Abstract
Issues related to information security and survivability usually are not considered in the requirements, design, acquisition, and maintenance stages of COTS-based soft-ware development. Security, if considered at all, is generally an afterthought, bolted on after the application has been developed and integrated, as opposed to an initial re-quirement of the proposed system or upgrade to the system.
Recent legislation and regulations elevate issues of information security to the Board and C-level, but few organizations routinely and effectively address issues surrounding the management of risks specific to information security in COTS-based systems.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsAuthor information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2004 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Sledge, C. (2004). The Added Dimension: Information Security in COTS-Based Software Systems. In: Kazman, R., Port, D. (eds) COTS-Based Software Systems. ICCBSS 2004. Lecture Notes in Computer Science, vol 2959. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-24645-9_9
Download citation
DOI: https://doi.org/10.1007/978-3-540-24645-9_9
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-21903-3
Online ISBN: 978-3-540-24645-9
eBook Packages: Springer Book Archive