Options
SoSPa: A system of security design patterns for systematically engineering secure systems
Publikationstyp
Conference Paper
Date Issued
2015-09
Sprache
English
Start Page
246
End Page
255
Article Number
7338255
Citation
2015 ACM/IEEE 18th International Conference on Model Driven Engineering Languages and Systems, MODELS 2015 - Proceedings: 7338255, 246-255 (2015-11-25)
Contribution to Conference
Publisher DOI
Scopus ID
Publisher
IEEE
Model-Driven Security (MDS) for secure systems development still has limitations to be more applicable in practice. A recent systematic review of MDS shows that current MDS approaches have not dealt with multiple security concerns systematically. Besides, catalogs of security patterns which can address multiple security concerns have not been applied efficiently. This paper presents an MDS approach based on a unified System of Security design Patterns (SoSPa). In SoSPa, security design patterns are collected, specified as reusable aspect models to form a coherent system of them that guides developers in systematically addressing multiple security concerns. SoSPa consists of not only interrelated security design patterns but also a refinement process towards their application. We applied SoSPa to design the security of crisis management systems. The result shows that multiple security concerns in the case study have been addressed by systematically integrating different security solutions.
Subjects
Authentication
Authorization
Crisis management
Permission
Random access memory
System analysis and design
DDC Class
004: Informatik