Please use this identifier to cite or link to this item: http://hdl.handle.net/1959.3/3662

Download PDF (Published version) (Adobe Acrobat PDF, -1 bytes)

Title

A process framework for characterising security properties of component-based software systems

Author(s)

Han, Jun;  Khan, Khaled

Abstract

We present a security characterisation process framework for software components and their compositions in order to address the issue of trust in component based software. The process is based on the idea of publishing trust related properties of software components in machine readable as well as understandable form at the component level and incorporating such properties with runtime composition of the application system. We explore the actual process involved in specifying publishable security properties of atomic components, component certification, reasoning about compositional security contracts, and characterising ultimate systems-level security properties to inspire trust in software components.

Publication type

Conference paper

Research centre

Swinburne University of Technology. Faculty of Information and Communication Technologies

Source

Paper presented to the 2004 Australian Software Engineering Conference, pp. 358-367

Publication year

2004

Publisher

IEEE Computer Society

Publisher URL

http://dx.doi.org/10.1109/ASWEC.2004.1290489

Copyright

Copyright © 2004 IEEE. Published version of the paper reproduced here in accordance with the copyright policy of the publisher. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.

Full text

Peer reviewed