An S-vector for Web Application Security Management
Authors: Russell Barton, William Hery, and Peng Liu
Existing security scoring methods are expensive to implement, lack management orientation and are “best practice” based, and thus have only transient meaning. This paper proposes a web application security assessment method based on a security scoring vector (S-vector). The S-vector assessment method would be used by IT administrators to manage security of their web applications. It shares some analogous features with the R-value for insulation.
