2018Pages 49–50https://doi.org/10.1145/3194707.3194716

Published:27 May 2018Publication History

SEAD '18: Proceedings of the 1st International Workshop on Security Awareness from Design to Deployment

Pages 49–50

ABSTRACT

DLR as research organization increasingly faces the task to share its self-developed software with partners or publish openly. Hence, it is very important to harden the softwares to avoid opening attack vectors. Especially since DLR software is typically not developed by software engineering or security experts. In this paper we describe the data-oriented approach of our new found secure software engineering group to improve the software development process towards more secure software. Therefore, we have a look at the automated security evaluation of software as well as the possibilities to capture information about the development process. Our aim is to use our information sources to improve software development processes to produce high quality secure software.

References

Carina Haupt and Tobias Schlauch. 2017. The Software Engineering Community at DLR: How we got where we are, Neil Chue Hong, Stephan Druskat, Robert Haines, Caroline Jay, Daniel S. Katz, and Shoaib Sufi (Eds.). Proceedings of the Workshop on Sustainable Software for Science: Practice and Experiences (WSSSPE5.1). http://elib.dlr.de/114050/Google Scholar
Victoria Stodden and Sheila Miguez. 2014. Best Practices for Computational Science: Software Infrastructure and Environments for Reproducible and Extensible Research. Journal of Open Research Software 2, 1 (jul 2014).Google ScholarCross Ref

Index Terms

DLR secure software engineering: position and vision paper
1. Security and privacy
  1. Software and application security
    1. Software security engineering
  2. Systems security
2. Software and its engineering
  1. Software creation and management
    1. Software development process management

Recommendations

Exploring Security Procedures in Secure Software Engineering: A Systematic Mapping Study
EASE '22: Proceedings of the 26th International Conference on Evaluation and Assessment in Software Engineering

Various new technologies have developed as software security solutions have become more critical. One of the essential parts of software quality is the product's security. Though providing examples covering all phases of secure software development is ...
Read More
Security by Design in Software Engineering

Security is a non-functional requirement difficult-to-handle during software development. However, it appears to be common in software engineering, that security is taken care of during the design- and test-phase only. If security is neglected during ...
Read More
Secure software engineering teaching modules
InfoSecCD '06: Proceedings of the 3rd annual conference on Information security curriculum development

We are designing a course in secure software engineering that will teach students how to incorporate security throughout the software development lifecycle. The class will serve as a capstone for a new graduate certificate in secure software ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
SEAD '18: Proceedings of the 1st International Workshop on Security Awareness from Design to Deployment
May 2018
66 pages
ISBN:9781450357272
DOI:10.1145/3194707
Program Chairs:
Mehdi Mirakhorli
Rochester Institute of Technology, Rochester
,
Matthias Galster
University of Canterbury, Christchurch, New Zealand
Copyright © 2018 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 27 May 2018
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Author Tags
code analysis
data science
it security
provenance
secure software engineering
Qualifiers
- short-paper
Conference

Upcoming Conference

ICSE 2025

2025 IEEE/ACM 46th International Conference on Software Engineering

April 26 - May 3, 2025

Ottawa , ON , Canada
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 2
  Total Citations
  View Citations
- 105
  Total Downloads
- Downloads (Last 12 months)4
- Downloads (Last 6 weeks)0
Other Metrics
View Author Metrics
Cited By
View all

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

DLR secure software engineering: position and vision paper

SEAD '18: Proceedings of the 1st International Workshop on Security Awareness from Design to Deployment

ABSTRACT

References

Cited By

Index Terms

Recommendations

Exploring Security Procedures in Secure Software Engineering: A Systematic Mapping Study

Security by Design in Software Engineering

Secure software engineering teaching modules

Comments

Login options

Full Access

Published in

Sponsors

In-Cooperation

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Conference

Upcoming Conference

Funding Sources

Other Metrics

Article Metrics

Other Metrics

Cited By

PDF Format

eReader

Digital Edition

Caption

DLR secure software engineering: position and vision paper

SEAD '18: Proceedings of the 1st International Workshop on Security Awareness from Design to Deployment

ABSTRACT

References

Cited By

Index Terms

Recommendations

Exploring Security Procedures in Secure Software Engineering: A Systematic Mapping Study

Security by Design in Software Engineering

Secure software engineering teaching modules

Comments

Login options

Full Access

Published in

Sponsors

In-Cooperation

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Conference

Upcoming Conference

Funding Sources

Article Metrics

Other Metrics

PDF Format

eReader

Digital Edition

Share this Publication link

Share on Social Media