Security in software architecture: A case study

被引：10

作者：

Sachitano, A

Chapman, RO

Hamilton, JA

机构：

来源：

PROCEEDINGS FROM THE FIFTH IEEE SYSTEMS, MAN AND CYBERNETICS INFORMATION ASSURANCE WORKSHOP | 2004年

关键词：

software architecture; security;

D O I：

10.1109/IAW.2004.1437841

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

The idea of ensuring that non-functional requirements such as maintainability, performance, reusability, reliability, and others are designed and built in to new software is not a new one. However, software security as a particular non-functional requirement of software systems is all too often addressed late in the software development process. As a result, the security of such software systems is poor and can lead to security compromises (such as theft of service or information), increased costs in maintaining the software, and many indirect costs such as system downtime, loss of productivity, etc. This paper will survey existing research into architecting and engineering security and will present this material along with a case study of Daniel J. Bernstein's qmail Internet mail server software.

引用

页码：370 / 376

页数：7

共 17 条

[1] Anderson Ross., 2001, SECURITY ENG GUIDE B
[2] BERNSTEIN D, 2001, 20011003 SMTP
[3] BERNSTEIN D, 2001, QMAIL SECURITY 1201
[4] BERNSTEIN D, 2001, QMAIL FAQ 1201
[5] *CERT, 2003, CERT COORD CTR HOM
[6] CHUNG L, 1995, P 1995 C CTR ADV STU, P13
[7] FEUSTEL EA, 1998, ACM SIGOPS OPERATING, P3
[8] Gomaa H., 2000, Proceedings Second International Workshop on Software and Performance. WOSP2000, P117, DOI 10.1145/350391.350418
[9] GUERRA PA, 2003, P 9 EUR SOFTW ENG C, P375
[10] JURJENS J, 2002, P 2002 ACM S APPL CO, P1024

← 1 2 →