Conference proceeding
Architecture Security Evaluation Method based on Security of the Components
2013 20th Asia-Pacific Software Engineering Conference (APSEC), pp.523-528
Asia-Pacific Software Engineering Conference
Asia-Pacific Software Engineering Conference (APSEC), 20th (Bangkok, Thailand, 02/12/2013 - 05/12/2013)
01/01/2013
Metrics
1 Record Views
Abstract
This paper presents a quantitative architecture security evaluation method to identify potential risks of an architecture. The method is based on security of the architecture components. In this method, components of the architecture are classified and their security measures are identified according to component function and architecture level. Then, an integration process applies analytic hierarchy process (AHP) and fuzzy evaluation analysis to determine quantitative and qualitative factors in evaluating the security of components. These factors are used to obtain security conclusions of the architecture. The experiment shows that the method not only improves efficiency of the evaluation, but also makes security evaluation process more objective and accurate.
Details
- Title
- Architecture Security Evaluation Method based on Security of the Components
- Creators
- Changxiao Du - Tianjin UniversityXiaohong Li - Tianjin UniversityHong Shi - Tianjin UniversityJing Hu - Tianjin UniversityRuitao Feng - Tianjin UniversityZhiyong Feng - Tianjin University
- Contributors
- P Muenchaisri (Editor)G Rothermel (Editor)
- Publication Details
- 2013 20th Asia-Pacific Software Engineering Conference (APSEC), pp.523-528
- Conference
- Asia-Pacific Software Engineering Conference (APSEC), 20th (Bangkok, Thailand, 02/12/2013 - 05/12/2013)
- Series
- Asia-Pacific Software Engineering Conference
- Publisher
- IEEE
- Number of pages
- 6
- Identifiers
- 991013214782402368
- Academic Unit
- Information Technology; Faculty of Science and Engineering
- Language
- English
- Resource Type
- Conference proceeding