An Approach to Separating Security Concerns in E-Commerce Systems at the Architecture Level

Author

Yang, Chunhua ; Wan, Jiancheng

Author_Institution

Sch. of Comput. Sci. & Technol., Shandong Univ., Qingdao

fYear

2008

fDate

3-5 Aug. 2008

Firstpage

749

Lastpage

753

Abstract

Security is a requisite and vital concern that should be addressed in e-commerce systems. Traditionally, to add security properties to the application, developers had to specify when, where and how to apply what security policies manually. Such a process is often complicate and error-prone. This paper describes an aspect oriented approach to separating security and application concerns at the architecture level. In the approach, security and application concerns are specified in security aspect models and a base model separately. By specifying the crosscutting relationship between them, the two kinds of models are combined together through weaving. The weaving is based on process algebras and is automatic. Separating security aspects at the early stage of software development can promote maintainability and traceability of the system.

Keywords

electronic commerce; object-oriented programming; process algebra; security of data; software engineering; aspect oriented software development; e-commerce systems; process algebras; security aspect models; security separation; Algebra; Application software; Computer architecture; Computer science; Computer security; Electronic commerce; Information security; Programming; Protection; Weaving; Aspect oriented software development; E-commerce; Security; Separation of concerns;

fLanguage

English

Publisher

ieee

Conference_Titel

Electronic Commerce and Security, 2008 International Symposium on

Conference_Location

Guangzhou City

Print_ISBN

978-0-7695-3258-5

Type

conf

DOI

10.1109/ISECS.2008.59

Filename

4606167