Security Engineering Risk Analysis (SERA)
Title | Security Engineering Risk Analysis (SERA) |
Publication Type | Conference Paper |
Year of Publication | 2016 |
Authors | Woody, Carol |
Conference Name | Proceedings of the 3rd International Workshop on Software Engineering Research and Industrial Practice |
Publisher | ACM |
Conference Location | New York, NY, USA |
ISBN Number | 978-1-4503-4170-7 |
Keywords | pubcrawl, Resiliency, security lifecycle, security risk analysis, security risk management, software security engineering, supply chain risk assessment, supply chain risk management, supply chain security, vulnerabilities |
Abstract | In this presentation, I describe how the SEI's Security Engineering Risk Analysis (SERA) method provides a structure that connects desired system functionality with the underlying software to evaluate the sufficiency of requirements for software security and the potential operational security risks based on mission impact. |
URL | http://doi.acm.org/10.1145/2897022.2897024 |
DOI | 10.1145/2897022.2897024 |
Citation Key | woody_security_2016 |