Towards improving software security by using simulation to inform requirements and conceptual design

被引:0
|
作者
Nutaro, James [1 ]
Allgood, Glenn [2 ]
Kuruganti, Teja [3 ]
机构
[1] Oak Ridge Natl Lab, Computat Sci & Engn Div, Modeling & Simulat Grp, Oak Ridge, TN 37831 USA
[2] Oak Ridge Natl Lab, One Bethel Valley Rd, Oak Ridge, TN 37831 USA
[3] Oak Ridge Natl Lab, Computat Sci & Engn Div, Oak Ridge, TN 37831 USA
来源
JOURNAL OF DEFENSE MODELING AND SIMULATION-APPLICATIONS METHODOLOGY TECHNOLOGY-JDMS | 2016年 / 13卷 / 01期
关键词
Cyber-security; simulation; requirements; design; reliability; supervisory control;
D O I
10.1177/1548512915591049
中图分类号
T [工业技术];
学科分类号
08 ;
摘要
In this article we illustrate the use of modeling and simulation early in the system life-cycle to improve security and reduce costs. The models that we develop for this illustration are inspired by problems in reliability analysis and supervisory control, for which similar models are used to quantify failure probabilities and rates. In the context of security, we propose that models of this general type can be used to understand trades between risk and cost while writing system requirements and during conceptual design, and thereby significantly reduce the need for expensive security corrections after a system enters operation.
引用
收藏
页码:35 / 41
页数:7
相关论文
共 50 条
  • [21] Experiences of using a game for improving learning in software requirements elicitation
    Garcia, Ivan
    Pacheco, Carla
    Leon, Andres
    Calvo-Manzano, Jose A.
    COMPUTER APPLICATIONS IN ENGINEERING EDUCATION, 2019, 27 (01) : 249 - 265
  • [22] TOWARDS A FRAMEWORK INCORPORATING FUNCTIONAL AND NON FUNCTIONAL REQUIREMENTS FOR DATAWAREHOUSE CONCEPTUAL DESIGN
    El Mohajir, Mohammed
    Jellouli, Ismail
    IADIS-INTERNATIONAL JOURNAL ON COMPUTER SCIENCE AND INFORMATION SYSTEMS, 2014, 9 (01): : 43 - 54
  • [23] Towards Efficient Software Deployment in the Cloud Using Requirements Decomposition
    Alkhalid, Abdulaziz
    Lung, Chung-Horng
    Ajila, Samuel
    2013 IEEE FIFTH INTERNATIONAL CONFERENCE ON CLOUD COMPUTING TECHNOLOGY AND SCIENCE (CLOUDCOM), VOL 2, 2013, : 100 - 105
  • [24] CONCEPTUAL DESIGN OF A SOFTWARE OBJECT LIBRARY FOR SIMULATION OF SEMICONDUCTOR MANUFACTURING SYSTEMS
    GLASSEY, CR
    ADIGA, S
    JOURNAL OF OBJECT-ORIENTED PROGRAMMING, 1989, 2 (04): : 39 - 43
  • [25] Using Wiki as a Collaboration Platform for Software Requirements and Design
    Hadar, Irit
    Levy, Meira
    Ben-Chaim, Yochai
    Farchi, Eitan
    KNOWLEDGE, INFORMATION AND CREATIVITY SUPPORT SYSTEMS, 2016, 416 : 529 - 536
  • [26] Improving Prioritization of Software Weaknesses using Security Models with AVUS
    Renatus, Stephan
    Bartelheimer, Corrie
    Eichler, Jorn
    2015 IEEE 15TH INTERNATIONAL WORKING CONFERENCE ON SOURCE CODE ANALYSIS AND MANIPULATION (SCAM), 2015, : 259 - 264
  • [27] Improving Software Text Retrieval using Conceptual Knowledge in Source Code
    Lin, Zeqi
    Zou, Yanzhen
    Zhao, Junfeng
    Xie, Bing
    PROCEEDINGS OF THE 2017 32ND IEEE/ACM INTERNATIONAL CONFERENCE ON AUTOMATED SOFTWARE ENGINEERING (ASE'17), 2017, : 123 - 134
  • [28] Towards supporting Software Engineering using Deep Learning: A case of Software Requirements Classification
    Navarro-Almanza, Raul
    Juarez-Ramirez, Reyes
    Licea, Guillermo
    2017 5TH INTERNATIONAL CONFERENCE IN SOFTWARE ENGINEERING RESEARCH AND INNOVATION (CONISOFT 2017), 2017, : 116 - 120
  • [29] Using engineering control principles to inform the design of adaptive interventions: A conceptual introduction
    Rivera, Daniel E.
    Pew, Michael D.
    Collins, Linda A.
    DRUG AND ALCOHOL DEPENDENCE, 2007, 88 : S31 - S40
  • [30] A framework to inform PSS Conceptual Design by using system-in-use data
    Hussain, Romana
    Lockett, Helen
    Vasantha, Gokula Vijaykumar Annamalai
    COMPUTERS IN INDUSTRY, 2012, 63 (04) : 319 - 327
12345