Visible to the public Security Engineering Risk Analysis (SERA)

TitleSecurity Engineering Risk Analysis (SERA)
Publication TypeConference Paper
Year of Publication2016
AuthorsWoody, Carol
Conference NameProceedings of the 3rd International Workshop on Software Engineering Research and Industrial Practice
PublisherACM
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-4170-7
Keywordspubcrawl, Resiliency, security lifecycle, security risk analysis, security risk management, software security engineering, supply chain risk assessment, supply chain risk management, supply chain security, vulnerabilities
Abstract

In this presentation, I describe how the SEI's Security Engineering Risk Analysis (SERA) method provides a structure that connects desired system functionality with the underlying software to evaluate the sufficiency of requirements for software security and the potential operational security risks based on mission impact.

URLhttp://doi.acm.org/10.1145/2897022.2897024
DOI10.1145/2897022.2897024
Citation Keywoody_security_2016