Glossary
AccountabilityFor software entities that act as users (e.g., proxy agents, Web services, peer processes), the ability to record and track security-relevant actions of the software-as-user, with attribution of responsibility.
Ambiguity analysisIdentification and elimination of ambiguities in the software architecture and design due to ambiguous requirements or insufficiently specified architecture and design.
Architectural risk analysisA high-level evaluation of a software system involving (1) characterization of the system to clearly understand its nature; (2) the identification of potential threats to the system; (3) an assessment of the system’s vulnerability to attack; (4) an estimate of the likelihood of potential threats; (5) ...
Get Software Security Engineering: A Guide for Project Managers now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
