Web Services-Based Security Requirement Elicitation
IEICE - Transactions on Information and Systems
A semantic paradigm for component-based specification integrating a notion of security risk
FAST'06 Proceedings of the 4th international conference on Formal aspects in security and trust
| Hi-index | 0.00 |
This paper presents a security characterisation processframework for software components and their compositionsin order to address the issue of trust in component basedsoftware. The process is based on the idea of publishingtrust related properties of software components in machinereadable as well as understandable form at the componentlevel and incorporating such properties with runtime compositionof the application system. We explore the actualprocess involved in specifying publishable security propertiesof atomic components, component certification, reasoningabout compositional security contracts, and characterisingultimate systems-level security properties to inspiretrust in software components.