Adaptive security for software systems

Abdelrazek, Mohamed, Grundy, John and Ibrahim, Amani 2017, Adaptive security for software systems. In Mistrik, Ivan, Ali, Nour, Kazman, Rick, Grundy, John and Schmerl, Bradley (ed), Managing trade-offs in adaptable software architectures, Morgan Kaufmann, Burlington, Mass., pp.99-127, doi: 10.1016/B978-0-12-802855-1.00005-8.

Attached Files
Name Description MIMEType Size Downloads

Title Adaptive security for software systems
Author(s) Abdelrazek, MohamedORCID iD for Abdelrazek, Mohamed orcid.org/0000-0003-3812-9785
Grundy, John
Ibrahim, AmaniORCID iD for Ibrahim, Amani orcid.org/0000-0001-8747-1419
Title of book Managing trade-offs in adaptable software architectures
Editor(s) Mistrik, Ivan
Ali, Nour
Kazman, Rick
Grundy, John
Schmerl, Bradley
Publication date 2017
Chapter number 5
Total chapters 14
Start page 99
End page 127
Total pages 29
Publisher Morgan Kaufmann
Place of Publication Burlington, Mass.
Keyword(s) security analysis
vulnerability analysis
adaptive security
security engineering
user-driven security adaptation
Summary With continuously changing operational and business needs, system security is one of the key system capabilities that need to be updated as well. Most security engineering efforts focus on engineering security requirements of software systems at design time and existing adaptive security engineering efforts require complex design-time preparation. In this chapter we discuss the needs for adaptive software security, and key efforts in this area. We then introduce a new runtime adaptive security engineering approach, which enables adapting software security capabilities at runtime based on new security objectives, risks/threats, requirements as well as newly reported vulnerabilities. We categorize the source of adaptation in terms of manual adaptation (managed by end users), and automated adaption (automatically triggered by the platform). The new platform makes use of new ideas we built for vulnerability analysis, security engineering using aspect-oriented programming, and model-driven engineering techniques.
ISBN 9780128028551
Language eng
DOI 10.1016/B978-0-12-802855-1.00005-8
Field of Research 080309 Software Engineering
Socio Economic Objective 890201 Application Software Packages (excl. Computer Games)
HERDC Research category B1 Book chapter
ERA Research output type B Book chapter
Copyright notice ©2017, Elsevier
Persistent URL http://hdl.handle.net/10536/DRO/DU:30085633

Connect to link resolver
 
Unless expressly stated otherwise, the copyright for items in DRO is owned by the author, with all rights reserved.

Versions
Version Filter Type
Citation counts: TR Web of Science Citation Count  Cited 3 times in TR Web of Science
Scopus Citation Count Cited 0 times in Scopus
Google Scholar Search Google Scholar
Access Statistics: 567 Abstract Views, 4 File Downloads  -  Detailed Statistics
Created: Thu, 15 Sep 2016, 09:39:00 EST

Every reasonable effort has been made to ensure that permission has been obtained for items included in DRO. If you believe that your rights have been infringed by this repository, please contact drosupport@deakin.edu.au.