S. Chandra
Department of IT, BBA University, Lucknow, India
R.A. Khan
Department of IT, BBA University, Lucknow, India
PDF Fulltext XML References Citation
How to cite this article
S. Chandra and R.A. Khan, 2008. Object Oriented Software Security Estimation Life Cycle-Design Phase Perspective. Journal of Software Engineering, 2: 39-46.
DOI: 10.3923/jse.2008.39.46
URL: https://scialert.net/abstract/?doi=jse.2008.39.46
DOI: 10.3923/jse.2008.39.46
URL: https://scialert.net/abstract/?doi=jse.2008.39.46
muneer Reply
i have some comments : in this topic we are intrsted for security issue ,how reduces cost and time ,,and what the new thinges for using security OO ,i think in this topic alreday done ,wht u mean by :security estimation at early stage of development life cycle assist developer to mitigate vulnerability and to produce highly secured software?
for verifaction the effectivness ,,i have confused for that,only explaine how you can do that,
thank you,
sam Reply
I agreed with muneer. There is nothing new in the paper.I wonder how I it get publised. I read this paper boz i was expecting some security quntification techniques, but i found only bla-bla , this paper is about , "what should be done" but not "how it should be done". I dont think this paper is of any use for anyone.
R. A. Khan
You wrote that you agreed with muneer. Can u please explain what muneer wishes to say? I wanted to reply for his comment, but it was not clear to em. Moreover, you have very little understanding of research methodology. You are requested to kindly read the paper carefully, and don't be baised while commenting on others. To know what to do is the only thing to start the thing in right direction. We have introduced a concept of incorporating security within the development life cycle. Can u name any paper talking the same, exclusively for OO design? We produced a framework to estimate security early in the development life cycle. Security quantification in design phase has not been discussed anywhere else before this. Don't you think that this is the major contribution of the paper? If, yes no body can help you. If you have any specific query regarding the contribution, you are most welcome.
anonymous Reply
Few basic questions that would help me to understand your work in a better way
Do you have a mechanism for Security Estimation, if yes
What aspect does it relates to
like security of the Design,code security.( encapsulation) or its the Applications Security ( Users Data base Security)addressed at Design Phase and how?
Are you trying to work on a code that needs to be integrated with the application at design phase to improve it
Are you trying to summarize best industry practices and draw generalization by counting security attributes on various software to formulate a guidelines for future users.If this is what you are doing we already have something in IT industry,
Regards,
Anonymous