The security twin peaks

Authors:
Thomas Heyman;Koen Yskout;Riccardo Scandariato;Holger Schmidt;Yijun Yu
Affiliations:
IBBT, DistriNet, Katholieke Universiteit Leuven, Belgium;IBBT, DistriNet, Katholieke Universiteit Leuven, Belgium;IBBT, DistriNet, Katholieke Universiteit Leuven, Belgium;Technische Universität Dortmund, Germany;Open University, United Kingdom
Venue:
ESSoS'11 Proceedings of the Third international conference on Engineering secure software and systems
Year:
2011

Citing 15
Cited 1

Pattern-oriented software architecture: a system of patterns

Pattern-oriented software architecture: a system of patterns
Software architecture in practice

Software architecture in practice
Problem frames: analyzing and structuring software development problems

Problem frames: analyzing and structuring software development problems
Weaving Together Requirements and Architectures

Computer
Security Patterns: Integrating Security and Systems Engineering

Security Patterns: Integrating Security and Systems Engineering
A framework for security requirements engineering

Proceedings of the 2006 international workshop on Software engineering for secure systems
An Analysis of the Security Patterns Landscape

SESS '07 Proceedings of the Third International Workshop on Software Engineering for Secure Systems
Security Requirements Engineering: A Framework for Representation and Analysis

IEEE Transactions on Software Engineering
Transforming Security Requirements into Architecture

ARES '08 Proceedings of the 2008 Third International Conference on Availability, Reliability and Security
Problem Oriented Software Engineering: Solving the Package Router Control Problem

IEEE Transactions on Software Engineering
Selecting Security Patterns that Fulfill Security Requirements

RE '08 Proceedings of the 2008 16th IEEE International Requirements Engineering Conference
Secure Systems Development with UML

Secure Systems Development with UML
From goal-driven security requirements engineering to secure design

International Journal of Intelligent Systems - Goal-driven Requirements Engineering
A framework to support alignment of secure software engineering with legal regulations

Software and Systems Modeling (SoSyM)
Towards a comprehensive framework for secure systems development

CAiSE'06 Proceedings of the 18th international conference on Advanced Information Systems Engineering

Connecting security requirements analysis and secure design using patterns and UMLsec

CAiSE'11 Proceedings of the 23rd international conference on Advanced information systems engineering

Quantified Score

Hi-index	0.00

Visualization

Abstract

The feedback from architectural decisions to the elaboration of requirements is an established concept in the software engineering community. However, pinpointing the nature of this feedback in a precise way is a largely open problem. Often, the feedback is generically characterized as additional qualities that might be affected by an architect's choice. This paper provides a practical perspective on this problem by leveraging architectural security patterns. The contribution of this paper is the Security Twin Peaks model, which serves as an operational framework to co-develop security in the requirements and the architectural artifacts.