An Architecture-Centric Approach to Detecting Security Patterns in Software
نویسندگان
چکیده
Today, software security is an issue with increasing importance. Developers, software designers, end users, and enterprises have their own needs w.r.t. software security. Therefore, when designing software, security should be built in from the beginning, for example, by using security patterns. Utilizing security patterns already improves the security of software in early software development stages. In this paper, we show how to detect security patterns in code with the help of a reverse engineering tool-suite Bauhaus. Specifically, we describe an approach to detect the Single Access Point security pattern in two case studies using the hierarchical reflexion method implemented in Bauhaus.
منابع مشابه
Quantitative evaluation of software security: an approach based on UML/SecAM and evidence theory
Quantitative and model-based prediction of security in the architecture design stage facilitates early detection of design faults hence reducing modification costs in subsequent stages of software life cycle. However, an important question arises with respect to the accuracy of input parameters. In practice, security parameters can rarely be estimated accurately due to the lack of sufficient kn...
متن کاملAnalysis of residential complexes with the approach of space syntax in terms of mass crime (Case Study: Shiraz Residential complexes)
Various factors affect the degree of mass crime of an environment, including social, economic, and physical factors. The purpose of this research is to investigate the role of the physical components of an environment on mass crime rate. In this regard, open spaces between residential complexes were selected as the case studies and based on five outdoor patterns including linear pattern, disper...
متن کاملArchitecture-centric testing for security
This thesis presents a novel architecture-centric approach, which uses Implied Scenarios (IS) to detect design-vulnerabilities in the software architecture. It reviews security testing approaches, and draws on their limitations in addressing unpredictable behaviour in the face of evolution. The thesis introduces the concept of Security IS as unanticipated (possibly malicious) behaviours that in...
متن کاملComponent - Based Platform for a Virtual University Information System
Design ideas for a Virtual University Information System, VUIS, are presented. The design is an interface-centric component-based architecture. Basic services are decomposed into sets of monadic services, each of which is implemented as a reusable software EJB component. The interaction patterns and communication interfaces between components to realise foreseen and un-foreseen basic services a...
متن کاملTowards a quantitative assessment of security in software architectures
Software patterns are key building blocks used to construct the architecture of a software system. Patterns also have an important role during the architecture assessment phase, as they represent the design rationale, which is central to evaluation. This work presents a quantitative approach to assess the security of a pattern-based software architecture. In particular, security patterns are us...
متن کامل