Security design analysis
نویسنده
چکیده
Risk has always motivated security in general terms; both assurance and IT governance approaches to security begin with a focus on risk, but the connection between risk and technical security is soon lost. As a result it is usually impossible to quantify the value of security features, or give metrics for the value of a security design compared to alternatives. This thesis describes the Security Design Analysis Framework (SeDAn), which relates a system design to its security environment (security goals, organisations, users, and attackers), allowing the connection between systematic risk and security requirements to be maintained and analysed. SeDAn innovations include: modelling the flexible relationships between organisations, assets and security goals in emerging networked systems; security requirements that constrain service behaviour; and the decomposition of systematic risk to sub-systems, allowing implementers to relate components of a system to their organisational and physical context. The framework also provides quality metrics for complete protection strategies, including: the value of security requirements in terms of risk; the degree of trust, or assurance, required of system components; and the balance between security and functional liveness. The effectiveness of SeDAn is demonstrated in practical tooling and a substantial industrial case-study. The proof-of-concept tool is capable of managing security requirements, and supporting the analysis of realistic systems. It is also able to exchange models with proprietary UML design tools, and hence integrate with standard engineering environments. The case study demonstrates the whole process of risk analysis and security design for a realistic industrial system, which includes a collaborative workflow between several companies (each with different assets and security concerns), distributed databases and queries, and specialised security goals. In summary, this thesis demonstrates the feasibility of a new security analysis and design framework, which maintains the vital connection between the requirements for security controls and systematic risks.
منابع مشابه
Mapping of McGraw Cycle to RUP Methodology for Secure Software Developing
Designing a secure software is one of the major phases in developing a robust software. The McGraw life cycle, as one of the well-known software security development approaches, implements different touch points as a collection of software security practices. Each touch point includes explicit instructions for applying security in terms of design, coding, measurement, and maintenance of softwar...
متن کاملSecurity of Sponge structures
Sponge structure is a structure widely used in the design of cryptographic algorithms that reduces the design of the algorithms to the design of a permutation or pseudo-random function. The development of sponge-based algorithms and the selection of designs based on this structure in SHA3 and CAESAR competitions increase the need to examine its security against various types of attacks. In the ...
متن کاملSecurity Analysis of Lightweight Authentication Scheme with Key Agreement using Wireless Sensor Network for Agricultural Monitoring System
Wireless sensor networks have many applications in the real world and have been developed in various environments. But the limitations of these networks, including the limitations on the energy and processing power of the sensors, have posed many challenges to researchers. One of the major challenges is the security of these networks, and in particular the issue of authentication in the wireles...
متن کاملApplying design ideas to promote security of urban spaces
Security is one of the most critical factors affecting the quality of urban spaces. Nowadays, most of these spaces have become merely pathways with neither social life nor sense of belonging to it. Insufficiency of public surveillance along with weak sense of control and surveillance results in spaces with high crime rate. In the late 60s and early 70s, high crime statistics in open urban space...
متن کاملExploring the role of architectural design in creating a sense of security and residential satisfaction in affordable residential complexes for young Iranian low-income families
The most important requirement of the family after food and clothing is housing. It also plays an important role in providing safety and security etc. for the family. Security is important therefore it is placed among other human physiological needs like food, shelter and sanitation. Security feeling is one of the main factorsin stability of urban spaces. It can be said that secure enviro...
متن کاملExamine the components of organizational agility to design a framework for achieving agility in social security organization
Background and purpose: The purpose of the study was to examine the dimensions and components of organizational agility to design a framework. Materials and methods: The methodology is descriptive. The statistical society was selected from employees in the Social Security organization of Bojnourd (N=148). The samples were 132 staff that return the questionaries. The data collected by a researc...
متن کامل