Academia.eduAcademia.edu

Outline

Title
Abstract
Workshop Summary
References
All Topics
Computer Science
Software Engineering

Software engineering for secure systems

Profile image of Mattia MongaMattia Monga
https://doi.org/10.1109/ICSE.2005.1553652
visibility

description

3 pages

link

1 file

Abstract
sparkles

AI

This workshop summary from SESS'05 discusses techniques for building and validating secure applications, bringing together experts from software engineering and security. The workshop featured presentations on architectural security, evaluation of trust and risk, and specific methodologies for enhancing application security. Key insights included the intrinsic complexity of software, the need for effective elicitation and validation of security requirements, and the importance of run-time monitoring in enforcing security policies.

Related papers

Engineering Secure Software and Systems
Sam Redwine

Lecture Notes in Computer Science, 2011

The use of general descriptive names, registered names, trademarks, etc. in this publication does not imply, even in the absence of a specific statement, that such names are exempt from the relevant protective laws and regulations and therefore free for general use.

View PDFchevron_right
Guest editorial: security requirements engineering: past, present and future
Haris Mouratidis

Requirements Engineering, 2010

View PDFchevron_right
1 Security Requirements Engineering: A Survey
Hadar Ziv, D. Richardson

2008

Security has become a primary and prevalent concern for software systems. The past decade has witnessed a tremendous increase in not only the sheer number of attacks but also the ease with which attacks can be performed on systems. We believe that in order to protect a system against harm (intended or not), attention must be given to its requirements. Similar to other system properties and quality attributes, security must be considered from inception, in other words starting with requirements. Security is a nonfunctional requirement (NFR) that is increasingly critical in its importance, unique in its requirements, yet must still be integrated with all other functional and non-functional requirements and mapped into successful architectures, designs, and implementation. Similar to other nonfunctional requirements, the unique nature and demands of security make it difficult and often ineffective to specify security concerns using "general purpose " requirements methods. As ...

View PDFchevron_right
Security Software Engineering: Do it the right way
Asim El sheikh

Proceedings of the 6th WSEAS International …, 2007

Secure software development is one of the most information system issues that raised through the use of the internet and networked systems. The importance of developing secure software increases. In this work we present a process for the development of security critical software projects and an overview of some of the existing processes, standards, life cycle models that support the secure software development. It is a guide to the common body of knowledge for producing, acquiring, and sustaining secure software.

View PDFchevron_right
A Survey of Modelling and Analysis Approaches for Architecting Secure Software Systems
Kendra Cooper

2007

There has been a growing interest in investigating methodologies to support the development of secure sys- tems in the software engineering research community. Re- cently, much attention has been focused on the modelling and analysis of security properties for systems at the soft- ware architecture design level. The potential benefits of this architecture level work are substantial: security flaws can be detected and removed earlier in the software de- velopment life-cycle. This reduces development time, re- duces development cost, and improves the quality of the resulting system. As a result of this attention, a wide variety of approaches have been proposed in the literature. At this point, a sur- vey for researchers involved in the problem of systemat- ically modelling and analyzing software architecture de- sign that have security properties would be of value to the community. This paper presents such a survey; it includes a discussion of semi-formal, formal, integrated semi-form...

View PDFchevron_right
Modeling and Validating Security and Confidentiality in System Architectures
Aaron Greenhouse

2021

The importance of security in computer and information systems is increasing as network-connected computer systems become more ubiquitous. The objective of security is to verify that the computing platform is secured and that data and information are properly accessed and handled by users and applications, ensuring data confidentiality and integrity. To develop a framework for modeling and verifying security as a data quality attribute, designers need to identify parameters and variables with the expressive power to capture and represent security models and determine the type of analysis to enable. This report presents an approach for modeling and validating confidentiality based on the Bell–LaPadula security model using the Architecture Analysis and Design Language (AADL). The report describes the Bell–LaPadula security model and elaborates how security and Bell–LaPadula attributes are mapped to concepts and represented in AADL. It then describes modeling and validating security in...

View PDFchevron_right
Secure Systems Development -- The Evolving Integration of Validation and Verification
Klaus P . Jantke

The paper is aiming at a step towards a process model for the development of systems that are valid in the sense of meeting both specified security requirements and diverse user needs and expectations. The ultimate goal is to certify a system's validity. Derived from IT security evaluation criteria, the paper is outlining a certain integration of two independently developed process models in a way that validation and verification are becoming truly dovetailed. The discussed evaluation process model is currently being developed and implemented in the authors' IT security evaluation facility (ITSEF). It is one of the tar- gets of this publication to bring academic research and development on validation and verification closer to the IT security evaluation practice.

View PDFchevron_right
Incorporating Security Requirements into the Software Development Process
Maria Karyda

2005

Security requirements, such as authentication, confidentiality, authorization, availability, integrity and privacy, are becoming extremely common in software development processes. However, in practical terms, it has been proved that only rarely the developed software fulfils the related security requirements. The reason for this is twofold. On one hand software developers are not security experts and thus they are not competent in selecting and applying the appropriate security countermeasures. On the other hand, many security requirements are intrinsically difficult to deal with. This paper aims to address both of the aforementioned issues and to introduce potential solutions. It starts by analysing the major security requirements, and goes on to explore how they can be mapped into concrete security solutions or/and mechanisms. Then, it examines how the fulfilment of security requirements influences the choice of development methodologies and paradigms (with the emphasis being on the design phase), so that the requirements are effectively satisfied. The discussion covers object-oriented and aspect-oriented programming, the Rational Unified Process, UML and UMLsec, as well as security patterns, with regard to the ways they can support the use of security solutions or/and mechanisms.

View PDFchevron_right
A Framework for Security Requirements Engineering
Robin Laney

Proceedings of the 2006 …, 2006

This paper presents a framework for security requirements elicitation and analysis, based upon the construction of a context for the system and satisfaction arguments for the security of the system. One starts with enumeration of security goals based on assets in the system. These goals are used to derive security requirements in the form of constraints. The system context is described using a problem-centered notation, then this context is validated against the security requirements through construction of a satisfaction argument. The satisfaction argument is in two parts: a formal argument that the system can meet its security requirements, and a structured informal argument supporting the assumptions expressed in the formal argument. The construction of the satisfaction argument may fail, revealing either that the security requirement cannot be satisfied in the context, or that the context does not contain sufficient information to develop the argument. In this case, designers and architects are asked to provide additional design information to resolve the problems.

View PDFchevron_right
Security Engineering towards Building a Secure Software
Dr Subhra Prosun Paul

International Journal of Computer Applications, 2013

Information Systems Security is one of the most critical challenges presently facing nearly every one of the organizations. However, making certain security and quality in both information and the systems which control information is a difficult goal necessitating the mixture of two wide research disciplines which are typically separate: security engineering and secure software engineering. Security engineering has an extensive history, and has focused generally on providing advances in security models, techniques and protocols, but it remains in a steady state of the development. Secure software engineering, however, has emerged relatively recently, but is growing quickly and is paying attention on the integration of security into software engineering techniques; models and processes, in order to build up more secure information systems. In the study of security engineering, security described as the protection from harm.It presented the principles of security, the number of security mechanisms and the risk analysis to identify the risk. In the study of secure software engineering, it has been identified a number of challenges that need to establish for developing the secure software system. We also investigated a number of methods and languages that is modeling the security into software systems.

View PDFchevron_right

References (15)

  1. O. E. Demir, P. Devanbu, N. Medvidovic, and E. Wohlstadter, "DISCOA: architectural adaptions for security and QoS,
  2. M. Rits, B. D. Boe, and A. Schaad, "XacT: a bridge between resource management and access control in multilayered applications"
  3. S. Banerjee, C. A. Mattmann, N. Medvidovic, and L. Golubchik, "Leveraging architectural models to inject trust into software systems"
  4. J. Ren, R. Taylor, P. Dourish, and D. Redmiles, "Towards an architectural treatment of software security: A connector-centric approach"
  5. B. D. Win, F. Piessens, J. Smans, and W. Joosen, "Towards a unifying view on security contracts"
  6. T. Verhanneman, F. Piessens, B. D. Win, and W. Joosen, "Requirements traceability to support evolution of access control"
  7. S.-W. Lee, R. Gandhi, and G.-J. Ahn, "Establishing trustworthiness in services of the critical infrastructure through certication and accreditation"
  8. Z. Dwaikat and F. Parisi-Presicce, "Risky trust: Risk-based analysis of software systems"
  9. N. R. Mead and T. Stehney, "Security quality requirements engineering (SQUARE) methodology"
  10. K. Sohr, L. Migge, and G.-J. Ahn, "Articulating and enforcing authorisation policies with UML and OCL"
  11. B. Breech and L. Pollock, "A framework for testing security mechanisms for program-based attacks"
  12. S. Weber, P. Karger, and A. Paradkar, "A software flaw taxonomy: Aiming tools at security"
  13. W. Masri and A. Podgurski, ¡ÈUsing dynamic information flow analysis to detect attacks against applications"
  14. M. Jochen, A. A. Anteneh, L. Pollock, and L. Marvel, "Enabling control over adaptive program transformation for dynamically evolving mobile software validation"
  15. M. Gegick and L. Williams, "Matching attack patterns to security vulnerabilities in software-intensive system designs"

Related papers

Seventh international workshop on Software Engineering for Secure Systems (SESS 2011)
Mattia Monga

Proceedings - International Conference on Software Engineering, 2011

The 7th edition of the SESS workshop aims at providing a venue for software engineers and security researchers to exchange ideas and techniques. In fact, software is at core of most of the business transactions and its smart integration in an industrial setting may be the competitive advantage even when the core competence is outside the ICT field. As a result, the revenues of a firm depend directly on several complex software-based systems. Thus, stakeholders and users should be able to trust these systems to provide data and elaborations with a degree of confidentiality, integrity, and availability compatible with their needs. Moreover, the pervasiveness of software products in the creation of critical infrastructures has raised the value of trustworthiness and new efforts should be dedicated to achieve it. However, nowadays almost every application has some kind of security requirement even if its use is not to be considered critical.

View PDFchevron_right
Introduction to software engineering for secure systems
Mattia Monga

Proceedings of the 2006 international workshop on Software engineering for secure systems - SESS '06, 2006

View PDFchevron_right
Software engineering for security
Premkumar Devanbu

2000

Integrating Security Considerations smoothly into early life-cycle activities: uniform application of cost-benefit analyses to both functional, and security requrements; unified modeling approaches to integrate the engineering of both functional requirements and security requirements. The development of architectures and designs that are easier to adapt to rapidly evolving security policies, and approaches to facilitate the integration of security features into legacy systems. The invention of cogent, flexible economic models of adversary behaviour which can underly the rational design of software copy-protection and watermarking techniques in different application contexts. Better techniques for formulating desirable security properties, and the development of scalable, predictable, static ancl dynamic verification tools to evaluate the security of software systems. The development of automated, robust, flexible infra-structures for post-deployment system administration, that can adapt to the organization's confidentiality, non-repudiation, and trust-delegation requirements.

View PDFchevron_right
A Survey of Modeling and Analysis Approaches for Architecting Secure Software Systems
Kendra Cooper

International Journal of Network Security, 2007

There has been a growing interest in investigating methodologies to support the development of secure systems in the software engineering research community. Recently, much attention has been focused on the modelling and analysis of security properties for systems at the software architecture design level. The potential benefits of this architecture level work are substantial: security flaws can be detected and removed earlier in the software development life-cycle. This reduces development time, reduces development cost, and improves the quality of the resulting system. As a result of this attention, a wide variety of approaches have been proposed in the literature. At this point, a survey for researchers involved in the problem of systematically modelling and analyzing software architecture design that have security properties would be of value to the community. This paper presents such a survey; it includes a discussion of semi-formal, formal, integrated semi-formal and formal, and aspect-oriented approaches. Comparison criteria are defined including: the kinds of notations used to model the security properties (e.g., Petri nets, temporal logic, etc.), whether the approach supports the manual or automated analysis of security properties, the specific security property modelled (e.g., authentication, role-based access control, etc.), and the kind of example system that has been used to illustrate the approach (information, distributed, etc.).

View PDFchevron_right
Security and Trust Requirements Engineering
Nicola Zannone

2005

Integrating security concerns throughout the whole software development process is one of today's challenges in software and requirements engineering research. A challenge that so far has proved difficult to meet. The major difficulty is that providing security does not only require to solve technical problems but also to reason on the organization as a whole. This makes the usage of traditional software engineering methologies difficult or unsatisfactory: most proposals focus on protection aspects of security and explicitly deal with low level protection mechanisms and only an handful of them show the ability of capturing the high-level organizational security requirements, without getting suddenly bogged down into security protocols or cryptography algorithms. In this paper we critically review the state of the art in security requirements engineering and discuss the motivations that led us to propose the Secure Tropos methodology, a formal framework for modelling and analyzing security, that enhances the agent-oriented software development methodology i*/Tropos. We illustrate the Secure Tropos approach, a comprehensive case study, and discuss some later refinements of the Secure Tropos methodology to address some of its shortcomings. Finally, we introduce the ST-Tool, a CASE tool that supports our methodology.

View PDFchevron_right

Related topics

  • Software Engineering
  • Automated Test Generation
    • 580 California St., Suite 400
    San Francisco, CA, 94104
    © 2025 Academia. All rights reserved