An engineering process for security patterns application in component based models

被引：7

作者：

Bouaziz, Rahma ^{[1
]}

Kallel, Slim ^{[2
]}

Coulette, Bernard ^{[1
]}

机构：

[1] Univ Toulouse, IRIT, Toulouse, France

[2] Univ Sfax, ReDCAD, Sfax, Tunisia

来源：

2013 IEEE 22ND INTERNATIONAL WORKSHOP ON ENABLING TECHNOLOGIES: INFRASTRUCTURE FOR COLLABORATIVE ENTERPRISES (WETICE) | 2013年

关键词：

Component; Component based systems; Security patterns; Process; Aspects; SPEM;

D O I：

10.1109/WETICE.2013.27

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

Security engineering with patterns is currently a very active area of research. Security patterns - an adaptation of Design Patterns to security - capture experts' experience in order to solve recurrent security problems in a structured and reusable way. In this paper, our objective is to describe an engineering process, called SCRIP (SeCurity patteRn Integration Process), which provides guidelines for integrating security patterns into component-based models. SCRIP defines activities and products to integrate security patterns in the whole development process, from UML component modeling until aspect code generation. The definition of SCRIP has been made using the OMG standard Software and System Process Engineering Meta-model (SPEM). We are developing a CASE tool to support that process.

引用

页码：231 / 236

页数：6

共 15 条

[1] [Anonymous], P 4 INT WORKSH SOFT
[2] Applying Security Patterns for Component Based Applications Using UML Profile
Bouaziz, Rahma
Coulette, Bernard
[J]. 15TH IEEE INTERNATIONAL CONFERENCE ON COMPUTATIONAL SCIENCE AND ENGINEERING (CSE 2012) / 10TH IEEE/IFIP INTERNATIONAL CONFERENCE ON EMBEDDED AND UBIQUITOUS COMPUTING (EUC 2012), 2012, : 186 - 193
[3] Secure Component Based Applications Through Security Patterns
Bouaziz, Rahma
Coulette, Bernard
[J]. 2012 IEEE INTERNATIONAL CONFERENCE ON GREEN COMPUTING AND COMMUNICATIONS, CONFERENCE ON INTERNET OF THINGS, AND CONFERENCE ON CYBER, PHYSICAL AND SOCIAL COMPUTING (GREENCOM 2012), 2012, : 749 - 754
[4] Cinneide M. O, 2002, P 4 INT WORKSH PRINC, P162
[5] Devanbu P. T., 2000, P C FUT SOFTW ENG
[6] El Boussaidi G, 2007, P INT COMP SOFTW APP, P97
[7] Fernandez EB, 2007, INTEGRATING SECURITY AND SOFTWARE ENGINEERING: ADVANCES AND FUTURE VISIONS, P107
[8] Using aspects to design a secure system
Georg, G
Ray, I
France, R
[J]. EIGHTH IEEE INTERNATIONAL CONFERENCE ON ENGINEERING OF COMPLEX COMPUTER SYSTEMS, PROCEEDINGS, 2002, : 117 - 126
[9] Kajsa P, 2010, LECT NOTES COMPUT SC, V5901, P540
[10] Ortiz R, 2010, LECT NOTES COMPUT SC, V6426, P672

← 1 2 →