JUCS - Journal of Universal Computer Science 15(15): 3059-3078, doi: 10.3217/jucs-015-15-3059
A System for Managing Security Knowledge using Case Based Reasoning and Misuse Cases
expand article infoCorrado Aaron Visaggio, Francesca De Rosa
‡ University of Sanni, Benevento, Italy
Open Access
Making secure a software system is a very critical purpose, especially because it is very hard to consolidate an exhaustive body of knowledge about security risks and related countermeasures. To define a technological infrastructure for exploiting this knowledge poses many challenges. This paper introduces a system to capture, share and reuse software security knowledge within a Software Organization. The system collects knowledge in the form of misuse cases and makes use of Case Based Reasoning for implementing knowledge management processes.
misuse case, case base reasoning, security knowledge management