Home // PATTERNS 2011, The Third International Conferences on Pervasive Patterns and Applications // View article

A Systematic Security Analysis of Information Systems

Authors:
Roberto Ortiz
Santiago Moral-Rubio
Javier Garzás
Eduardo Fernandez-Medina

Keywords: Security; Security Methodology; Secure Systems Analysis; Security Patterns; Secure Information Systems

Abstract:
The integration of security into software development processes through methodologies guarantees that these developments are controlled, planned and verified at all stages. It is thus possible to avoid unexpected errors whilst improving the quality and security of the system produced. These methodologies can be enriched with the use of security patterns that compile the knowledge of security experts in a documented and structured manner, providing us with a systematic means to solve recurring problems. In this paper we shall summarize pattern-based security methodology in order to support both the construction of secure information systems and the maintenance of the level of the security attained, upon which we are currently working. We shall also provide an in–depth study of the analysis stage, showing the elements of which it is composed, such as the input and output artifacts, together with the main roles and activities that participate in it.

Pages: 151 to 156

Copyright: Copyright (c) IARIA, 2011

Publication date: September 25, 2011

Published in: conference

ISSN: 2308-3557

ISBN: 978-1-61208-158-8

Location: Rome, Italy

Dates: from September 25, 2011 to September 30, 2011