Options
MASC: Modelling architectural security concerns
Publikationstyp
Conference Paper
Date Issued
2015-05
Sprache
English
Start Page
36
End Page
41
Article Number
7167400
Citation
2015 IEEE/ACM 7th International Workshop on Modeling in Software Engineering (MiSE 2015): 7167400, 36-41 (2015-01-01)
Contribution to Conference
Publisher DOI
Scopus ID
Publisher
IEEE
Security decisions are an important part of software architecture design, and thus deserve to be explicitly represented in the design documentation. While UML is the best-known language for creating such documentation, it lacks security specific notations, which makes it difficult to represent the effect of the security decisions. Several security extensions for UML exist in the literature, but they represent security concerns at a lower level of abstraction, or only support a limited subset of security concerns. We propose a new notation, MASC, to model security concerns at the architectural level. It has been designed as an extension of UML, and is based on recurring security concepts that have been distilled from well-known security principles, goals, and patterns. By using our notation, a designer obtains a technique to express security concerns more explicitly in the architectural design documentation.
Subjects
MASC
Notation
Security
Software architecture
UML
DDC Class
004: Informatik