Mouratidis, Haralambos and Weiss, Michael and Giorgini, Paolo (2006) ‘Modelling Secure Systems Using An Agent Oriented Approach and Security Patterns’, International Journal of Software Engineering and Knowledge Engineering, 16(3), pp. 471-498.
Use this permanent URL when citing or linking to this resource in ROAR.
In this paper we describe an approach for modelling security issues in information systems. It is based on an agent-oriented approach, and extends it with the use of security patterns. Agent-oriented software engineering provides advantages when modeling security issues, since agents are often a natural way of conceptualizing an information system, in particular at the requirements stage, when the viewpoints of multiple stakeholders need to be considered. Our approach uses the Tropos methodology for modelling a system as a set of agents and their social dependencies, with specific extensions for representing security constraints. As an extension to the existing methodology we propose the use of security patterns. These patterns capture proven solutions to common security issues, and support the systematic and structured mapping of these constraints to an architectural model of the system, in particular for non-security specialists.
|Divisions:||Schools > Architecture Computing and Engineering, School of|
|Additional Information:||Citation: Mouratidis, H., Weiss, M., Giorgini, P. (2006) ‘Modelling Secure Systems Using An Agent Oriented Approach and Security Patterns’ International Journal of Software Engineering and Knowledge Engineering 16 (3) 471-498.|
|Date Deposited:||02 Dec 2009 15:50|
|Creators:||Mouratidis, Haralambos and Weiss, Michael and Giorgini, Paolo|
|Last Modified:||27 Sep 2012 11:59|
|Depositing User:||Stephen Grace|