A Framework for Security Assurance in Component Based Development
| Autor: | Hangkon Kim |
|---|---|
| Rok vydání: | 2004 |
| Předmět: | |
| Zdroj: | Computational Science and Its Applications – ICCSA 2004 ISBN: 9783540220541 ICCSA (1) |
| DOI: | 10.1007/978-3-540-24707-4_70 |
| Popis: | After a brief boom in the 90’s with small companies and independent software developers, the IT industry is re-discovering the need for teams of programmers developing large software projects. These development teams to leverage the effort and make the software available for future projects use a component-based paradigm. Naturally, detailed specifications and APIs are necessary in order to utilize these components in future projects. These specifications are primarily aimed at describing the normal or functional behavior of the components, not the abnormal or security related features and flaws. This paper will investigate the fundamental issues related to building and composing secure components. The approach outlined in this paper develops a certification process for testing software components for security properties. The anticipated results from this paper are a process, set of core white-box and black-box testing technologies to certify the security of software component and a framework for constructing compositional Component Security Assurance (CSA) based on the security property exposed by the atomic components. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|