Visible to the public DLR Secure Software Engineering

TitleDLR Secure Software Engineering
Publication TypeConference Paper
Year of Publication2018
AuthorsKrishnamurthy, R., Meinel, M., Haupt, C., Schreiber, A., Mader, P.
Conference Name2018 IEEE/ACM 1st International Workshop on Security Awareness from Design to Deployment (SEAD)
Date Publishedmay
KeywordsAerospace engineering, attack vectors, Automated Secure Software Engineering, code-analysis, composability, Conferences, data-oriented approach, data-science, DLR secure software engineering, information sources, IT-security, Provenance, pubcrawl, research organization, Resiliency, secure-software-engineering, security, security of data, self-developed software, Software, software automated security evaluation, software development process, software engineering, static analysis, Tools
AbstractDLR as research organization increasingly faces the task to share its self-developed software with partners or publish openly. Hence, it is very important to harden the softwares to avoid opening attack vectors. Especially since DLR software is typically not developed by software engineering or security experts. In this paper we describe the data-oriented approach of our new found secure software engineering group to improve the software development process towards more secure software. Therefore, we have a look at the automated security evaluation of software as well as the possibilities to capture information about the development process. Our aim is to use our information sources to improve software development processes to produce high quality secure software.
Citation Keykrishnamurthy_dlr_2018