Paper Info
Title
A Pattern Based Approach for Secure Database Design
Abstract
Security in general and database protection from unauthorized access in particular, are crucial for organizations. Although it has long been accepted that system requirements should be considered from the early stages of the development, non-functional requirements, such security, tend to be neglected or dealt-with only at the end of the development process. Various methods have been proposed, however, none of them provide a complete framework to guide, enforce and verify the correct implementation of security policies within a system design, and generate source code from it. In this paper, we present a novel approach that guides database designers, to design a database schema that complies with the organizational security policies related to authorization. First, organizational policies are defined in the form of security patterns. Then, during the application development, the patterns guide the implementation of the security requirements and the correct application of the patterns is verified. Finally, the secure database schema is automatically generated.
Year
DOI
Venue
2011
10.1007/978-3-642-22056-2_65
ADVANCED INFORMATION SYSTEMS ENGINEERING WORKSHOPS
Keywords
Field
DocType
Secure software engineering,database design,authorization
Application security,Software engineering,Systems engineering,Computer science,Systems design,Database design,Database schema,Security policy,System requirements,IDEF4,Non-functional requirement
Conference
Volume
ISSN
Citations 
83
1865-1348
2
PageRank 
References 
Authors
0.41
15
3
Name
Order
Citations
PageRank
Jenny Abramov1403.46
Arnon Sturm241044.76
Peretz Shoval3765134.06