Paper Info
Title
Towards an architectural treatment of software security: a connector-centric approach
Abstract
Security is a very important concern for software architecture and software components. Previous modeling approaches provide insufficient support for an in-depth treatment of security. This paper argues for a more comprehensive treatment based on software connectors. Connectors provide a suitable vehicle to model, capture, and enforce security. Our approach models security principal, privilege, trust, and context of architectural constituents. Extending our existing architecture description language and support tools, our approach can facilitate describing the security characteristics of an architecture generating enabling infrastructure, and monitoring run-time conformance. Initial results of applying this approach are illustrated through a case study. The contribution of this research is a deeper and more comprehensive treatment of architectural security through software connectors.
Year
DOI
Venue
2005
10.1145/1083200.1083203
ACM SIGSOFT Software Engineering Notes
Keywords
Field
DocType
existing architecture description language,software component,security characteristic,approach models security principal,previous modeling approach,software security,in-depth treatment,comprehensive treatment,connector-centric approach,architectural security,software connector,software architecture,architectural treatment,architecture description language,security
Systems engineering,Software engineering,Software architecture description,Software security assurance,Computer science,Resource-oriented architecture,Reference architecture,Security information and event management,Enterprise information security architecture,Architectural pattern,Computer security model
Journal
Volume
Issue
ISSN
30
4
0163-5948
ISBN
Citations 
PageRank 
1-59593-114-7
16
1.00
References 
Authors
23
4
Name
Order
Citations
PageRank
Jie Ren1161.34
Richard N. Taylor25395482.75
Paul Dourish38020900.72
David Redmiles41816153.52