2018 IEEE/AIAA 37th Digital Avionics Systems Conference (DASC) 2018
DOI: 10.1109/dasc.2018.8569579
|View full text |Cite
|
Sign up to set email alerts
|

Safety Critical Software and Security - How Low Can You Go?

Abstract: The safety of aviation software is ensured by performing development according to the DO-178C standard. However, this standard has a blind spot in that it fails to consider software security aspects in development. The Building Security In Maturity Model (BSIMM) comprises a software security framework with 113 software security activities. This model is often used for measuring the maturity of an organization's software security lifecycle. In this paper we evaluate the ability of DO-178C to ensure also softwar… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1

Citation Types

0
3
0

Year Published

2019
2019
2023
2023

Publication Types

Select...
2
1
1

Relationship

0
4

Authors

Journals

citations
Cited by 4 publications
(3 citation statements)
references
References 10 publications
0
3
0
Order By: Relevance
“…The Building Security in Maturity Model (BSIMM) is a descriptive model of activities for evaluating and assessing software security initiatives [30]- [32]. BSIMM comprises 122 software security activities grouped into 12 practices and organized into four domains: governance, intelligence, secure software development (SSDL), and deployment [33].…”
Section: Building Security In Maturity Model (Bsimm)mentioning
confidence: 99%
See 1 more Smart Citation
“…The Building Security in Maturity Model (BSIMM) is a descriptive model of activities for evaluating and assessing software security initiatives [30]- [32]. BSIMM comprises 122 software security activities grouped into 12 practices and organized into four domains: governance, intelligence, secure software development (SSDL), and deployment [33].…”
Section: Building Security In Maturity Model (Bsimm)mentioning
confidence: 99%
“…BSIMM comprises 122 software security activities grouped into 12 practices and organized into four domains: governance, intelligence, secure software development (SSDL), and deployment [33]. BSIMM is best used as a yardstick for measuring other secure software development frameworks or comparing an organization's software security initiatives against others [30]- [32].…”
Section: Building Security In Maturity Model (Bsimm)mentioning
confidence: 99%
“…This paper intends to provide an understanding of how great the need for a common collaborative security environment for the construction sector is, and what services are needed in the industry. The paper is based on interviews and a review of relevant literature and documents, along with the authors' general competence and expertise in ICT security [4,1,9,10]. Seven interviews have been conducted with experts with security responsibilities from the construction sector.…”
Section: Introductionmentioning
confidence: 99%