Software requirements and architecture modeling for evolving non-secure applications into secure applications

Michael E. Shin; Hassan Gomaa

doi:10.1016/j.scico.2006.10.009

Software requirements and architecture modeling for evolving non-secure applications into secure applications

Michael E. Shin, Hassan Gomaa

Computer Science

Research output: Contribution to journal › Article › peer-review

25 Scopus citations

Abstract

This paper describes an approach to modeling the evolution of non-secure applications into secure applications in terms of the software requirements model and software architecture model. The requirements for security services are captured separately from application requirements, and the security services are encapsulated in connectors in the software architecture, separately from the components providing functional services. The enterprise architecture is described in terms of use case models, static models, and dynamic models. The software architecture is described in terms of components and connectors, which can be deployed to distributed configurations. By separating application concerns from security concerns, the evolution from a non-secure application to a secure application can be achieved with less impact on the application. An electronic commerce system is described to illustrate the approach.

Original language	English
Pages (from-to)	60-70
Number of pages	11
Journal	Science of Computer Programming
Volume	66
Issue number	1
DOIs	https://doi.org/10.1016/j.scico.2006.10.009
State	Published - Apr 15 2007

Keywords

Application system
Evolution
Security
Software architecture
Software requirements

Access to Document

10.1016/j.scico.2006.10.009

Cite this

@article{0a94e3d88dc6476184a528ac903d4549,

title = "Software requirements and architecture modeling for evolving non-secure applications into secure applications",

abstract = "This paper describes an approach to modeling the evolution of non-secure applications into secure applications in terms of the software requirements model and software architecture model. The requirements for security services are captured separately from application requirements, and the security services are encapsulated in connectors in the software architecture, separately from the components providing functional services. The enterprise architecture is described in terms of use case models, static models, and dynamic models. The software architecture is described in terms of components and connectors, which can be deployed to distributed configurations. By separating application concerns from security concerns, the evolution from a non-secure application to a secure application can be achieved with less impact on the application. An electronic commerce system is described to illustrate the approach.",

keywords = "Application system, Evolution, Security, Software architecture, Software requirements",

author = "Shin, {Michael E.} and Hassan Gomaa",

year = "2007",

month = apr,

day = "15",

doi = "10.1016/j.scico.2006.10.009",

language = "English",

volume = "66",

pages = "60--70",

journal = "Science of Computer Programming",

issn = "0167-6423",

number = "1",

}

TY - JOUR

T1 - Software requirements and architecture modeling for evolving non-secure applications into secure applications

AU - Shin, Michael E.

AU - Gomaa, Hassan

PY - 2007/4/15

Y1 - 2007/4/15

N2 - This paper describes an approach to modeling the evolution of non-secure applications into secure applications in terms of the software requirements model and software architecture model. The requirements for security services are captured separately from application requirements, and the security services are encapsulated in connectors in the software architecture, separately from the components providing functional services. The enterprise architecture is described in terms of use case models, static models, and dynamic models. The software architecture is described in terms of components and connectors, which can be deployed to distributed configurations. By separating application concerns from security concerns, the evolution from a non-secure application to a secure application can be achieved with less impact on the application. An electronic commerce system is described to illustrate the approach.

AB - This paper describes an approach to modeling the evolution of non-secure applications into secure applications in terms of the software requirements model and software architecture model. The requirements for security services are captured separately from application requirements, and the security services are encapsulated in connectors in the software architecture, separately from the components providing functional services. The enterprise architecture is described in terms of use case models, static models, and dynamic models. The software architecture is described in terms of components and connectors, which can be deployed to distributed configurations. By separating application concerns from security concerns, the evolution from a non-secure application to a secure application can be achieved with less impact on the application. An electronic commerce system is described to illustrate the approach.

KW - Application system

KW - Evolution

KW - Security

KW - Software architecture

KW - Software requirements

UR - http://www.scopus.com/inward/record.url?scp=33947608669&partnerID=8YFLogxK

U2 - 10.1016/j.scico.2006.10.009

DO - 10.1016/j.scico.2006.10.009

M3 - Article

AN - SCOPUS:33947608669

SN - 0167-6423

VL - 66

SP - 60

EP - 70

JO - Science of Computer Programming

JF - Science of Computer Programming

IS - 1

ER -

Software requirements and architecture modeling for evolving non-secure applications into secure applications

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this