A framework for security driven software evolution

Guan, H, Wang, X and Yang, H (2014) 'A framework for security driven software evolution.' In: Cao, Y and Luo, X, eds. 20th International Conference on Automation and Computing (ICAC). IEEE Computer Society, Los Alamitos, pp. 194-199. ISBN 9781909522022

Official URL: http://dx.doi.org/10.1109/IConAC.2014.6935485

Abstract

Security has become a key non-functional requirement in the modern software system. The need to improve the security level for legacy systems is equally important as that for new designed systems. However, how to integrate security engineering into legacy system is sometimes very difficult. After examining the current literature on security improvement, this paper proposes a framework for enhancing security for legacy system from software evolution perspective using a model driven approach. It starts from understanding and extracting models from legacy source code. Security requirements are elicited through analysing security risks and satisfied by integrating security patterns with the support of the proposed security ontology. The proposed framework in this paper provides a comprehensive approach allowing the designer to be guided through the process of security oriented evolution.

Item Type: Book Chapter or Section
Keywords: Security, Unified modeling language, Aging, Software, Ontologies, Object oriented modeling, Context
Divisions: Bath School of Design
Identification Number: https://doi.org/10.1109/IConAC.2014.6935485
Date Deposited: 10 Apr 2015 16:25
Last Modified: 05 Jan 2022 16:07
URI / Page ID: https://researchspace.bathspa.ac.uk/id/eprint/5960
Request a change to this item or report an issue Request a change to this item or report an issue
Update item (repository staff only) Update item (repository staff only)