Mouratidis, Haralambos and Weiss, Michael and Giorgini, Paolo (2006) ‘Modelling Secure Systems Using An Agent Oriented Approach and Security Patterns’, International Journal of Software Engineering and Knowledge Engineering, 16(3), pp. 471-498.
Mouratidis H et al (2006) IJSEKE 16 (3) 471-498.pdf - Accepted Version
Available under License Creative Commons Attribution No Derivatives.
Download (829Kb) | Preview
In this paper we describe an approach for modelling security issues in information systems. It is based on an agent-oriented approach, and extends it with the use of security patterns. Agent-oriented software engineering provides advantages when modeling security issues, since agents are often a natural way of conceptualizing an information system, in particular at the requirements stage, when the viewpoints of multiple stakeholders need to be considered. Our approach uses the Tropos methodology for modelling a system as a set of agents and their social dependencies, with specific extensions for representing security constraints. As an extension to the existing methodology we propose the use of security patterns. These patterns capture proven solutions to common security issues, and support the systematic and structured mapping of these constraints to an architectural model of the system, in particular for non-security specialists.
|Additional Information:||Citation: Mouratidis, H., Weiss, M., Giorgini, P. (2006) ‘Modelling Secure Systems Using An Agent Oriented Approach and Security Patterns’ International Journal of Software Engineering and Knowledge Engineering 16 (3) 471-498.|
|Divisions:||Schools > Architecture Computing and Engineering, School of|
|Depositing User:||Mr Stephen Grace|
|Date Deposited:||02 Dec 2009 15:50|
|Last Modified:||27 Sep 2012 11:59|
Actions (login required)