Earticle

초록

영어

The dramatic increase in cyberattacks targeting government agencies, critical infrastructure, and defense contractors has revealed the inefficiencies of traditional software development life-cycle (SDLC) models. Most SDLC models do not indicate security explicitly, hence secure software development practices need to be infused into each phase so as to limit the exploitation of security loopholes and safeguard the security of high‑security systems. This document puts forward SSDF‑HS, a secure software development framework for high‑security organizations. The comparative study of various hypothetical projects reveals that SSDF‑HS significantly decreases vulnerability density and mean time to remediate while also enhancing compliance scores. The mathematical risk‑reduction model illustrates the lowering of residual risk when security is integrated early (shift‑left). The framework assists high‑security organizations in writing software that is inherently secure and can withstand future threats.

목차

Abstract
I. Introduction
II. Literature Review
A. Secure Software Development Frameworks
B. Secure Software Development Life‑Cycle(SSDLC)
C. Complementary Frameworks and Standards
III. Methodology
A. Framework Development
B. Experimental Design
V. Discussion
VI. Conclusion
VII. References

저자

• Tariq Hanif [ UIIT PMAS Arid Agriculture University, Rawalpindi Pakistan ]
• Salman Ghani Virk [ Riphah International University, Islamabad. ]
• Hina Riaz [ UIIT PMAS Arid Agriculture University, Rawalpindi Pakistan ]
• Atif Ali [ Research Management Centre (RMC), Multimedia University, Cyberjaye 63100 Malaysia. ]
• Afifa syed [ UIIT PMAS Arid Agriculture University, Rawalpindi, Pakistan ]
• Naik Nawaz [ MSCS National University of Sciences and Technology (NUST) Pakistan ]

참고문헌