Towards Automatic Security Scenario Generation
نویسندگان
چکیده
Software security has become a crucial component of any software system in today’s market. However, the development of secure software is still a maturing process. Software architecture (SA) assessment methods have gained increasing attention in recent years. Most of these evaluation techniques are scenario-based, and thus depend heavily on the quality of the scenarios selected for their evaluation. In this paper, we present a systematic approach for the generation of coherent security scenarios for software architecture that can be used during a scenario-based security assessment. Our approach effectively incorporates security requirements, patterns and threats into a concrete security scenario. The work in this paper is part of on-going research to define a scenario-based security assessment methodology for SA.
منابع مشابه
An Advanced Hybrid Honeypot for Providing Effective Resistance in Automatic Network Generation
Increasing usage of Internet and computer networks by individuals and organizations and also attackers’ usage of new methods and tools in an attempt to endanger network security, have led to the emergence of a wide range of threats to networks. A honeypot is one of the basic techniques employed for network security improvement. It is basically designed to be attacked so as to get the attackers’...
متن کاملSecurity Requirements Analysis of ADS-B Networks
Due to their many advantages over their hardwarebased counterparts, Software Defined Radios are becoming the new paradigm for radio and radar applications. In particular, Automatic Dependent Surveillance-Broadcast (ADS-B) is an emerging software defined radar technology, which has been already deployed in Europe and Australia. Deployment in the US is underway as part of the Next Generation Tran...
متن کاملSecurity-Constrained Unit Commitment Considering Large-Scale Compressed Air Energy Storage (CAES) Integrated With Wind Power Generation
Environmental concerns and depletion of nonrenewable resources has made great interest towards renewable energy resources. Cleanness and high potential are factors that caused fast growth of wind energy. However, the stochastic nature of wind energy makes the presence of energy storage systems (ESS) in wind integrated power systems, inevitable. Due to capability of being used in large-scale sys...
متن کاملTowards Early Warning Systems - Challenges, Technologies and Architecture
We present the architecture of an automatic early warning system (EWS) that aims at providing predictions and advice regarding security threats in information and communication technology without incorporation of cognitive abilities of humans and forms the basis for drawing a situation picture. Our EWS particularly targets the growing malware threat and shall achieve the required capabilities b...
متن کاملTowards Automatic Generation of Formal Scenarios Specifications from Real-Time Reactive Systems Requirements Written in NL
This paper describes a new method for automatic generation of formal scenario-based specifications from requirements written in structured natural language (NL). The goal is to allow for completion of the formalization of the real-time reactive systems development process from users’ requirements. We believe this method would guarantee the correctness and the completeness of the scenarios gener...
متن کامل