A discussion is presented of software security metrics, risk management, qualitative and quantitative methods, and security economics. Particular emphasis is given to software quality as a unifying principle. Several examples of the economic impact of security are given.
展开▼