This method utilises proven-in-practice methodologies such as Six Sigma Define, Measure, Analyse, Improve and Control (DMAIC), Monte Carlo simulation and Orthogonal Security Defect Classification (OSDC).
Significant qualitative improvements of quality management are provided by OSDC. Therefore, the perceived deficiencies are eliminated, which significantly improves the security software quality thus increasing information security and reducing the computer fraud risk.
In order to emulate the security software scenario, the original defect classification is remapped to OSDC based on the ODC-OSDC mapping matrix published by Hunny .
Sensitivity Analysis) to complement the quantitative analysis with qualitative analysis provided by OSDC;
The proposed practical method applies Six Sigma DMAIC, Monte Carlo simulation and OSDC methodologies.
To emulate the scenario of security software, the ODC classification was remapped to OSDC by using ODC-OSDC mapping matrix;
Consider and prioritise defects by type as identifid in the sensitivity analysis (#3 above) to complement the quantitative analysis with qualitative analysis provided by OSDC;