An experimental evaluation of the assumption of independence in multiversion programming
IEEE Transactions on Software Engineering
Building a secure computer system
Building a secure computer system
An Empirical Comparison of Software Fault Tolerance and Fault Elimination
IEEE Transactions on Software Engineering
Foundations for the study of software architecture
ACM SIGSOFT Software Engineering Notes
Software architecture: perspectives on an emerging discipline
Software architecture: perspectives on an emerging discipline
A Classification and Comparison Framework for Software Architecture Description Languages
IEEE Transactions on Software Engineering
Software reliability and dependability: a roadmap
Proceedings of the Conference on The Future of Software Engineering
Software engineering for security: a roadmap
Proceedings of the Conference on The Future of Software Engineering
Securing network software applications: introduction
Communications of the ACM
Proceedings of the ACM SIGPLAN 2001 conference on Programming language design and implementation
Software Fault Tolerance
Survivability: Protecting Your Critical Systems
IEEE Internet Computing
A Field Guide to Boxology: Preliminary Classification of Architectural Styles for Software Systems
COMPSAC '97 Proceedings of the 21st International Computer Software and Applications Conference
Secure Java Development with UML
Proceedings of the IFIP TC11 WG11.4 First Annual Working Conference on Network Security: Advances in Network and Distributed Systems Security
Security Benefits from Software Architecture
COORDINATION '97 Proceedings of the Second International Conference on Coordination Languages and Models
Security Vulnerabilities in Event-Driven Systems
SEC '02 Proceedings of the IFIP TC11 17th International Conference on Information Security: Visions and Perspectives
DADO: enhancing middleware to support crosscutting features in distributed, heterogeneous systems
Proceedings of the 25th International Conference on Software Engineering
An Architecture-Based Software Reliability Model
PRDC '99 Proceedings of the 1999 Pacific Rim International Symposium on Dependable Computing
Calculating Architectural Reliability via Modeling and Analysis
Proceedings of the 26th International Conference on Software Engineering
Software Architecture for Large-Scale, Distributed, Data-Intensive Systems
WICSA '04 Proceedings of the Fourth Working IEEE/IFIP Conference on Software Architecture
TRIAD: a framework for survivability architecting
Proceedings of the 2003 ACM workshop on Survivable and self-regenerative systems: in association with 10th ACM Conference on Computer and Communications Security
ACM SIGSOFT Software Engineering Notes
Practical Information-flow Control in Web-Based Information Systems
CSFW '05 Proceedings of the 18th IEEE workshop on Computer Security Foundations
A Classification of Disconnected Operation Techniques
EUROMICRO '06 Proceedings of the 32nd EUROMICRO Conference on Software Engineering and Advanced Applications
Improving dependability of component-based systems via multi-versioning connectors
Architecting dependable systems
GLIDE: a grid-based light-weight infrastructure for data-intensive environments
EGC'05 Proceedings of the 2005 European conference on Advances in Grid Computing
Trust4All: a trustworthy middleware platform for component software
AIC'07 Proceedings of the 7th Conference on 7th WSEAS International Conference on Applied Informatics and Communications - Volume 7
A methodology for trust control mode prediction
ISP'06 Proceedings of the 5th WSEAS International Conference on Information Security and Privacy
Security policy refinement and enforcement for the design of multi-level secure systems
Journal of Computer Security - Privacy, Security and Trust (PST) Technologies: Evolution and Challenges
Architecture-based refinements for secure computer systems design
Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services
An adaptive trust control model for a trustworthy component software platform
ATC'07 Proceedings of the 4th international conference on Autonomic and Trusted Computing
| Hi-index | 0.00 |
Existing software systems have become increasingly durable and their lifetimes have significantly lengthened. They are increasingly distributed and decentralized. Our dependence on them has grown tremendously. As such, the issues of trustworthiness and security have become prime concerns in designing, constructing, and evolving software systems. However, the exact meanings of these concepts are not universally agreed upon, nor is their role in the different phases of the software development lifecycle. In this paper, we argue that trustworthiness is a more broadly encompassing term than security, and that the two are often interdependent. We then identify a set of dimensions of trustworthiness. Finally, we analyze how the key elements of a software system's architecture can be leveraged in support of those trustworthiness dimensions. Our ultimate goal is to apply these ideas in the context of a concrete software architecture project. The goal of this paper is more modest: to understand the problem area and its relation to software architecture.