Title :
Measuring the interplay of security principles in software architectures
Author :
Buyens, Koen ; Scandariato, Riccardo ; Joosen, Wouter
Author_Institution :
IBBT-Distrinet, Katholieke Univ. Leuven, Leuven, Belgium
Abstract :
Security principles like least privilege and attack surface reduction play an important role in the architectural phase of security engineering processes. However, the interplay between these principles and the side effects of the application of these secure design strategies on architectural qualities like maintainability have not been studied so far. Therefore it is hard to make informed trade-off decisions between security principles and between security and other qualities. This paper tackles this problem from a quantitative perspective by presenting the experimental results in the context of three case studies.
Keywords :
security of data; software architecture; software metrics; software quality; interplay measurement; security engineering process; software architectural quality; Authentication; Authorization; Maintenance engineering; Permission; Phase measurement; Security; Software architecture; Software engineering; Software maintenance; Software measurement;
Conference_Titel :
Empirical Software Engineering and Measurement, 2009. ESEM 2009. 3rd International Symposium on
Conference_Location :
Lake Buena Vista, FL
Print_ISBN :
978-1-4244-4842-5
Electronic_ISBN :
1938-6451
DOI :
10.1109/ESEM.2009.5315968
