Reference Hub

This research has been cited in:

Conference
A Deep LSTM based Approach for Intrusion Detection IoT Devices Network in Smart Home2021 IEEE 7th World Forum on Internet of Things (WF-IoT)10.1109/WF-IoT51360.2021.9596033
Chapter
Crime Data Mining, Threat Analysis and PredictionCyber Criminology10.1007/978-3-319-97181-0_9
Chapter
IoT Security, Privacy, Safety and EthicsDigital Twin Technologies and Smart Cities10.1007/978-3-030-18732-3_8
Chapter
Transformation of Cybersecurity Posture in IT Telecommunication: A Case Study of a Telecom OperatorCybersecurity, Privacy and Freedom Protection in the Connected World10.1007/978-3-030-68534-8_28
Chapter
Artificial Intelligence (AI)-based Intrusion Detection System for IoT-enabled NetworksProtecting User Privacy in Web Search Utilization10.4018/978-1-6684-6914-9.ch014

Goal Modelling for Security Problem Matching and Pattern Enforcement

Yijun Yu, Haruhiko Kaiya, Nobukazu Yoshioka, Zhenjiang Hu, Hironori Washizaki, Yingfei Xiong, Amin Hosseinian-Far

Source Title: International Journal of Secure Software Engineering (IJSSE)8(3)

ISSN: 1947-3036|EISSN: 1947-3044|EISBN13: 9781522513872|DOI: 10.4018/IJSSE.2017070103

Cite Article Cite Article

MLA

Yu, Yijun, et al. "Goal Modelling for Security Problem Matching and Pattern Enforcement." IJSSE vol.8, no.3 2017: pp.42-57. http://doi.org/10.4018/IJSSE.2017070103

APA

Yu, Y., Kaiya, H., Yoshioka, N., Hu, Z., Washizaki, H., Xiong, Y., & Hosseinian-Far, A. (2017). Goal Modelling for Security Problem Matching and Pattern Enforcement. International Journal of Secure Software Engineering (IJSSE), 8(3), 42-57. http://doi.org/10.4018/IJSSE.2017070103

Chicago

Yu, Yijun, et al. "Goal Modelling for Security Problem Matching and Pattern Enforcement," International Journal of Secure Software Engineering (IJSSE) 8, no.3: 42-57. http://doi.org/10.4018/IJSSE.2017070103

Export Reference

Favorite Full-Issue Download

View Full Text HTML

View Full Text PDF

Abstract

This article describes how earlier detection of security problems and the implementation of solutions would be a cost-effective approach for developing secure software systems. Developing, gathering and sharing similar repeatable programming knowledge and solutions has led to the introduction of Patterns in the 90's. The same concept has been adopted to realise reoccurring security knowledge and hence security patterns. Detecting a security problem using the patterns in requirements models may lead to its early prevention. In this article, the authors have provided an overview of security patterns in the past two decades, followed by a summary of i*/Tropos goal modelling framework. Section 2 outlines model-driven development, meta-models and model transformation, within the context of requirements engineering. They have summarised security access control types, and formally described role-based access control (RBAC) in particular as a pattern that may occur in the stakeholder requirements models. Then the authors used the i* modelling language and some elements from its constructs - model-driven queries and transformations - to describe the pattern enforcement. This is applied to a number of requirements models within the literature, and the pattern-based transformation tool they designed has automated the detection and resolution of this security pattern in several goal-oriented stakeholder requirements. Finally, the article also reflects on a variety of existing applications and future work.

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.

Username or email: *

Password: *

Forgot individual login password?

Create individual account

Goal Modelling for Security Problem Matching and Pattern Enforcement

MLA

APA

Chicago

Export Reference

Abstract

Request Access