期刊名称:International Journal of Computer Science and Information Technologies
电子版ISSN:0975-9646
出版年度:2010
卷号:1
期号:3
页码:185-189
出版社:TechScience Publications
摘要:The importance of the software security has been profound, since most attacks to software systems are based on vulnerabilities caused by poorly designed and developed software. Design flaws account for fifty percent of security problems and risk analysis plays essential role in solid security problems. Security Patterns are proposed that offer the security at the architecture level in analogy to design patterns. Determination of up to what extent specific security patterns shield from known STRIDE attacks to architecture is a major task. In this paper, we want to validate security patterns approach for architectures, using Executable UML Model-driven Architecture development and Layered Security Architecture. These results encourage the new research area of Web engineering Navigational Development Technique. Initially we look at authorization using MDA Executable UMLSec. Finally, we validate this by implementing security patterns using Agile Modeling.
关键词:Layered Security Architectures; Agile;Modeling; Security Patterns; Model Driven Architecture;Executable UML.
