research-article

Integrity quantification model for object oriented design

Authors:

Suhel Ahmad Khan,

Raees Ahmad KhanAuthors Info & Claims

ACM SIGSOFT Software Engineering Notes, Volume 37, Issue 2

Pages 1 - 3

https://doi.org/10.1145/2108144.2108154

Published: 03 April 2012 Publication History

Abstract

Various surveys indicate that over the past several years software security has risen in priority for many software organizations. Security quantification in early stage of software development life cycle assists security experts to address security related problems well in advance. Security assessment using model is proved to be one of the established methods. Keeping in view of the same, an Integrity Quantification Model (IQM) is proposed in this paper. An effort is made by authors to correlate design integrity with complexity factors. Object oriented design metrics are used to quantify complexity factors. The developed model has been validated with realistic (small set of) data to prove the significance.

References

[1]

G. Booch, "Object Oriented Analysis and Design with Application", Addison Wesley, 3rd Edition, ISBN-0-201-89551-X

Digital Library

[2]

Available at www: cert.org

[3]

I. Flechais, M. Sasse and S M V Hailes, "Bringing Security Home: A Process for developing secure and usable systems", NSPW'03, ACM, August 2003, pp:18--21.

Digital Library

[4]

Wang C, Wulf, "A Framweork for Security Measurement", Proc.of National Information Systems Security Conference, 7-10 Oct 1997,pp:522--533

[5]

S. R. Chidember and C.F. Kemerer, "Towards A Metric Suite for Object Oriented Design", OOPSLA'91, ACM, pp:197--211.

Digital Library

[6]

G.H. Walton, T. A. Longstaff, R.C. Linder, Computational Evaluation of Software Security Attributes, IEEE, 1997.

[7]

S. Chandra, R. A. Khan, "Software Security Metric Identification Framework (SSM)" International Conference on Advances in Computing, Communication and Control, ICAC3'09, ACM.

Digital Library

[8]

Dr. Holger Peine, "Rules of Thumb for Developing Secure Software: Analyzing and Consolidating two Proposed Sets of Rules", The Third International Conference on Availability, Reliability and Security, DOI 10.1109/2008IEEE,pp.1204--1209

Digital Library

[9]

L.W. Henry, "Maintenance Metrics for the Object Oriented Paradigm", Proceeding of the First International Software Metrics Symposium, May 1993, pp:52--60

[10]

S.A. Khan, R.A. khan, "Securing Object Oriented Design: A Complexity Perspective", International Journal of Computer Application, Volume 8, No 13,Oct 2010,pp:8--12

[11]

K. Mustafa, R.A.Khan, "Quality Metric Development Framework", Journal of Comp. Sci., 2005, 1(3) ISSN: 1549-3636,pp:437--444

[12]

Dr. Linda Rogenberg, Dinnis Brennan, "Principle Components of Orthogonal Object Oriented Metrics (323-08-14)", White Paper Analyzing Results of NASA Object oriented Data, Oct 2001

[13]

M. Dowd, John Mcdonald, "The Art of Software Security Assessment: Identifying and Preventing Software Vulnerabilities", Addison Wesley Professional, ISBN: 978-0-321-44442-4

Digital Library

[14]

R.G. Dromey, "A Model for Soft. Product Quality", IEEE Transaction on Soft. Engg. 21(2), Feb. 1995, PP:146--162

Digital Library

[15]

S. Chandra, R.A. Khan, "A Methodology to Check Integrity of a Class Hierarchy", International Journal of Recent Trends in Engineering, Vol 2, No. 4, November 2009, pp:83--85.

Cited By

Kudriavtseva AGadyatskaya OHong JPark J(2024)You cannot improve what you do not measure: A triangulation study of software security metricsProceedings of the 39th ACM/SIGAPP Symposium on Applied Computing10.1145/3605098.3635892(1223-1232)Online publication date: 8-Apr-2024
https://dl.acm.org/doi/10.1145/3605098.3635892
Khalid ARaza MAfsar PKhan RMohmand MRahman H(2024)A SWOT Analysis of Software Development Life Cycle Security MetricsJournal of Software: Evolution and Process10.1002/smr.2744Online publication date: 27-Nov-2024
https://doi.org/10.1002/smr.2744
Umar IGökçekuş HUzun Ozsahinş D(2021)Comparative Analysis of Flexible Pavement Design Methods Using Fuzzy PROMETHEEApplication of Multi-Criteria Decision Analysis in Environmental and Civil Engineering10.1007/978-3-030-64765-0_17(173-182)Online publication date: 1-Mar-2021
https://doi.org/10.1007/978-3-030-64765-0_17
Show More Cited By

Recommendations

Estimating influence of threat using Misuse Case Oriented Quality Requirements (MCOQR) metrics: Security requirements engineering perspective

Security is an aspect which contains varied classification and dimensions. One such classification of security is software security and it’s facet is metrics. Software security metrics provides an estimation of how secure a software could be and ...
Software evaluation in high integrity systems

This paper discusses some of the issues involved in developing and evaluating software intended for security-related systems. Security software meeting the demands of the U.K. certification process can be developed only if the right approach is adopted ...
Measuring Software Security from the Design of Software
CompSysTech '17: Proceedings of the 18th International Conference on Computer Systems and Technologies

With the increasing use of mobile phones in contemporary society, more and more networked computers are connected to each other. This has brought along security issues. To solve these issues, both research and development communities are trying to build ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM SIGSOFT Software Engineering Notes

ACM SIGSOFT Software Engineering Notes Volume 37, Issue 2

March 2012

92 pages

ISSN:0163-5948

DOI:10.1145/2108144

Issue’s Table of Contents

Copyright © 2012 Copyright is held by the owner/author(s).

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 03 April 2012

Published in SIGSOFT Volume 37, Issue 2

Check for updates

Author Tags

Qualifiers

Research-article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

4
Total Citations
View Citations
125
Total Downloads

Downloads (Last 12 months)2
Downloads (Last 6 weeks)1

Reflects downloads up to 07 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

Kudriavtseva AGadyatskaya OHong JPark J(2024)You cannot improve what you do not measure: A triangulation study of software security metricsProceedings of the 39th ACM/SIGAPP Symposium on Applied Computing10.1145/3605098.3635892(1223-1232)Online publication date: 8-Apr-2024
https://dl.acm.org/doi/10.1145/3605098.3635892
Khalid ARaza MAfsar PKhan RMohmand MRahman H(2024)A SWOT Analysis of Software Development Life Cycle Security MetricsJournal of Software: Evolution and Process10.1002/smr.2744Online publication date: 27-Nov-2024
https://doi.org/10.1002/smr.2744
Umar IGökçekuş HUzun Ozsahinş D(2021)Comparative Analysis of Flexible Pavement Design Methods Using Fuzzy PROMETHEEApplication of Multi-Criteria Decision Analysis in Environmental and Civil Engineering10.1007/978-3-030-64765-0_17(173-182)Online publication date: 1-Mar-2021
https://doi.org/10.1007/978-3-030-64765-0_17
Khan SKhan R(2014)Addressing Analyzability in Terms of Object Oriented Design ComplexityICT and Critical Infrastructure: Proceedings of the 48th Annual Convention of Computer Society of India- Vol II10.1007/978-3-319-03095-1_40(371-378)Online publication date: 2014
https://doi.org/10.1007/978-3-319-03095-1_40

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Issue’s Table of Contents