Uluslararası Teknolojik Bilimler Dergisi

Yazarlar: Güncel SARIMAN, Habibe ÇELİKTEN

Konular:Mühendislik, Ortak Disiplinler

Anahtar Kelimeler:Secure software development,Software rules,Software life cycles

Özet: Abstract: With the accelerated speed of technological developments, the internet and mobility have started to effect more into people's daily life. The integration of our life with the internet makes it compulsory to make our personal information and our produced data safer. With the widespread use of the Internet, increasing security vulnerabilities today require systems to be more protected and stronger as infrastructure. These infrastructures are network, system and software based in information systems. Network and system architecture-based security measures redirect to the security rules after the products are made available for end users. In software products, costs are reduced by taking security measures while it is still under construction. In this study, an application model has been developed about the inclusion of the security principle in the software development process while the projects are still in development phase to make the software more secure. Based on the Safe Software Development Guide published by TÜBİTAK, the model designed for how to apply security testing methods, definition of rules, and what developed code may lead weaknesses during the development phase of the projects is explained. It is modeled that the application security rules are modeled by dividing the developed code into the parts and entered the rules into the report prepared within the scope of the study, in which lines and blocks of code are applied. Thus, end users and commercial companies will be able to use the software without any doubt which are developed in a secure structure with the prepared security report. In order to show that the designed model is usable, the model was used by a small software team and a questionnaire was applied to the developers.

---