Security Engineering Risk Analysis (SERA)
| Title | Security Engineering Risk Analysis (SERA) |
| Publication Type | Conference Paper |
| Year of Publication | 2016 |
| Authors | Woody, Carol |
| Conference Name | Proceedings of the 3rd International Workshop on Software Engineering Research and Industrial Practice |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-4170-7 |
| Keywords | pubcrawl, Resiliency, security lifecycle, security risk analysis, security risk management, software security engineering, supply chain risk assessment, supply chain risk management, supply chain security, vulnerabilities |
| Abstract | In this presentation, I describe how the SEI's Security Engineering Risk Analysis (SERA) method provides a structure that connects desired system functionality with the underlying software to evaluate the sufficiency of requirements for software security and the potential operational security risks based on mission impact. |
| URL | http://doi.acm.org/10.1145/2897022.2897024 |
| DOI | 10.1145/2897022.2897024 |
| Citation Key | woody_security_2016 |