Details
Aspect-Oriented Security Hardening of UML Design Models
|
53,49 € |
|
| Verlag: | Springer |
| Format: | |
| Veröffentl.: | 22.04.2015 |
| ISBN/EAN: | 9783319161068 |
| Sprache: | englisch |
Dieses eBook enthält ein Wasserzeichen.
Beschreibungen
<p>This book comprehensively presents a novel approach to the systematic security hardening of software design models expressed in the standard UML language. It combines model-driven engineering and the aspect-oriented paradigm to integrate security practices into the early phases of the software development process. To this end, a UML profile has been developed for the specification of security hardening aspects on UML diagrams. In addition, a weaving framework, with the underlying theoretical foundations, has been designed for the systematic injection of security aspects into UML models.</p><p>The work is organized as follows: chapter 1 presents an introduction to software security, model-driven engineering, UML and aspect-oriented technologies. Chapters 2 and 3 provide an overview of UML language and the main concepts of aspect-oriented modeling (AOM) respectively. Chapter 4 explores the area of model-driven architecture with a focus on model transformations. The main approaches that are adopted in the literature for security specification and hardening are presented in chapter 5. After these more general presentations, chapter 6 introduces the AOM profile for security aspects specification. Afterwards, chapter 7 details the design and the implementation of the security weaving framework, including several real-life case studies to illustrate its applicability. Chapter 8 elaborates an operational semantics for the matching/weaving processes in activity diagrams, while chapters 9 and 10 present a denotational semantics for aspect matching and weaving in executable models following a continuation-passing style. Finally, a summary and evaluation of the work presented are provided in chapter 11.</p>The book will benefit researchers in academia and industry as well as students interested in learning about recent research advances in the field of software security engineering.
1 Introduction.- 2 Unified Modeling Language.- 3 Aspect-Oriented Paradigm.- 4 Model-Driven Architecture and Model Transformations.- 5 Model-Based Security.- 6 Security Aspect Specification.- 7 Security Aspect Weaving.- 8 Static Matching and Weaving Semantics in Activity Diagrams.- 9 Dynamic Matching and Weaving Semantics in k-Calculus.- 10 Dynamic Matching and Weaving Semantics in Executable UML.- 11 Conclusion.
<p>The authors of this book conducted several research initiatives in the area of computer security, privacy and cyber forensics. The content reported is the result of a 4-year research project on the aspect oriented security hardening of UML design models and is based on a fruitful collaboration between Concordia University and Ericsson under a research partnership program of the Canadian Natural Sciences and Engineering Research Council (NSERC).</p>
<p>This book comprehensively presents a novel approach to the systematic security hardening of software design models expressed in the standard UML language. It combines model-driven engineering and the aspect-oriented paradigm to integrate security practices into the early phases of the software development process. To this end, a UML profile has been developed for the specification of security hardening aspects on UML diagrams. In addition, a weaving framework, with the underlying theoretical foundations, has been designed for the systematic injection of security aspects into UML models.</p><p>The work is organized as follows: chapter 1 presents an introduction to software security, model-driven engineering, UML and aspect-oriented technologies. Chapters 2 and 3 provide an overview of UML language and the main concepts of aspect-oriented modeling (AOM) respectively. Chapter 4 explores the area of model-driven architecture with a focus on model transformations. The main approaches that are adopted in the literature for security specification and hardening are presented in chapter 5. After these more general presentations, chapter 6 introduces the AOM profile for security aspects specification. Afterwards, chapter 7 details the design and the implementation of the security weaving framework, including several real-life case studies to illustrate its applicability. Chapter 8 elaborates an operational semantics for the matching/weaving processes in activity diagrams, while chapters 9 and 10 present a denotational semantics for aspect matching and weaving in executable models following a continuation-passing style. Finally, a summary and evaluation of the work presented are provided in chapter 11.</p>The book will benefit researchers in academia and industry as well as students interested in learning about recent research advances in the field of software security engineering.
<p>Uniquely combines model-driven engineering with the aspect-oriented paradigm to develop secure software systems</p><p>Reconciles academic rigor and preciseness with industrial applicability and relevance</p><p>Based on a fruitful close cooperation between academia and industry</p><p>Includes supplementary material: sn.pub/extras</p>
Diese Produkte könnten Sie auch interessieren:
