Improving the classification of security patterns

Hironori Washizaki; Eduardo B. Fernandez; Katsuhisa Maruyama; Atsuto Kubo; Nobukazu Yoshioka

doi:10.1109/DEXA.2009.79

Improving the classification of security patterns

Hironori Washizaki, Eduardo B. Fernandez, Katsuhisa Maruyama, Atsuto Kubo, Nobukazu Yoshioka

School of Fundamental Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

21 Citations (Scopus)

Abstract

There are a large number of security patterns encapsulating reusable solutions to recurrent security problems. However, catalogs of security patterns are not enough because the designer does not know when and where to apply them, especially in a large complex system. There is a need to conduct more precise classifications of security patterns. We analyze here ways to represent security patterns using specialized models for their precise classification. We define two new types of models, one that describes how a security pattern relates to several classification dimensions (Dimension Graph), and another that describes how security patterns relate to each other (Pattern Graphs). We show these ideas with examples from security patterns.

Original language	English
Title of host publication	Proceedings - 20th International Workshop on Database and Expert Systems Applications, DEXA2009
Pages	165-170
Number of pages	6
DOIs	https://doi.org/10.1109/DEXA.2009.79
Publication status	Published - 2009 Dec 1
Event	20th International Workshop on Database and Expert Systems Applications, DEXA2009 - Linz, Austria Duration: 2009 Aug 31 → 2009 Sep 4

Publication series

Name	Proceedings - International Workshop on Database and Expert Systems Applications, DEXA
ISSN (Print)	1529-4188

Conference

Conference	20th International Workshop on Database and Expert Systems Applications, DEXA2009
Country	Austria
City	Linz
Period	09/8/31 → 09/9/4

ASJC Scopus subject areas

Engineering(all)

Access to Document

10.1109/DEXA.2009.79

Fingerprint Dive into the research topics of 'Improving the classification of security patterns'. Together they form a unique fingerprint.

Cite this

Washizaki, H., Fernandez, E. B., Maruyama, K., Kubo, A., & Yoshioka, N. (2009). Improving the classification of security patterns. In Proceedings - 20th International Workshop on Database and Expert Systems Applications, DEXA2009 (pp. 165-170). [5337198] (Proceedings - International Workshop on Database and Expert Systems Applications, DEXA). https://doi.org/10.1109/DEXA.2009.79

Improving the classification of security patterns. / Washizaki, Hironori; Fernandez, Eduardo B.; Maruyama, Katsuhisa; Kubo, Atsuto; Yoshioka, Nobukazu.

Proceedings - 20th International Workshop on Database and Expert Systems Applications, DEXA2009. 2009. p. 165-170 5337198 (Proceedings - International Workshop on Database and Expert Systems Applications, DEXA).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Washizaki, H, Fernandez, EB, Maruyama, K, Kubo, A & Yoshioka, N 2009, Improving the classification of security patterns. in Proceedings - 20th International Workshop on Database and Expert Systems Applications, DEXA2009., 5337198, Proceedings - International Workshop on Database and Expert Systems Applications, DEXA, pp. 165-170, 20th International Workshop on Database and Expert Systems Applications, DEXA2009, Linz, Austria, 09/8/31. https://doi.org/10.1109/DEXA.2009.79

@inproceedings{181aa85aab9b4f38958905c4be2204ab,

title = "Improving the classification of security patterns",

abstract = "There are a large number of security patterns encapsulating reusable solutions to recurrent security problems. However, catalogs of security patterns are not enough because the designer does not know when and where to apply them, especially in a large complex system. There is a need to conduct more precise classifications of security patterns. We analyze here ways to represent security patterns using specialized models for their precise classification. We define two new types of models, one that describes how a security pattern relates to several classification dimensions (Dimension Graph), and another that describes how security patterns relate to each other (Pattern Graphs). We show these ideas with examples from security patterns.",

author = "Hironori Washizaki and Fernandez, {Eduardo B.} and Katsuhisa Maruyama and Atsuto Kubo and Nobukazu Yoshioka",

year = "2009",

month = dec,

day = "1",

doi = "10.1109/DEXA.2009.79",

language = "English",

isbn = "9780769537634",

series = "Proceedings - International Workshop on Database and Expert Systems Applications, DEXA",

pages = "165--170",

booktitle = "Proceedings - 20th International Workshop on Database and Expert Systems Applications, DEXA2009",

note = "20th International Workshop on Database and Expert Systems Applications, DEXA2009 ; Conference date: 31-08-2009 Through 04-09-2009",

}

TY - GEN

T1 - Improving the classification of security patterns

AU - Washizaki, Hironori

AU - Fernandez, Eduardo B.

AU - Maruyama, Katsuhisa

AU - Kubo, Atsuto

AU - Yoshioka, Nobukazu

PY - 2009/12/1

Y1 - 2009/12/1

N2 - There are a large number of security patterns encapsulating reusable solutions to recurrent security problems. However, catalogs of security patterns are not enough because the designer does not know when and where to apply them, especially in a large complex system. There is a need to conduct more precise classifications of security patterns. We analyze here ways to represent security patterns using specialized models for their precise classification. We define two new types of models, one that describes how a security pattern relates to several classification dimensions (Dimension Graph), and another that describes how security patterns relate to each other (Pattern Graphs). We show these ideas with examples from security patterns.

AB - There are a large number of security patterns encapsulating reusable solutions to recurrent security problems. However, catalogs of security patterns are not enough because the designer does not know when and where to apply them, especially in a large complex system. There is a need to conduct more precise classifications of security patterns. We analyze here ways to represent security patterns using specialized models for their precise classification. We define two new types of models, one that describes how a security pattern relates to several classification dimensions (Dimension Graph), and another that describes how security patterns relate to each other (Pattern Graphs). We show these ideas with examples from security patterns.

UR - http://www.scopus.com/inward/record.url?scp=73849138269&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=73849138269&partnerID=8YFLogxK

U2 - 10.1109/DEXA.2009.79

DO - 10.1109/DEXA.2009.79

M3 - Conference contribution

AN - SCOPUS:73849138269

SN - 9780769537634

T3 - Proceedings - International Workshop on Database and Expert Systems Applications, DEXA

SP - 165

EP - 170

BT - Proceedings - 20th International Workshop on Database and Expert Systems Applications, DEXA2009

T2 - 20th International Workshop on Database and Expert Systems Applications, DEXA2009

Y2 - 31 August 2009 through 4 September 2009

ER -