Controlling Security of Software Development with Multi-agent System

Moradian, Esmiralda; Håkansson, Anne

doi:10.1007/978-3-642-15384-6_11

Cited by 11 publications

(6 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The main role of meta‐agents is to shift between strategies and make decisions. These strategies can be implemented in a single agent or in a group of agents . In the proposed work, these meta‐agents are superior to the software agents and have been used in association with fuzzy inference systems to achieve the goal of software security.…”

Section: Proposed Threatandhyphen;oriented Security Modelmentioning

confidence: 99%

“…Research in the area of multiagent system planning for enhancing the security of the software systems was presented by Bedi et al in their approach Multi-Agent System Planning for Threat Avoidance (MASPTA) [8]. Moradian and Hakansson [23,24] introduced the approach to solving security problems in software systems using meta-agents in a multiagent environment. In 1965, Zadeh [25] proposed fuzzy set theory and later established fuzzy logic based on fuzzy sets.…”

Section: Introductionmentioning

confidence: 99%

“…The meta‐agents communicate with each other and have the ability to work with other agents to achieve a common goal of software security. These agents are autonomous and can work without human intervention . Meta‐agents have been introduced in the proposed approach for monitoring the performance of active agents in a multiagent system employed for mitigation of threats and also to evaluate whether the adopted safeguards are adequate or not.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Threat‐oriented security framework in risk management using multiagent system

et al. 2012

View full text Add to dashboard Cite

SUMMARYPresent day sophisticated and innovative attacks have resulted in exponentially increasing security problems. This paper therefore presents a three‐phased threat‐oriented security model to meet the above security challenges as a part of proactive risk management. This model is based on a spiral process for software development because it is a risk driven approach and provides an incremental method for a progressively growing system with decreasing risk. Integration of threat management during the development process in the proposed work provides necessary security cover against both unforeseen and known threats. Identification of these threats has been made possible by fusion of a threat modeling process and research honeytokens in conjunction with a statistical model in the first phase. Necessary security measures to mitigate the above identified threats have been adopted in the second phase using multiagent system planning. Risk reduction as a result of adoption of countermeasures has been evaluated in the third phase using meta‐agents in association with fuzzy logic in a multiagent environment. The proposed proactive measures of this model have been demonstrated with a case study on ‘Online Banking’ to show its feasibility and has been implemented using Java Agent Development Environment, Apache Tomcat Server, with MySQL Server at the backend. Copyright © 2012 John Wiley & Sons, Ltd.

show abstract

Section: Proposed Threatandhyphen;oriented Security Modelmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Threat‐oriented security framework in risk management using multiagent system

et al. 2012

View full text Add to dashboard Cite

show abstract

“…According to Moradian and Håkansson (2010), the interdependencies of software components create security issues during the integration phase of their development. Talib et al (2010) stated that the lack of a suitable guide during the CBSD life cycle leads to faults in software requirements, design, or codes and thus results in major security threats.…”

Section: Introductionmentioning

confidence: 99%

Dependability Attributes for Increased Security in Component-Based Software Development

Kahtan

Bakar²,

Nordin³

2014

Journal of Computer Science

View full text Add to dashboard Cite

Existing software applications become increasingly distributed as their continuity and lifetimes are lengthened; consequently, the users' dependence on these applications is increased. The security of these applications has become a primary concern in their design, construction and evolution. Thus, these applications give rise to major concerns on the capability of the current development approach to develop secure systems. Component-Based Software Development (CBSD) is a software engineering approach. CBSD has been successfully applied in many domains. However, the CBSD capability to develop secure software applications is lacking to date. This study is an extension of the previous study on the challenges of the security features in CBSD models. Therefore, this study proposes a solution to the lack of security in CBSD models by highlighting the attributes that must be embedded into the CBSD process. A thorough analysis of existing studies is conducted to investigate the related software security attributes. The outcome analysis is beneficial for industries, such as software development companies, as well as for academic institutions. The analysis also serves as a baseline reference for companies that develop component-based software.

show abstract

“…Several studies have reported different challenges involved in the use of CBSD. According to Moradian and Håkansson (2010), the interdependencies among software components create problems at the integration phase. Therefore, security features of software components must be considered and evaluated earlier in the CBSD lifecycle.…”

Section: Introductionmentioning

confidence: 99%

Awareness of Embedding Security Features Into Component-Based Software Development Model: A Survey

Kahtan

Bakar

Nordin

2014

Journal of Computer Science

View full text Add to dashboard Cite

Current applications and systems contain the software components as the basic elements and Component Based Software Development (CBSD) has been successful in building applications and systems. However, the security of CBSD for the software component is still lacking. This study highlights the results of a survey pertaining to the embedding of security features in the CBSD process. The main objective of this survey is to investigate the awareness of embedding security features in the CBSD process in the Malaysian context. For this purpose, experts from industry as well as from the academic community were interviewed. Moreover, an online survey was formulated and e-mailed to the experts and potential candidates. The results show that the embedding of security features in the software lifecycle is crucial because the incorporation of security activities in CBSD will minimize vulnerabilities in the software system, thus reducing system cost.

show abstract

Controlling Security of Software Development with Multi-agent System

Cited by 11 publications

References 10 publications

Threat‐oriented security framework in risk management using multiagent system

Threat‐oriented security framework in risk management using multiagent system

Dependability Attributes for Increased Security in Component-Based Software Development

Awareness of Embedding Security Features Into Component-Based Software Development Model: A Survey

Contact Info

Product

Resources

About