Abstract: “The field of security metric and security evaluation is multifaceted and multidimensional in nature, which needs great care and systematic approach to evaluate. The security evaluation is a continuous process that should be carried out throughout the different software development stages and also in the operational phases. In practice the secure software development is based upon the guidelines and rules for secure design and coding. Even if the secure software development process and guidelines are to be followed, the resultant level of security remains unknown to the development team. A security evaluation framework that can be applied at the early system development stages,the derived metrics that act as indicators of security level of the system and point out the most critical component of the system , in order to provide the basis for the system developers to take the design decisions regarding security is the foremost requirement of secure software development. In this study we h”

Keywords: Software architecture, Security Metrics, Security Evaluation