DocumentCode
2322487
Title
Extending Model Driven Architecture with Software Security Assessment
Author
Tang, Xucheng ; Shen, Beijun
Author_Institution
Sch. of Software, Shanghai Jiao Tong Univ., Shanghai, China
fYear
2009
fDate
8-10 July 2009
Firstpage
436
Lastpage
441
Abstract
Security plays a crucial role in software systems. Existing research efforts have addressed the problem of how to model the security aspect of software at a particular phase of software lifecycle. However, security is still not integrated in all the phases of software lifecycle. In this paper we introduce how classical MDA framework can be extended to consider the security aspect. Such extension offers early assessment and early validation of security requirement, which helps to discover security flaws early in the software development process and reduce the cost of removing flaws.
Keywords
security; software engineering; model-driven architecture; software development; software lifecycle; software security assessment; Access control; Application software; Computer architecture; Costs; Data mining; Information security; Performance analysis; Programming; Software systems; Unified modeling language; Model-driven Architecture; Software Security Assessment;
fLanguage
English
Publisher
ieee
Conference_Titel
Secure Software Integration and Reliability Improvement, 2009. SSIRI 2009. Third IEEE International Conference on
Conference_Location
Shanghai
Print_ISBN
978-0-7695-3758-0
Type
conf
DOI
10.1109/SSIRI.2009.21
Filename
5325338
Link To Document