Secure Services: Integrating Security Dimension into the Sa&d
نویسنده
چکیده
Services security is often assimilated to a set of software solutions (Firewall, data encryption.) but rarely consider the organizational security rules as a fundamental part of the Services security policy. With the increasing use of new Services architectures (Open Services architecture, distributed database, multi web server, multi-tier application servers) security leaks become crucial and every security problem is harmful to the organization business continuity. To reduce and detect major security risks at an earlier step of the Services project, our approach is based on different knowledge exchange between end users, analyst, designers and developers collaborating at the Services project. The knowledge is mainly oriented to the detection of weak signals inside the organization. In this paper, we present the different knowledge surroundings an Services project and a knowledge pattern structure that can be used for the formalization aspects of the established exchange that should be established during the Services project between the different participants.
منابع مشابه
Culture dimensions of information systems security in Saudi Arabia national health services
The study of organisations’ information security cultures has attracted scholars as well as healthcare services industry to research the topic and find appropriate tools and approaches to develop a positive culture. The vast majority of studies in Saudi national health services are on the use of technology to protect and secure health services information. On the other hand, there is a lack of ...
متن کاملFormal Security Analysis of the DNP3-Secure Authentication Protocol
Supervisory Control and Data Acquisition (SCADA) systems are one of the key foundations of many utility industries and critical infrastructures. The Distributed Network Protocol Version 3 (DNP3) is one of the non-proprietary protocols used to facilitate substation communications within SCADA networks via serial-lines or TCP/IP protocols. DNP3 is the defacto standard for powergrid automation, ho...
متن کاملEnhancing Patient Information Sharing through Social Networks
Currently, there is an effort for empowering patient self-care and improving the traditional healthcare delivery models by expanding the concept of healthcare though the provision of advanced online healthcare services. Those services require increased level of information flow and collaboration among patients and healthcare professionals. This collaboration and patient information sharing can ...
متن کاملUsing SecureBPMN for Modelling Security-Aware Service Compositions
Today, many systems are built by orchestrating existing services, custom developed services, as well as interaction with users. These orchestrations, also called composition plans, are often described using high-level modelling languages that allow for simplifying 1) the implementation of systems by using generic execution engines and 2) the adaption of deployed systems to changing business nee...
متن کاملEnsuring Feasible Communication for Integrating Wireless Sensor Networks Into The Internet of Things
Wireless sensor network is a group of specialized transducer with communication infrastructure for monitoring and recording at diverse location. There is a need for a secure channel between a sensor node and an internet host, during the integration of wireless sensor networks into the internet of things. By using Security protocols for Sensor networks (SPINS) scheme, it is possible to secure co...
متن کامل