Secure software architectures

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by M. Moriconi Articles by Xiaolei Qian Articles by R.A. Riemenschneider Articles by Li Gong

1997 IEEE Symposium on Security and Privacy

Oakland, CA

May 04-May 07

ISBN: 0-8186-7828-3

	ASCII Text	x
	M. Moriconi, Xiaolei Qian, R.A. Riemenschneider, Li Gong, "Secure software architectures," Security and Privacy, IEEE Symposium on, pp. 0084, 1997 IEEE Symposium on Security and Privacy, 1997.

	BibTex	x
	@article{ 10.1109/SECPRI.1997.601320, author = {M. Moriconi and Xiaolei Qian and R.A. Riemenschneider and Li Gong}, title = {Secure software architectures}, journal ={Security and Privacy, IEEE Symposium on}, volume = {0}, year = {1997}, issn = {1540-7993}, pages = {0084}, doi = {http://doi.ieeecomputersociety.org/10.1109/SECPRI.1997.601320}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Security and Privacy, IEEE Symposium on TI - Secure software architectures SN - 1540-7993 SP EP A1 - M. Moriconi, A1 - Xiaolei Qian, A1 - R.A. Riemenschneider, A1 - Li Gong, PY - 1997 KW - authorisation; secure software architectures; computer industry; open architectural standards; competitive success; secure system design; security properties; X/Open distributed transaction processing reference architecture; secure access control; Bell-LaPadula model; formal methods VL - 0 JA - Security and Privacy, IEEE Symposium on ER -

M. Moriconi, Comput. Sci. Lab., SRI Int., Menlo Park, CA, USA

Xiaolei Qian, Comput. Sci. Lab., SRI Int., Menlo Park, CA, USA

R.A. Riemenschneider, Comput. Sci. Lab., SRI Int., Menlo Park, CA, USA

Li Gong, Comput. Sci. Lab., SRI Int., Menlo Park, CA, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/SECPRI.1997.601320

Abstract: The computer industry is increasingly dependent on open architectural standards for their competitive success. This paper describes a new approach to secure system design in which the various representations of the architecture of a software system are described formally and the desired security properties of the system are proven to hold at the architectural level. The main ideas are illustrated by means of the X/Open distributed transaction processing reference architecture, which is formalized and extended for secure access control as defined by the Bell-LaPadula model. The extension allows vendors to develop individual components independently and with minimal concern about security. Two important observations were gleaned on the implications of incorporating security into software architectures.

Index Terms:

authorisation; secure software architectures; computer industry; open architectural standards; competitive success; secure system design; security properties; X/Open distributed transaction processing reference architecture; secure access control; Bell-LaPadula model; formal methods

Citation:

M. Moriconi, Xiaolei Qian, R.A. Riemenschneider, Li Gong, "Secure software architectures," sp, pp.0084, 1997 IEEE Symposium on Security and Privacy, 1997

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.