Security Pattern Detection in Software Architectures

Đã lưu trong:

Chi tiết về thư mục
Xuất bản năm:	ProQuest Dissertations and Theses (2025)
Tác giả chính:	Alvi, Aleem Khalid
Được phát hành:	ProQuest Dissertations & Theses
Những chủ đề:	Accuracy Dictionaries Usability Design of experiments Software development Collaboration Quality control Automation Objectives Feedback Access control Product design Case studies Operating systems Quality standards Classification Semantic analysis Taxonomy Algorithms Classification schemes Automatic text analysis Architects Software engineering Semantics Computer science
Truy cập trực tuyến:	Citation/Abstract Full Text - PDF
Các nhãn:	Thêm thẻ Không có thẻ, Là người đầu tiên thẻ bản ghi này!

MARC


LEADER	00000nab a2200000uu 4500
001	3283374358
003	UK-CbPIL
020			\|a 9798270205263
035			\|a 3283374358
045	2		\|b d20250101 \|b d20251231
084			\|a 66569 \|2 nlm
100	1		\|a Alvi, Aleem Khalid
245	1		\|a Security Pattern Detection in Software Architectures
260			\|b ProQuest Dissertations & Theses \|c 2025
513			\|a Dissertation/Thesis
520	3		\|a Software design patterns help simplify large-scale software development by offering reusable solutions to common design challenges. Similarly, security patterns serve as reusable architectural solutions to recurring security problems and are essential for embedding robust security mechanisms in software systems. These patterns act as best practices for mitigating vulnerabilities and form crucial components in secure system design. However, applying security patterns can be error-prone. Several issues, including misused, omitted, or incorrectly implemented components, can leave systems vulnerable to attacks. To combat these shortcomings, detection techniques have emerged to identify when security patterns are missing, improperly used, or deviate from standard practice. While many methods exist for identifying general design patterns, only a handful specifically target security patterns. This thesis presents a generic security pattern detection framework that can employ various matrix-based matching techniques. The thesis first identifies the challenge of selecting appropriate security patterns through a systematic analysis of existing classification schemes. It proposes a novel classification framework aligned with the phases of the software development lifecycle. The framework uniquely incorporates security flaws by mapping security objectives to the requirements phase, security properties to the design phase, and attack patterns to the implementation phase. This process is enabling targeted and context-aware pattern selection. Building on this classification, the thesis introduces a Security Pattern Detection (SPD)framework to identify the presence or absence of security patterns within software systems through three core processes: system data extraction, pattern matching, and semantic validation. The SPD framework features three matrix-based matching techniques: Ordered Matrix Matching (OMM), which identifies complete pattern structures through ordered relationships; Non-Uniform Distributed Matrix Matching(NDMM), which detects partial or irregular implementations via class relationship similarity; and Diagonally Distributed Matrix Matching (DDMM), which uses diagonal matrix traversal for efficient detection in large-scale systems. The framework’s effectiveness is validated through experiments on multiple software systems, demonstrating high detection accuracy, zero false positives, and efficient resource usage. Among these, NDMM shows superior adaptability and precision, particularly in heterogeneous environments. Collectively, this research offers a unified approach to strategic classification and reliable detection of security patterns, significantly enhancing security assurance in software engineering.
653			\|a Accuracy
653			\|a Dictionaries
653			\|a Usability
653			\|a Design of experiments
653			\|a Software development
653			\|a Collaboration
653			\|a Quality control
653			\|a Automation
653			\|a Objectives
653			\|a Feedback
653			\|a Access control
653			\|a Product design
653			\|a Case studies
653			\|a Operating systems
653			\|a Quality standards
653			\|a Classification
653			\|a Semantic analysis
653			\|a Taxonomy
653			\|a Algorithms
653			\|a Classification schemes
653			\|a Automatic text analysis
653			\|a Architects
653			\|a Software engineering
653			\|a Semantics
653			\|a Computer science
773	0		\|t ProQuest Dissertations and Theses \|g (2025)
786	0		\|d ProQuest \|t ProQuest Dissertations & Theses Global
856	4	1	\|3 Citation/Abstract \|u https://www.proquest.com/docview/3283374358/abstract/embedded/6A8EOT78XXH2IG52?source=fedsrch
856	4	0	\|3 Full Text - PDF \|u https://www.proquest.com/docview/3283374358/fulltextPDF/embedded/6A8EOT78XXH2IG52?source=fedsrch