 
|
|
|
カイヤ ハルヒコ
Kaiya Haruhiko 海谷 治彦 所属 神奈川大学 情報学部 計算機科学科 神奈川大学大学院 理学研究科 理学専攻(情報科学領域) 職種 教授 |
|
| 言語種別 | 英語 |
| 発行・発表の年月 | 2019/01 |
| 形態種別 | その他論文 |
| 査読 | 査読あり |
| 標題 | Designing Secure Software by Testing Application of Security Patterns |
| 執筆形態 | 共著 |
| 掲載誌名 | Exploring Security in Software Architecture and Design |
| 掲載区分 | 国外 |
| 出版社・発行元 | IGI global |
| 巻・号・頁 | 6,pp.136-169 |
| 担当範囲 | modeling patterns |
| 著者・共著者 | Takanori Kobashi, Hironori Washizaki, Nobukazu Yoshioka, Haruhiko Kaiya, Takao Okubo, Yoshiaki Fukazawa. |
| 概要 | Simply confirming potential threats and vulnerabilities in an early stage of the development process (e.g., the requirement or design phase) is insufficient because software developers are not necessarily security experts. Additionally, even if the software design considers security at an early stage, whether the software actually satisfies the security requirements must be confirmed. To realize secure design, the authors propose an application to design software systems with verification of security patterns using model testing. The method provides extended security patterns, which include requirement- and design-level patterns as well as a new designing and model testing process that uses these patterns. Once developers specify threats and vulnerabilities in the target system in an early stage of development, the method can verify whether the security patterns are properly applied and assess if the vulnerabilities are resolved. |
| DOI | 10.4018/978-1-5225-6313-6.ch006 |
| ISBN | 9781522563136 |
Copyright © Kanagawa University. All Rights Reserved.