Show/Hide Menu
Hide/Show Apps
anonymousUser
Logout
Türkçe
Türkçe
Search
Search
Login
Login
OpenMETU
OpenMETU
About
About
Open Science Policy
Open Science Policy
Communities & Collections
Communities & Collections
Help
Help
Frequently Asked Questions
Frequently Asked Questions
Guides
Guides
Thesis submission
Thesis submission
Publication submission with DOI
Publication submission with DOI
Publication submission
Publication submission
Supporting Information
Supporting Information
General Information
General Information
Copyright, Embargo and License
Copyright, Embargo and License
Contact us
Contact us
Security Qualitative Metrics for Open Web Application Security Project Compliance
Download
1-s2.0-S1877050919306052-main.pdf
Date
2019
Author
Sönmez, Ferda Özdemir
Metadata
Show full item record
This work is licensed under a
Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License
.
Item Usage Stats
37
views
46
downloads
Cite This
The focus of this study is to find out repeatable features for large-scale enterprise web application production process related to based on OWASP security requirement list. As a result of a rigorous work including domain analysis for Java language and development frameworks and the examination of a large set of technical documents, 230 security qualitative metrics are discovered, under six categories. These security qualitative metrics are beneficial for security analysts as well as other parties such as designers, developers, and testers. The fmdings provide a developer/designer point of view and would help to make better decisions related to the environment set up, technology selection, and the architecture, design, and implementation details. As a result of this effort, the overall vulnerability level of the web applications would diminish significantly. (C) 2019 The Authors. Published by Elsevier B.V.
Subject Keywords
OWASP
,
Enterprise Security
,
Security Qualitative Metric
,
Application Security
,
Web
,
Java
URI
https://hdl.handle.net/11511/58145
Journal
Procedia Computer Science
DOI
https://doi.org/10.1016/j.procs.2019.04.140
Collections
Graduate School of Informatics, Conference / Seminar
Citation Formats
IEEE
ACM
APA
CHICAGO
MLA
BibTeX
F. Ö. Sönmez, “Security Qualitative Metrics for Open Web Application Security Project Compliance,” 2019, vol. 151, p. 998, Accessed: 00, 2020. [Online]. Available: https://hdl.handle.net/11511/58145.
