Title :
Towards a Generic Process for Security Pattern Integration
Author :
Fuchs, Andreas ; Gürgens, Sigrid ; Rudolph, Carsten
Author_Institution :
Fraunhofer Inst. for Secure Inf. Technol., Darmstadt, Germany
fDate :
Aug. 31 2009-Sept. 4 2009
Abstract :
Interdependencies between different security patterns can influence the properties of a particular pattern when applied in conjunction with other patterns. The resulting properties will often be weaker due to the possibility of new attacks. In this paper we introduce a mechanism that leads towards a generic process for pattern integration. As an example, we use the interesting case in which the proper integration of two patterns provides stronger security properties than the simple unification of the two properties. Formally, this increase in security is achieved by linking parameters of refined versions of the individual properties. The example shows the combination of two different authenticity properties (authenticity of a device based on trusted platform module functionality and authenticity of a user by using SSL). Remarkably, previously proposed combinations of solutions do not satisfy the desired integrated security properties. This indicates that pattern integration requires means that go beyond simple unification. Our pattern integration process presents a first step in this direction.
Keywords :
formal specification; security of data; authenticity; security pattern integration; security property; Best practices; Data security; Databases; Expert systems; Information security; Information technology; Joining processes; Natural languages; Research and development; Runtime; formal models; security pattern integration; security properties;
Conference_Titel :
Database and Expert Systems Application, 2009. DEXA '09. 20th International Workshop on
Conference_Location :
Linz
Print_ISBN :
978-0-7695-3763-4
DOI :
10.1109/DEXA.2009.51
