3 August 2009
Using Security Patterns to develop Secure Systems 
 

Prof. Eduardo B. Fernandez 
Florida Atlantic UniversityBoca Raton, FL, USA
 


A security pattern is a special type of software architectural pattern that describes solutions to security problems. We describe our recent results in methodologies to apply security patterns, where we are now and where we are going. In particular we are working on: Secure software development methodology—This is a general methodology to build secure systems. We have worked in the methodology itself and we are developing now specific aspects of it. Modeling and Classification of security patterns—We have tried to provide a precise characterization of security patterns that can be used as a basis for classification. A good classification makes the application of the pattern much easier along the software lifecycle. Misuse patterns-- A misuse pattern describes, from the point of view of the attacker, how a type of attack is performed (what units it uses and how), analyzes the ways of stopping the attack by enumerating possible security patterns that can be applied for this purpose, and describes how to trace the attack once it has happened by appropriate collection and observation of forensics data. They can be used in the lifecycle to prevent the occurrence of known types of attacks.

About Telekom Innovation Laboratories

LogoDTGerman

As one of the world's leading telecommunications and information technology service providers, Telekom Innovation Laboratories is setting international standards.

Contact Us

contact_us

Telekom Innovation Laboratories at Ben-Gurion University of the Negev - P.O.B. 653 Beer Sheva, 84105, Israel
Phone: +972 8 6428120/21
e-mail : This email address is being protected from spambots. You need JavaScript enabled to view it.