A continuous risk management process is a necessary part of any approach to software security. Software security risk includes risks found in artifacts during assurance activities, risks introduced by insufficient process, and personnel related risks. An overall risk management framework (described here) can help make sense of software security. Note that we are explicitly teasing apart architectural risk analysis (one of the critical software security best practices) and use of the risk management framework. [...]
CITATION STYLE
Haber, M. J., & Hibbert, B. (2018). Risk Management Frameworks. In Asset Attack Vectors (pp. 241–247). Apress. https://doi.org/10.1007/978-1-4842-3627-7_20
Mendeley helps you to discover research relevant for your work.