OATAO - Open Archive Toulouse Archive Ouverte Open Access Week

Security Patterns Modeling and Formalization for Pattern-based Development of Secure Software Systems

Hamid, Brahim and Gürgens, Sigrid and Fuchs, Andreas Security Patterns Modeling and Formalization for Pattern-based Development of Secure Software Systems. (2016) Innovations in Systems and Software Engineering, 12 (2). 109-140. ISSN 1614-5046

[img]
Preview
(Document in English)

PDF (Author's version) - Requires a PDF viewer such as GSview, Xpdf or Adobe Acrobat Reader
1MB

Official URL: http://dx.doi.org/10.1007/s11334-015-0259-1

Abstract

Pattern-based development of software systems has gained more attention recently by addressing new challenges such as security and dependability. However, there are still gaps in existing modeling languages and/or formalisms dedicated to modeling design patterns and the way how to reuse them in the automation of software development. The solution envisaged here is based on combining metamodeling techniques and formal methods to represent security patterns at two levels of abstraction to fostering reuse. The goal of the paper is to advance the state of the art in model and pattern-based security for software and systems engineering in three relevant areas: (1) develop a modeling language to support the definition of security patterns using metamodeling techniques; (2) provide a formal representation and its associated validation mechanisms for the verification of security properties; and (3) derive a set of guidelines for the modeling of security patterns within the integration of these two kinds of representations.

Item Type:Article
Additional Information:Thanks to Springer editor. The original PDF can be found at: https://link.springer.com/article/10.1007/s11334-015-0259-1
HAL Id:hal-01592038
Audience (journal):International peer-reviewed journal
Uncontrolled Keywords:
Institution:French research institutions > Centre National de la Recherche Scientifique - CNRS (FRANCE)
Université de Toulouse > Institut National Polytechnique de Toulouse - INPT (FRANCE)
Université de Toulouse > Université Toulouse III - Paul Sabatier - UPS (FRANCE)
Université de Toulouse > Université Toulouse - Jean Jaurès - UT2J (FRANCE)
Université de Toulouse > Université Toulouse 1 Capitole - UT1 (FRANCE)
Other partners > Institut für Sichere Informationstechnologie - Fraunhofer SIT (GERMANY)
Laboratory name:
Statistics:download
Deposited By: IRIT IRIT
Deposited On:11 Sep 2017 09:12

Repository Staff Only: item control page