Article

Architecture Security Evaluation Method Based on Security of the Components

Authors:

Jing Hu,

Zhiyong FengAuthors Info & Claims

APSEC '13: Proceedings of the 2013 20th Asia-Pacific Software Engineering Conference (APSEC) - Volume 01

Pages 523 - 528

https://doi.org/10.1109/APSEC.2013.75

Published: 02 December 2013 Publication History

Abstract

This paper presents a quantitative architecture security evaluation method to identify potential risks of an architecture. The method is based on security of the architecture components. In this method, components of the architecture are classified and their security measures are identified according to component function and architecture level. Then, an integration process applies analytic hierarchy process (AHP) and fuzzy evaluation analysis to determine quantitative and qualitative factors in evaluating the security of components. These factors are used to obtain security conclusions of the architecture. The experiment shows that the method not only improves efficiency of the evaluation, but also makes security evaluation process more objective and accurate.

Cited By

View all

Saarela MHosseinzadeh SHyrynsalmi SLeppänen V(2017)Measuring Software Security from the Design of SoftwareProceedings of the 18th International Conference on Computer Systems and Technologies10.1145/3134302.3134334(179-186)Online publication date: 23-Jun-2017
https://dl.acm.org/doi/10.1145/3134302.3134334

Recommendations

AHP-GRAP Based Security Evaluation Method for MILS System within CC Framework
CIS '11: Proceedings of the 2011 Seventh International Conference on Computational Intelligence and Security

MILS (Multiple Independent Levels of Security and Safety) is a high-assurance architecture for secure sharing of different security-level information. But the MILS security evaluation is facing a great challenge. Traditional Common Criteria (CC) method ...
An Object-Oriented Information System Security Evaluation Method Based on Security Level Distinguishing Model
WISM '09: Proceedings of the 2009 International Conference on Web Information Systems and Mining

This paper proposes an object-oriented model for security evaluation with the concept of object-oriented technology, so that the security evaluation process structure can be clearer. A security level distinguishing model is developed to combine experts’ ...
Indicator-based architecture-level security evaluation in a service-oriented environment
ECSA '10: Proceedings of the Fourth European Conference on Software Architecture: Companion Volume

The Service-Oriented Architecture paradigm (SOA) is commonly applied for the implementation of complex, distributed business processes. The service-oriented approach promises higher flexibility, interoperability and reusability of the IT infrastructure. ...

Comments

Information & Contributors

Information

Published In

APSEC '13: Proceedings of the 2013 20th Asia-Pacific Software Engineering Conference (APSEC) - Volume 01

December 2013

597 pages

ISBN:9781479921447

Publisher

IEEE Computer Society

United States

Publication History

Published: 02 December 2013

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 23 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Saarela MHosseinzadeh SHyrynsalmi SLeppänen V(2017)Measuring Software Security from the Design of SoftwareProceedings of the 18th International Conference on Computer Systems and Technologies10.1145/3134302.3134334(179-186)Online publication date: 23-Jun-2017
https://dl.acm.org/doi/10.1145/3134302.3134334

Abstract

Cited By

Recommendations

AHP-GRAP Based Security Evaluation Method for MILS System within CC Framework

An Object-Oriented Information System Security Evaluation Method Based on Security Level Distinguishing Model

Indicator-based architecture-level security evaluation in a service-oriented environment

Comments

Information

Published In

Publisher

Publication History

Author Tags

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations