The ISDF Framework: Towards Secure Software Development

Abstract

The rapid growth of communication and globalization has changed thesoftware engineering process. Security has become a crucial component of any softwaresystem. However, software developers often lack the knowledge and skills needed todevelop secure software. Clearly, the creation of secure software requires more thansimply mandating the use of a secure software development lifecycle; the componentsproduced by each stage of the lifecycle must be correctly implemented for the resultingsystem to achieve its intended goals. This study demonstrates that a more effectiveapproach to the development of secure software can result from the integration ofcarefully selected security patterns into appropriate stages of the software developmentlifecycle to ensure that security designs are correctly implemented. The goal of this studyis to provide developers with an Integrated Security Development Framework (ISDF) thatcan assist them in building more secure software.