Considering Defense in Depth for Software Applications

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/MSECP.2004.1264860

January-February 2004 (vol. 2 no. 1) pp. 72-75

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Martin R. Stytz

	ASCII Text	x
	Martin R. Stytz, "Considering Defense in Depth for Software Applications," IEEE Security and Privacy, vol. 2, no. 1, pp. 72-75, January-February, 2004.

	BibTex	x
	@article{ 10.1109/MSECP.2004.1264860, author = {Martin R. Stytz}, title = {Considering Defense in Depth for Software Applications}, journal ={IEEE Security and Privacy}, volume = {2}, number = {1}, issn = {1540-7993}, year = {2004}, pages = {72-75}, doi = {http://doi.ieeecomputersociety.org/10.1109/MSECP.2004.1264860}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - MGZN JO - IEEE Security and Privacy TI - Considering Defense in Depth for Software Applications IS - 1 SN - 1540-7993 SP72 EP75 EPD - 72-75 A1 - Martin R. Stytz, PY - 2004 KW - defense-in-depth KW - software security KW - software development KW - attack KW - software tools VL - 2 JA - IEEE Security and Privacy ER -

Martin R. Stytz, US Air Force Research Laboratory

Despite efforts to develop processes and technologies that enhance software application security, to date no one has found a silver bullet and there don't appear to be any on the horizon. Thus, perhaps researchers and developers should apply the defense-in-depth strategy to see if it provides better application security than a single line of defense. In this department, the author explores its implications for application protection technology and research.

Index Terms:

defense-in-depth, software security, software development, attack, software tools

Citation:

Martin R. Stytz, "Considering Defense in Depth for Software Applications," IEEE Security and Privacy, vol. 2, no. 1, pp. 72-75, Jan. 2004, doi:10.1109/MSECP.2004.1264860

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.