Home > Software Quality All-in-One Guides > Web application security -- How to prevent attacks > Prevention techniques when gathering requirements
All-in-One Guides:

Web application security -- How to prevent attacks
EMAIL THIS
 START   TYPES OF ATTACKS   SECURITY REQUIREMENTS   DEVELOPER TECHNIQUES   TESTER TECHNIQUES   TOOLS & TECHNIQUES   

Prevention techniques when gathering requirements



Security features, like other features in software, are initiated in the requirements elicitation and analysis phase. Learn how to use threat modeling and misuse cases, among other techniques, to determine security features that ought to be included.
  1 - 6 of 6  

Writing software requirements that address security issues
SearchSoftwareQuality.com | 20 May 2008
TIP - Experts always say you need to bake security into the development lifecycle. To do that, you need to take a hard look at the security requirements written for the software. Kevin Beaver offers some advice on what you...
Threat modeling enhanced with misuse cases
SearchSoftwareQuality.com | 04 May 2006
TIP - Misuse cases capture all the possible attacks on an application, as well as mitigation steps. Anurag Agarwal explains how they can help architects correct design flaws, help developers understand a hacker's approach and...
The essentials of Web application threat modeling
SearchSoftwareQuality.com | 24 Mar 2008
TIP - A critical part of Web application security is mapping out what's at risk -- or threat modeling. Kevin Beaver outlines the essential steps to get you started and help you identify where your application vulnerabilities...
Getting started with Web application misuse cases
SearchSoftwareQuality.com | 17 Apr 2008
TIP - When developing applications it isn't enough to think about how they will be used. You must also consider how they will be misused -- or abused -- so that you can prevent attacks. Kevin Beaver gives some examples of Web...
Software Security Engineering: A Guide for Project Managers -- Chapter 3, Requirements Engineering for Secure Software
SearchSoftwareQuality.com | 20 May 2008
TIP - Software security requirements engineering is a critical part of the software development lifecycle. This free book chapter explains how to approach requirements engineering for a secure SDLC.
Threat modeling key to pro-active security
SearchSoftwareQuality.com | 01 Mar 2006
ARTICLE - The best way to ensure software is secure is to build security into the software development life cycle, industry experts say. Design-time threat modeling is pivotal, but it needs to be constrained by an understanding...
  1 - 6 of 6  




Software Testing: Usability, Regression Testing, Stress Testing
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2006 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts