Maintaining Security in Software Evolution
Reussner, Ralf; Hasselbring, Wilhelm; Vogel-Heuser, Birgit; Keim, Jan; Märtin, Lukas; Goedicke, Michael (Hrsg). Managed Software Evolution. Springer 2019 S. 207 - 253
Erscheinungsjahr: 2019
ISBN/ISSN: 978-3-030-13498-3
Publikationstyp: Buchbeitrag
Doi/URN: 10.1007/978-3-030-13499-0_9
Geprüft | Bibliothek |
Inhaltszusammenfassung
In this chapter, we introduce a three-layered framework for maintaining security in software evolution at design time and run time. Additionally, we present a suite of five approaches that employ the framework. Two approaches focus on design-time use of knowledge extracted from natural-language documents to identify potential steps for co-evolving the system’s design and on integrating architecture model information with program code. A third approach bridges design time and run time to...In this chapter, we introduce a three-layered framework for maintaining security in software evolution at design time and run time. Additionally, we present a suite of five approaches that employ the framework. Two approaches focus on design-time use of knowledge extracted from natural-language documents to identify potential steps for co-evolving the system’s design and on integrating architecture model information with program code. A third approach bridges design time and run time to support architects as the software evolves. The two remaining approaches focus on run- time security maintenance. The fourth approach monitors run- time information in order to detect suspicious behaviour, which is reacted to automatically by adapting the system with mitigation, while the fifth approach focuses on interdisciplinary changes in automation software. In combination, the approaches address current challenges for security maintenance at design time and run time.» weiterlesen» einklappen