Reusable Secure Connectors for Secure Software Architecture

Shin, Michael; Gomaa, Hassan; Pathirage, Don

doi:10.1007/978-3-319-35122-3_13

Reusable Secure Connectors for Secure Software Architecture

Michael Shin¹⁵,
Hassan Gomaa¹⁶ &
Don Pathirage¹⁵

Conference paper
First Online: 10 May 2016

903 Accesses
2 Citations

Part of the book series: Lecture Notes in Computer Science ((LNPSE,volume 9679))

Abstract

This paper describes the design of reusable secure connectors that are used in the design of secure software architectures for distributed software applications. The secure connectors are designed separately from application components by reusing the appropriate communication pattern between components as well as the security services required by these components. Each secure connector is designed as a composite component that encapsulates both security service components and communication pattern components. Integration of security services and communication patterns within a secure connector is provided by a security coordinator. The main advantage is that secure connectors can be reused in different applications. In this paper, secure connectors are reused in electronic commerce and automated teller machine applications.

This is a preview of subscription content, log in via an institution.

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

References

Al-Azzani, S., Bahsoon, R.: SecArch: Architecture-level evaluation and testing for security. In: Joint Working IEEE/IFIP Conference on Software Architecture (WICSA) and European Conference on Software Architecture (ECSA), August 2012
Google Scholar
Baker, C., Shin M.: Aspect-oriented secure connectors for implementation of secure software architecture. In: International Conference on Software Engineering and Knowledge Engineering (SEKE 2014), Vancouver, 1–3 July 2014
Google Scholar
Banerjee, S., Mattmann, C.A., Medvidovic, N., Golubchik, L.: Leveraging architectural models to inject trust into software systems. In: Proceedings of the ICSE 2005 Workshop on Software Engineering for Secure Systems, St. Louis, Missouri, May 2005
Google Scholar
Basin, D., Clavel, M., Egea, M.: A decade of model-driven security. In: 16th ACM Symposium on Access Control Models and Technologies (SACMAT 2011), Innsbruck, 15–17 June 2011
Google Scholar
Deng, Y., Wang, J., Tsai, J.J.P., Beznosov, K.: An approach for modeling and analysis of security system architectures. IEEE Trans. Knowl. Data Eng. 15(5), 1099–1119 (2003)
Article Google Scholar
Fernandez, E.B.: Security Patterns in Practice. Wiley, New York (2013)
Google Scholar
Gomaa, H.: Software Modeling and Design: UML, Use Cases, Patterns, and Software Architectures. Cambridge University Press, Cambridge (2011)
Book Google Scholar
Gomaa, H., Shin, M.E.: Modeling complex systems by separating application and security concerns. In: 9th IEEE International Conference on Engineering of Complex Computer Systems (ICECCS 2004), Italy, April 2004
Google Scholar
Jürjens, J.: UMLsec: extending UML for secure systems development. In: Jézéquel, J.-M., Hussmann, H., Cook, S. (eds.) UML 2002. LNCS, vol. 2460, pp. 412–425. Springer, Heidelberg (2002)
Google Scholar
Ren, J., Taylor, R., Dourish, P., Redmiles, D.: Towards an architectural treatment of software security: A connector-centric approach. In: Proceedings of the Workshop on Software Engineering for Secure Systems, St. Louis, Missouri, 15–16 May 2005
Google Scholar
Schumacher, M., Fernandez, E.B., Hybertson, D., Buschmann, F., Sommerlad, P.: Security Patterns. Wiley, New York (2006)
Google Scholar
Shin, M.E., Gomaa, H.: Software modeling of evolution to a secure application: From requirements model to software architecture. Sci. Comput. Program. 66(1), 60–70 (2007)
Article MathSciNet MATH Google Scholar
Shin, M.E., Malhotra, B., Gomaa, H., Kang, T.: Connectors for secure software architectures. In: 24th International Conference on Software Engineering and Knowledge Engineering (SEKE 2012), San Francisco, 1–3 July 2012
Google Scholar
Taylor, R.N., Medvidovic, N., Dashofy, E.M.: Software Architecture: Foundations, Theory, and Practice. Wiley, Chichester (2010)
Google Scholar

Download references

Acknowledgement

Gomaa’s research is supported by the Air Force Office of Scientific Research under grant number FA9550-16-1-0030.

Author information

Authors and Affiliations

Department of Computer Science, Texas Tech University, Lubbock, TX, USA
Michael Shin & Don Pathirage
Department of Computer Science, George Mason University, Fairfax, VA, USA
Hassan Gomaa

Authors

Michael Shin
View author publications
You can also search for this author in PubMed Google Scholar
Hassan Gomaa
View author publications
You can also search for this author in PubMed Google Scholar
Don Pathirage
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Michael Shin .

Editor information

Editors and Affiliations

University of Cyprus, Nicosia, Cyprus
Georgia M. Kapitsaki
Universidade Federal da Bahia, Salvador, Bahia, Brazil
Eduardo Santana de Almeida

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Shin, M., Gomaa, H., Pathirage, D. (2016). Reusable Secure Connectors for Secure Software Architecture. In: Kapitsaki, G., Santana de Almeida, E. (eds) Software Reuse: Bridging with Social-Awareness. ICSR 2016. Lecture Notes in Computer Science(), vol 9679. Springer, Cham. https://doi.org/10.1007/978-3-319-35122-3_13

Download citation

DOI: https://doi.org/10.1007/978-3-319-35122-3_13
Published: 10 May 2016
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-35121-6
Online ISBN: 978-3-319-35122-3
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics