search menu icon-carat-right cmu-wordmark

Using Malware Analysis to Improve Security Requirements on Future Systems

August 2015 Conference Paper
Nancy R. Mead, Jose A. Morales

In this paper, the authors propose to improve how security requirements are identified.

Publisher:

IEEE

Abstract

In this position paper, the authors propose to enhance current software development lifecycle models by including use cases, based on previous cyberattacks and their associated malware, and to propose an open research question: Are specific types of systems prone to specific classes of malware exploits? If this is the case, developers can create future systems that are more secure, from inception, by including use cases that address previous attacks.