A security pattern detection framework for building more secure software

Aleem Khalid Alvi; Mohammad Zulkernine

首页> 外文期刊>The Journal of Systems and Software >A security pattern detection framework for building more secure software

【24h】

A security pattern detection framework for building more secure software

机译：建立更安全软件的安全模式检测框架

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Security patterns are one of the reusable building blocks of a secure software architecture that provide solutions to particular recurring security problems in given contexts. Incomplete or nonstandard implementation of security patterns may produce vulnerabilities and invite attackers. Therefore, the detection of security patterns improves the quality of security features. In this paper, we propose a security pattern detection (SPD) framework and its internal pattern matching techniques. The framework provides a platform for data extraction, pattern matching, and semantic analysis techniques. We implement ordered matrix matching (OMM) and non-uniform distributed matrix matching (NDMM) techniques. The OMM technique detects a security pattern matrix inside the target system matrix (TSM). The NDMM technique determines whether the relationships between all classes of a security pattern are similar to the relationships between some classes of the TSM. The semantic analysis is used to reduce the rate of false positives. We evaluate and compare the performance of the proposed SPD framework using both matching techniques based on four case studies independently. The results show that the NDMM technique provides the location of the security patterns, and it is highly flexible, scalable and has high accuracy with acceptable memory and time consumption for large projects.

机译：安全模式是安全软件架构的可重用构建块之一，可以在给定的上下文中为特定重复的安全问题提供解决方案。安全模式的不完整或非标准实施可能会产生漏洞和邀请攻击者。因此，安全模式的检测提高了安全特征的质量。在本文中，我们提出了一种安全模式检测（SPD）框架及其内部模式匹配技术。该框架为数据提取，模式匹配和语义分析技术提供了平台。我们实现有序矩阵匹配（OMM）和非均匀分布式矩阵匹配（NDMM）技术。 OMM技术检测目标系统矩阵（TSM）内的安全模式矩阵。 NDMM技术确定所有类别的安全模式之间的关系是否类似于TSM的某些类之间的关系。语义分析用于降低误报的速率。我们通过独立于四个案例研究来评估和比较所提出的SPD框架的性能。结果表明，NDMM技术提供了安全模式的位置，它具有高度灵活性，可扩展性，并且具有高精度，具有可接受的存储器和大型项目的时间消耗。

著录项

来源
《The Journal of Systems and Software》 |2021年第1期|110838.1-110838.22|共22页
作者
Aleem Khalid Alvi; Mohammad Zulkernine;
展开▼
作者单位

Queen's Reliable Software Technology (QRST) Lab School of Computing Queen's University Kingston Ontario Canada K7L 2NB;

Queen's Reliable Software Technology (QRST) Lab School of Computing Queen's University Kingston Ontario Canada K7L 2NB;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Software design component; Security patterns; Security pattern detection technique; Security quality assurance; Secure architectural design;

机译：软件设计组件;安全模式;安全模式检测技术;安全质量保证;安全的建筑设计;

相似文献

外文文献
中文文献
专利

1. A DEVELOPMENT FRAMEWORK FOR SOFTWARE SECURITY IN NUCLEAR SAFETY SYSTEMS: INTEGRATING SECURE DEVELOPMENT AND SYSTEM SECURITY ACTIVITIES [J] . JAEKWAN PARK, YONGSUK SUH Nuclear engineering and technology . 2014,第1期

机译：核安全系统中软件安全的开发框架：将安全开发和系统安全活动集成在一起
2. A DEVELOPMENT FRAMEWORK FOR SOFTWARE SECURITY IN NUCLEAR SAFETY SYSTEMS: INTEGRATING SECURE DEVELOPMENT AND SYSTEM SECURITY ACTIVITIES [J] . JAEKWAN PARK, YONGSUK SUH Nuclear engineering and technology . 2014,第1期

机译：核安全系统中软件安全的开发框架：将安全开发与系统安全活动集成在一起
3. Security patterns modeling and formalization for pattern-based development of secure software systems [J] . B. Hamid, S. Gurgens, A. Fuchs Innovations in Systems and Software Engineering . 2016,第2期

机译：用于基于模式的安全软件系统开发的安全模式建模和形式化
4. Building Secure Web Systems Architectures Using Security Patterns [C] . Eduardo B. Fernandez International conference on web information systems engineering . 2015

机译：使用安全模式构建安全的Web系统体系结构
5. An Approach to Building Domain Specific Software Architectures from Software Architectural Design Patterns. [D] . Fant, Julie Street. 2011

机译：从软件体系结构设计模式构建领域特定的软件体系结构的方法。
6. Biosafety and Biosecurity: A Relative Risk-Based Framework for Safer More Secure and Sustainable Laboratory Capacity Building [O] . Petra Dickmann, Heather Sheeley, Nigel Lightfoot 2015

机译：生物安全和生物安全：基于相对风险的框架可进行更安全更安全和可持续的实验室能力建设
7. Enhancing the Secured Software Framework using Vulnerability Patterns and Flow Diagrams [O] . Nor Hafeizah Hassan, Nazrulazhar Bahaman, Burairah Hussin, 2018

机译：使用漏洞模式和流程图增强安全软件框架

A security pattern detection framework for building more secure software

摘要

著录项

相似文献

相关主题

期刊订阅