An Aspect Oriented Approach For Security Hardening

Aspect-Oriented Security Hardening of UML Design Models

Author : Djedjiga Mouheb

Publisher : Springer

Page : 247 pages

File Size : 31,90 MB

Release : 2015-04-22

Category : Computers

ISBN : 3319161067

Get eBook

Book Description

This book comprehensively presents a novel approach to the systematic security hardening of software design models expressed in the standard UML language. It combines model-driven engineering and the aspect-oriented paradigm to integrate security practices into the early phases of the software development process. To this end, a UML profile has been developed for the specification of security hardening aspects on UML diagrams. In addition, a weaving framework, with the underlying theoretical foundations, has been designed for the systematic injection of security aspects into UML models. The work is organized as follows: chapter 1 presents an introduction to software security, model-driven engineering, UML and aspect-oriented technologies. Chapters 2 and 3 provide an overview of UML language and the main concepts of aspect-oriented modeling (AOM) respectively. Chapter 4 explores the area of model-driven architecture with a focus on model transformations. The main approaches that are adopted in the literature for security specification and hardening are presented in chapter 5. After these more general presentations, chapter 6 introduces the AOM profile for security aspects specification. Afterwards, chapter 7 details the design and the implementation of the security weaving framework, including several real-life case studies to illustrate its applicability. Chapter 8 elaborates an operational semantics for the matching/weaving processes in activity diagrams, while chapters 9 and 10 present a denotational semantics for aspect matching and weaving in executable models following a continuation-passing style. Finally, a summary and evaluation of the work presented are provided in chapter 11. The book will benefit researchers in academia and industry as well as students interested in learning about recent research advances in the field of software security engineering.



New Trends in Software Methodologies, Tools and Techniques

Author : H. Fujita

Publisher : IOS Press

Page : 640 pages

File Size : 38,80 MB

Release : 2009-08-31

Category : Computers

ISBN : 160750460X

Get eBook

Book Description

Software is an essential enabler for science and the new economy, but software often falls short of our expectations, remaining expensive and not yet sufficiently reliable for a constantly changing and evolving market. This publication, which forms part of the SoMeT series, consists of 41 papers, carefully reviewed and revised on the basis of technical soundness, relevance, originality, significance, and clarity. These explore new trends and theories which illuminate the direction of developments which may lead to a transformation of the role of software in tomorrow’s global information society. The book offers an opportunity for the software science community to think about where they are today and where they are going. The emphasis has been placed on human-centric software methodologies, end-user development techniques, and emotional reasoning, for an optimally harmonised performance between the design tool and the user. The handling of cognitive issues in software development and the tools and techniques related to this form part of the contribution to this book. Other comparable theories and practices in software science, including emerging technologies essential for a comprehensive overview of information systems and research projects, are also addressed. This work represents another milestone in mastering the new challenges of software and its promising technology, and provides the reader with new insights, inspiration and concrete material to further the study of this new technology.





E-business and Telecommunications

Author : Joaquim Filipe

Publisher : Springer Science & Business Media

Page : 408 pages

File Size : 21,52 MB

Release : 2008-11-02

Category : Computers

ISBN : 3540886532

Get eBook

Book Description

This book contains the best papers of the 4th International Conference on E-business and Telecommunications (ICETE), which was held during July 28–31, 2007 in Barcelona, Spain. The conference reflects a continuing effort to increase the dissemination of recent research results among professionals who work in the areas of e-business and telecommunications. ICETE is a joint international conf- ence integrating four major areas of knowledge that are divided into four cor- sponding conferences: ICE-B (International Conference on e-Business), SECRYPT (International Conference on Security and Cryptography), WINSYS (International Conference on Wireless Information Systems) and SIGMAP (International Conf- ence on Signal Processing and Multimedia). The program of this joint conference included several outstanding keynote lectures presented by internationally renowned distinguished researchers who are experts in the various ICETE areas. Their keynote speeches contributed to the ov- all quality of the program and heightened the significance of the theme of the conference. The conference topic areas define a broad spectrum in the key areas of- business and telecommunications. This wide view has made it appealing to a global audience of engineers, scientists, business practitioners and policy experts. The papers accepted and presented at the conference demonstrated a number of new and innovative solutions for e-business and telecommunication networks and systems, showing that the technical problems in these fields are challenging, related and significant.



Security in Virtual Worlds, 3D Webs, and Immersive Environments: Models for Development, Interaction, and Management

Author : Rea, Alan

Publisher : IGI Global

Page : 355 pages

File Size : 38,71 MB

Release : 2010-11-30

Category : Computers

ISBN : 1615208925

Get eBook

Book Description

Although one finds much discussion and research on the features and functionality of Rich Internet Applications (RIAs), the 3D Web, Immersive Environments (e.g. MMORPGs) and Virtual Worlds in both scholarly and popular publications, very little is written about the issues and techniques one must consider when creating, deploying, interacting within, and managing them securely. Security in Virtual Worlds, 3D Webs, and Immersive Environments: Models for Development, Interaction, and Management brings together the issues that managers, practitioners, and researchers must consider when planning, implementing, working within, and managing these promising virtual technologies for secure processes and initiatives. This publication discusses the uses and potential of these virtual technologies and examines secure policy formation and practices that can be applied specifically to each.



Cyber Crime: Concepts, Methodologies, Tools and Applications

Author : Management Association, Information Resources

Publisher : IGI Global

Page : 1885 pages

File Size : 19,95 MB

Release : 2011-11-30

Category : Computers

ISBN : 1613503245

Get eBook

Book Description

Threatening the safety of individuals, computers, and entire networks, cyber crime attacks vary in severity and type. Studying this continually evolving discipline involves not only understanding different types of attacks, which range from identity theft to cyberwarfare, but also identifying methods for their prevention. Cyber Crime: Concepts, Methodologies, Tools and Applications is a three-volume reference that explores all aspects of computer-based crime and threats, offering solutions and best practices from experts in software development, information security, and law. As cyber crime continues to change and new types of threats emerge, research focuses on developing a critical understanding of different types of attacks and how they can best be managed and eliminated.



Privacy Technologies and Policy

Author : Bettina Berendt

Publisher : Springer

Page : 222 pages

File Size : 20,40 MB

Release : 2016-03-09

Category : Computers

ISBN : 3319314564

Get eBook

Book Description

This book constitutes the thoroughly refereed post-conference proceedings of the Third Annual Privacy Forum, APF 2015, held in Luxembourg, Luxembourg, in October 2015. The 11 revised full papers presented in this volume were carefully reviewed and selected from 24 submissions. The topics focus on privacy by design (PbD), i.e. the attempt to combine technical and organizational measures to ensure the basic rights of the individual. The papers are organized in three sessions: measuring privacy; rules and principles; legal and economic perspectives on privacy.



Trust Management

Author : Sandro Etalle

Publisher : Springer Science & Business Media

Page : 425 pages

File Size : 41,95 MB

Release : 2007-07-30

Category : Computers

ISBN : 0387736549

Get eBook

Book Description

This volume contains the proceedings of the IFIPTM 2007, the Joint iTrust and PST Conferences on Privacy, Trust Management and Security, held in Moncton, New Brunswick, Canada, in 2007. The annual iTrust international conference looks at trust from multidisciplinary perspectives: economic, legal, psychology, philosophy, sociology as well as information technology. This volume, therefore, presents the most up-to-date research on privacy, security, and trust management.



Managerial Perspectives on Intelligent Big Data Analytics

Author : Sun, Zhaohao

Publisher : IGI Global

Page : 357 pages

File Size : 38,58 MB

Release : 2019-02-22

Category : Computers

ISBN : 1522572783

Get eBook

Book Description

Big data, analytics, and artificial intelligence are revolutionizing work, management, and lifestyles and are becoming disruptive technologies for healthcare, e-commerce, and web services. However, many fundamental, technological, and managerial issues for developing and applying intelligent big data analytics in these fields have yet to be addressed. Managerial Perspectives on Intelligent Big Data Analytics is a collection of innovative research that discusses the integration and application of artificial intelligence, business intelligence, digital transformation, and intelligent big data analytics from a perspective of computing, service, and management. While highlighting topics including e-commerce, machine learning, and fuzzy logic, this book is ideally designed for students, government officials, data scientists, managers, consultants, analysts, IT specialists, academicians, researchers, and industry professionals in fields that include big data, artificial intelligence, computing, and commerce.



Advances in Service-Oriented and Cloud Computing

Author : Antonio Celesti

Publisher : Springer

Page : 465 pages

File Size : 50,6 MB

Release : 2016-04-26

Category : Computers

ISBN : 3319333135

Get eBook

Book Description

This volume contains the technical papers presented in the seven high-quality workshops associated with the European Conference on Service-Oriented and Cloud Computing, ESOCC 2015, held in Taormina, Italy, in September 2015: Third International Workshop on Cloud for IoT (CLloT 2015), 5th International Workshop on Adaptive Services for the Future Internet (WAS4FI 2015), Second Workshop on Seamless Adaptive Multi-cloud Management of Service-Based Applications (SeaClouds 2015), First International Workshop on Cloud Adoption and Migration (CloudWay 2015), First International Workshop on Digital Enterprise Architecture and Engineering (IDEA 2015), First Workshop on Federated Cloud Networking (FedCloudNet 2015). Abstracts of the presentations held at the European Projects Forum (EU Projects 2015) are included in the back matter of this volume. The 25 full papers and 6 short papers were carefully reviewed and selected from 48 submissions. They focus on specific topics in service-oriented and cloud computing domains such as limits and /or advantages of existing cloud solutions, Future Internet technologies, efficient and adaptive deployment and management of service-based applications across multiple clouds, novel cloud service migration practices and solutions, digitization of enterprises in the cloud computing era, federated cloud networking services.