Analyzing security architectures

Abi-Antoun, Marwan; Barnes, Jeffrey M.

doi:10.1145/1858996.1859001

Cited by 19 publications

(12 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The importance of executable architecture is that it can reveal all possible communications [2]. Its advantage over other approaches is that it offers dynamic analysis to verify whether the set of allowable executions can divert from its intended behaviour, or whether it allows additional behaviours.…”

Section: Model-checking Techniquesmentioning

confidence: 99%

“…The work of Oladimeji et al [133] took a similar approach by adding tagged values to their architecture that model security details (such as SSH connection type); their focus is on determining whether or not a given software architecture model realizes a set of security policies; but like many of the surveyed works, they failed to address the requirement for architecture models to be amenable to changes in order to reflect new requirements and threats. The work of Antoun et al [2] went further to support reasoning about security at both the architecture and code level.…”

Section: Traceability and Conformancementioning

confidence: 99%

“…The questions we explore in this thesis are: (1) How important is the detection of ISs for security? (2) What consequences can ISs have on the security of the system? and (3) How do we benefit from this information to build secure systems?…”

Section: Chapter 4 Implied Scenarios For Security Testing 43 Archimentioning

confidence: 99%

See 2 more Smart Citations

Architecture-Centric Testing for Security

Al-Azzani

2014

Agile Software Architecture

View full text Add to dashboard Cite

This thesis presents a novel architecture-centric approach, which uses Implied Scenarios (IS) to detect design-vulnerabilities in the software architecture. It reviews security testing approaches, and draws on their limitations in addressing unpredictable behaviour in the face of evolution. The thesis introduces the concept of Security IS as unanticipated architecture. The refinement is test-driven and incremental, where refinements are tested before they are committed. The thesis also presents SecArch, an extension to the IS approach to enhance its search-space to detect hidden race conditions. It is concerned with predicting further valid conditions in the face of real parallelism in distributed systems with respect to non-FIFO queues.The thesis reports on the applications of the proposed approach and its extension to three case studies for testing the security of distributed and cloud architectures in the presence of uncertainty in the operating environment, unpredictability of interaction and possible security IS. The applications demonstrate novelty in the way security testing addresses emergent behaviour in applications which are characterised with dynamism, heterogeneity, openness, scale and unpredictability in operation and their evolution trends.We have drawn on these case studies to evaluate the thesis.

show abstract

Section: Model-checking Techniquesmentioning

confidence: 99%

Section: Traceability and Conformancementioning

confidence: 99%

See 1 more Smart Citation

Architecture-Centric Testing for Security

Al-Azzani

2014

Agile Software Architecture

View full text Add to dashboard Cite

show abstract

“…3.2,and 3.3]. Another previous work [10] made a simplistic assumption that dataflow edges can be approximated by reverting points-to edges, which turned out to be imprecise.…”

Section: Formalization Of the Analysismentioning

confidence: 99%

“…An OOG can be then abstracted into a standard runtime architecture. We specialized OOG to security architectures showing how an OOG maps to a DFD [10]. The OOG showed pointsto edges, but during architectural risk analysis, architects require dataflow communication edges on the OOG.…”

Section: Introductionmentioning

confidence: 99%

Ownership Object Graphs with Dataflow Edges

Vanciu

Abi-Antoun

2012

2012 19th Working Conference on Reverse Engineering

Self Cite

View full text Add to dashboard Cite

Abstract-During architectural risk analysis, security experts look for architectural flaws based on a documented runtime structure, which for object-oriented systems can be approximated by an object graph. Architectural risk analysis involves thinking about worst-case scenarios, and thus requires a sound object graph, which shows all possible objects and dataflow communication between them. Extracting a sound object graph that conveys architectural abstraction is challenging. One solution is to apply a hierarchy to the object graph to convey both high-level understanding and detail. Achieving soundness requires a static analysis, but architectural hierarchy is not available in general purpose programming languages.To achieve hierarchy, we annotate the program with ownership types and use abstract interpretation to extract a global, sound, hierarchical object graph that has dataflow communication edges showing the flow of objects due to field reads, field writes, and method invocations. We formalize the static analysis, prove its soundness, then show that the extracted edges are similar to those drawn by a security expert.

show abstract

A security framework for developing service-oriented software architectures

Rafe

Hosseinpouri

2015

Security Comm. Networks

View full text Add to dashboard Cite

The usually heterogeneous and decentralized nature of entities in the service-oriented architecture has paved the ground for the implementation of approaches distributed according to the constantly changing needs of business. Also, as the distribution of entities and processes increases, the need to provide security over software and hardware sources, which have reached the public thanks to an open space as a result of the service-oriented architecture, is felt. Therefore, security modeling at the level of service-oriented architecture can boost system reliability and enhance its stability once applied and employed. This research provides a secure framework through which to develop software based on the service-oriented architecture. The proposed framework has been modeled using the SoaML profile, which has been introduced for modeling service-oriented environments. The framework's security aspects have been tested by the modeling and specification language Alloy, which is based on the first-order logic. Its accuracy has also been well investigated. Tapping into the modeldriven development, this framework can provide an answer to existing security challenges for service-oriented architecture software.

show abstract

Analyzing security architectures

Cited by 19 publications

References 31 publications

Architecture-Centric Testing for Security

Architecture-Centric Testing for Security

Ownership Object Graphs with Dataflow Edges

A security framework for developing service-oriented software architectures

Contact Info

Product

Resources

About