[PDF][PDF] Towards a quantitative assessment of security in software architectures
13th Nordic Workshop on Secure IT Systems, Copenhagen, Denmark, 2008•wwwold.iit.cnr.it
Software patterns are key building blocks used to construct the architecture of a software
system. Patterns also have an important role during the architecture assessment phase, as
they represent the design rationale, which is central to evaluation. This work presents a
quantitative approach to assess the security of a pattern-based software architecture. In
particular, security patterns are used to measure to what extent an architecture is protected
against relevant security threats. To this aim, threat coverage metrics are associated to …
system. Patterns also have an important role during the architecture assessment phase, as
they represent the design rationale, which is central to evaluation. This work presents a
quantitative approach to assess the security of a pattern-based software architecture. In
particular, security patterns are used to measure to what extent an architecture is protected
against relevant security threats. To this aim, threat coverage metrics are associated to …
Abstract
Software patterns are key building blocks used to construct the architecture of a software system. Patterns also have an important role during the architecture assessment phase, as they represent the design rationale, which is central to evaluation. This work presents a quantitative approach to assess the security of a pattern-based software architecture. In particular, security patterns are used to measure to what extent an architecture is protected against relevant security threats. To this aim, threat coverage metrics are associated to security patterns and an aggregation algorithm is proposed to compute an overall security indicator. The proposed approach helps in comparing design alternatives and choosing the best candidate.
wwwold.iit.cnr.it
以上显示的是最相近的搜索结果。 查看全部搜索结果