Security Assurance: An Authentication Initiative by Checklist
Main Article Content
Abstract
Deployed software, now-a-days, are continuously under attack. Attackers have been exploiting vulnerabilities for decades and seem to be increasing their attacks. Firewalls, intrusion detection and antivirus systems cannot simply solve this problem to the desirable extent. Only a concerted effort, by the software development community for building more secure software can foil attackers and allow users to feel protected from exploitation. It is observed that each phase of the SDLC should include the appropriate security assurance mechanism and countermeasures. From requirements through design and implementation to testing and deployment, security measures must be embedded throughout the SDLC phases. Authentication is one of the measure protection mechanisms, which is broadly accepted. Appropriate level of authentication may be well enforce security features and hence ensure security. A checklist is proposed, in this paper, which can enable assessment of appropriateness of authentication and lead to counter/additional measures for security assurance.
Â
Keywords-Software Security, Security Assurance, Authentication Policy, Authentication Checklist
Downloads
Article Details
COPYRIGHT
Submission of a manuscript implies: that the work described has not been published before, that it is not under consideration for publication elsewhere; that if and when the manuscript is accepted for publication, the authors agree to automatic transfer of the copyright to the publisher.
Authors who publish with this journal agree to the following terms:
- Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
- Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
- Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work
- The journal allows the author(s) to retain publishing rights without restrictions.
- The journal allows the author(s) to hold the copyright without restrictions.