IIUM Repository

A methodology for modelling and analysis of secure systems using security patterns and mitigation use cases

Maher, Zulfikar Ahmad and Shah, Asadullah and Shaikh, Humaiz and Rahu, Ghulam Ali and Butt, Pinial Khan and Chandio, Shahmurad and Shaikh, Saima (2018) A methodology for modelling and analysis of secure systems using security patterns and mitigation use cases. In: 7th International Conference on Computer and Communication Engineering (ICCCE) 2018, 19th-20th September 2018, Kuala Lumpur.

[img] PDF - Published Version
Restricted to Registered users only

Download (192kB) | Request a copy
[img] PDF (SCOPUS) - Published Version
Restricted to Repository staff only

Download (630kB) | Request a copy

Abstract

Many approaches for modelling security requirements have been proposed,but software industry did not reach on an agreement on how to express security requirements in a system model for software architecture. The main objective of this perspective paper is to summarize the problem space of representation of security patterns are proposed in the literature to help the developers who lack expertise in security to implement it. Applications of security patterns has been hindered by the fact that they lack directions for their implementations in a specific scenario. This paper presents a techniques for using mitigation use cases for representation solution provided by security patterns. Different challenges and issues were identified related to the application of security patterns in industry.

Item Type: Conference or Workshop Item (Plenary Papers)
Additional Information: 6566/68117
Uncontrolled Keywords: Security patterns; security pattern modeling; mitigation use cases; secure architecture; secure software design
Subjects: T Technology > T Technology (General) > T10.5 Communication of technical information
Kulliyyahs/Centres/Divisions/Institutes (Can select more than one option. Press CONTROL button): Kulliyyah of Information and Communication Technology
Kulliyyah of Information and Communication Technology

Kulliyyah of Information and Communication Technology > Department of Information System
Kulliyyah of Information and Communication Technology > Department of Information System
Depositing User: Prof Asadullah Shah
Date Deposited: 07 Dec 2018 10:59
Last Modified: 01 Mar 2019 14:11
URI: http://irep.iium.edu.my/id/eprint/68117

Actions (login required)

View Item View Item

Downloads

Downloads per month over past year