- We will send in 10–14 business days.
/images/books/13226874/9783658376642.jpg)
- Author: Sven Matthias Peldszus
- Publisher: Springer Vieweg
- Year: 2022
- ISBN-10: 3658376643
- ISBN-13: 9783658376642
- Format: 14.8 x 21 x 2.6 cm, minkšti viršeliai
- Language: English
- SAVE -10% with code: EXTRA
Security Compliance in Model-Driven Development of Software Systems in Presence of Long-Term Evolution and Variants (e-book) (used book) | bookbook.eu
Reviews
Description
For ensuring a software system's security, it is vital to keep up with changing security precautions, attacks, and mitigations. Although model-based development enables addressing security already at design-time, design models are often inconsistent with the implementation or among themselves. An additional burden are variants of software systems. To ensure security in this context, we present an approach based on continuous automated change propagation, allowing security experts to specify security requirements on the most suitable system representation. We automatically check all system representations against these requirements and provide security-preserving refactorings for preserving security compliance. For both, we show the application to variant-rich software systems. To support legacy systems, we allow to reverse-engineer variability-aware UML models and semi-automatically map existing design models to the implementation. Besides evaluations of the individual contributions, we demonstrate the approach in two open-source case studies, the iTrust electronics health records system and the Eclipse Secure Storage.
EXTRA 10 % discount with code: EXTRA
The promotion ends in 21d.20:06:00
The discount code is valid when purchasing from 10 €. Discounts do not stack.
- Author: Sven Matthias Peldszus
- Publisher: Springer Vieweg
- Year: 2022
- ISBN-10: 3658376643
- ISBN-13: 9783658376642
- Format: 14.8 x 21 x 2.6 cm, minkšti viršeliai
- Language: English English
For ensuring a software system's security, it is vital to keep up with changing security precautions, attacks, and mitigations. Although model-based development enables addressing security already at design-time, design models are often inconsistent with the implementation or among themselves. An additional burden are variants of software systems. To ensure security in this context, we present an approach based on continuous automated change propagation, allowing security experts to specify security requirements on the most suitable system representation. We automatically check all system representations against these requirements and provide security-preserving refactorings for preserving security compliance. For both, we show the application to variant-rich software systems. To support legacy systems, we allow to reverse-engineer variability-aware UML models and semi-automatically map existing design models to the implementation. Besides evaluations of the individual contributions, we demonstrate the approach in two open-source case studies, the iTrust electronics health records system and the Eclipse Secure Storage.
Reviews