Show simple item record

dc.contributor.authorBernsmed, Karin
dc.contributor.authorMeland, Per Håkon
dc.contributor.authorJaatun, Martin Gilje
dc.date.accessioned2019-02-26T07:01:15Z
dc.date.available2019-02-26T07:01:15Z
dc.date.created2019-02-25T10:49:28Z
dc.date.issued2018
dc.identifier.citation2018 IEEE AIAA 37th Digital Avionics Systems Conference (DASC) Proceedings, 2018, 210-215nb_NO
dc.identifier.isbn978-1-5386-4112-5
dc.identifier.urihttp://hdl.handle.net/11250/2587320
dc.description.abstractThe safety of aviation software is ensured by performing development according to the DO-178C standard. However, this standard has a blind spot in that it fails to consider software security aspects in development. The Building Security In Maturity Model (BSIMM) comprises a software security framework with 113 software security activities. This model is often used for measuring the maturity of an organization's software security lifecycle. In this paper we evaluate the ability of DO-178C to ensure also software security, by demonstrating how few BSIMM activities you can get away with performing, while remaining compliant with the different DO-178C assurance levels. The results indicate that organizations with very low software security maturity can still be able to perform well in accordance to DO-178C. Based on the results, we propose concrete activities that could be integrated into the DO-178C development process, to strengthen the security of the developed softwarenb_NO
dc.language.isoengnb_NO
dc.relation.ispartof2018 IEEE AIAA 37th Digital Avionics Systems Conference (DASC) Proceedings
dc.titleSafety Critical Software and Security - How Low Can You Go?nb_NO
dc.typeChapternb_NO
dc.description.versionacceptedVersionnb_NO
dc.source.pagenumber210-215nb_NO
dc.identifier.cristin1680339
cristin.unitcode7401,90,13,0
cristin.unitnameSoftware Engineering, Safety and Security
cristin.ispublishedtrue
cristin.fulltextpostprint
cristin.qualitycode1


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record