A Taxonomy of Information Security for Service-Centric Systems

Author

Savolainen, Pekka ; Niemelä, Eila ; Savola, Reijo

Author_Institution

VTT Tech. Res. Centre of Finland, Helsinki

fYear

2007

fDate

28-31 Aug. 2007

Firstpage

5

Lastpage

12

Abstract

Pervasive communications and the rapid expansion of Internet trigger a myriad of concerns about trust and information security. Moreover, composing software from components and services, originating from diverse sources, without a thorough quality assurance practices may expose serious weaknesses that open up the systems for malicious attacks and misuse. In order to guarantee the security of the systems we need a uniform understanding about what security is and how to measure it. This paper introduces a taxonomy of information security, intended for the use of software architects of service centric systems. The security taxonomy extends our quality oriented architecting environment (QoAE) - an integrated tool environment for defining quality ontologies, describing the quality properties of service architectures, and analyzing quality requirement satisfaction at the level of proposed architecture.

Keywords

Web services; security of data; software architecture; software quality; Internet trigger; information security; pervasive communication; quality ontology; quality oriented software architecting environment; service centric system; service oriented architecture; Communication system security; Computer architecture; Data security; ISO standards; Information security; Ontologies; Service oriented architecture; Software quality; Taxonomy; Web services;

fLanguage

English

Publisher

ieee

Conference_Titel

Software Engineering and Advanced Applications, 2007. 33rd EUROMICRO Conference on

Conference_Location

Lubeck

ISSN

1089-6503

Print_ISBN

978-0-7695-2977-6

Type

conf

DOI

10.1109/EUROMICRO.2007.12

Filename

4301059