Fraunhofer-Gesellschaft

Publica

Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

A software assistant for the development of secure, usable and economically meaningful software

 
: Ruff, Christopher; Horch, Andrea

:
Volltext (PDF; )

Daimi, Kevin (Ed.) ; Computer Science, Research, Education & Applications -CSREA-:
International Conference on Security & Management, SAM 2018. Proceedings : Publication of the 2018 World Congress in Computer Science, Computer Engineering, & Applied Computing (CSCE '18), July 30-August 02, 2018, Las Vegas, Nevada, USA
Las Vegas: CSREA Press, 2018
ISBN: 1-60132-488-X
S.136-142
International Conference on Security & Management (SAM) <2018, Las Vegas/Nev.>
World Congress in Computer Science, Computer Engineering, & Applied Computing (CSCE) <2018, Las Vegas/Nev.>
Englisch
Konferenzbeitrag, Elektronische Publikation
Fraunhofer IAO ()

Abstract
Software developers of IT security solutions commonly focus on subjects of privacy and security and fail to consider other relevant aspects of the development such as the dimensions of socio-economics and usability. However, these aspects are as important as security factors in order to be successful in the market. Especially software, which requires user action in order to set up customized security configurations to protect their systems, needs to provide a very good usability in order to support the users in the decision making process in a meaningful way. Similarly, neglecting socio-economic factors renders even the most secure software meaningless, if only few people are actually using it. Currently, there is no reliable and holistic approach for the development of security-focused, usable and economically meaningful software, to avoid common failures of software development. To fill this gap, the project CUES has developed a software assistant called 'the Wizard' which guides the developers of IT security solutions through the whole software development process. The Wizard assists the developers by identifying present and possible problems and by deriving adequate solutions for these problems. An example for a solution provided by the Wizard for developers who are experienced in the development of security systems but need to create a user interface for the very first time might be to apply Norman's Design Principles.

: http://publica.fraunhofer.de/dokumente/N-520065.html