Description

INTRODUCTION

Software security management is becoming an essential societal

and cultural service demanded not only by governmental organizations but

also by private establishments nowadays. Overall system security is

heavily dependent on software that resides in many hardcore embedded

chips but also in a wide area of distributed network elements. Most of the

software system security issues burst from many non-compliance in the

operational modes of software applications and executable managerial service

functions. The security problems have multiple modes of exploitation based

on system vulnerabilities and also on the planned attacks on the information

assets. The thin layer of segregation between hardware and software

transforms the outside attacks into an executable deterministic threat or a

probabilistic exploitable risk based on the existing vulnerable noncompliances.