Software Security

4549 Words19 Pages
Proceedings of the 10th Colloquium for Information Systems Security Education University of Maryland, University College Adelphi, MD June 5-8, 2006

Software Security: Integrating Secure Software Engineering in Graduate Computer Science Curriculum
Stephen S. Yau, Fellow, IEEE, and Zhaoji Chen Arizona State University, Tempe, AZ 85287-8809 {yau, zhaoji.chen@asu.edu}

Abstract – In addition to enable students to understand the theories and various analysis and design techniques, an effective way of improving students’ capabilities of developing secure software is to develop their capabilities of using these theories, techniques and effective tools in the security software development process. In this paper, the development and delivery
…show more content…
Failures caused by attacks exploiting these vulnerabilities are very costly. According to a NIST report [3], the U.S. economy spends $59.5 billion in breakdowns and repairs cost caused by software errors. Software security, which is software such that it can continuously under malicious much attention recently due the idea of engineering function correctly and attacks [4], has attracted to the fact that reactive

ISBN 1-933510-98-6/$15.00 © 2006 CISSE

124

Proceedings of the 10th Colloquium for Information Systems Security Education University of Maryland, University College Adelphi, MD June 5-8, 2006
Engineering curriculum did not have a course to address the overall secure software development, although some of the issues or specific techniques are covered in courses, such as the graduate-level courses Applied Cryptography and Computer and Network Security. Thus, as part of our effort to meet the NSTISSI-4011 and CNSSI-4012 standards and establish a National Center of Academic Excellence in Information Assurance Education [8], we have developed a new graduate-level course, Software Security, to focus on the basic concepts, various analysis and design techniques, as well as the latest research results to achieve secure software development. This course is intended to change students’ behavior in developing secure reliable software, improving public awareness of this subject, as well as promote
Get Access