software systems by incorporating
play

Software Systems by Incorporating Security Knowledge Stefan Grtner - PowerPoint PPT Presentation

Nov 07, 2023 •231 likes •480 views

Maintaining Requirements for Long-Living Software Systems by Incorporating Security Knowledge Stefan Grtner and Kurt Schneider Software Engineering Group, Leibniz Universitt Hannover, Germany Thomas Ruhroth, Jens Brger, and Jan Jrjens

  1. Maintaining Requirements for Long-Living Software Systems by Incorporating Security Knowledge Stefan Gärtner and Kurt Schneider Software Engineering Group, Leibniz Universität Hannover, Germany Thomas Ruhroth, Jens Bürger, and Jan Jürjens Chair of Software Engineering, TU Dortmund, Germany International Requirements Engineering Conference (RE) 2014

  2. Overview • Motivation and Reseach Questions • Our Approach and its Components • iTrust Case Study • Conclusion and Future Work “Not bad kid, but you‘d vulnerable to attacks here and here .“ Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 2

  3. Motivation • Security is an important quality facet of software systems. • Identifying vulnerabilities in requirements is important to elicit new security requirements as well as to make reasonable design decisions. • Manual assessment approaches (e.g. reviews, inspections) are time-consuming and security expertise is required. • Security assessments have to be repeated if environmental knowledge changes. Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 3

  4. Motivation Time Assumptions about Environment and “Open APIs Knowledge of Change in Knowledge (display+keyboard) Attacker can be used to fake dialogs, “It is difficult to spy phish info.” information from a secure chip.” Use of internal and Attack using additional secure chips dialogs, so that the No changes in prevents the customer enters PIN in System leakage of PINs an insecure mode Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 4

  5. Research Questions RQ1: How to organize security knowledge in a way that it can be used for assessing requirements of a long-living software system? RQ2: How can requirements engineers identify security-critical issues in natural language requirements semiautomatically? RQ3: How can requirements engineers be supported to extract proper security knowledge from identified security-critical issues in requirements? Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 5

  6. Overview of our Approach Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 6

  7. Security Knowledge • Modeling security knowledge must be flexible enough to cope with Unknown Unknows • Knowledge can rapidly change or become invalid • Continously adapting knowledge is necessary Content Model Integrated Structure View Modelling Model Theory Generic Content Model Domain-specific Content Model Concept Exemplary Narrative Concept Models with Mathematical Repre- Taxonomies Guidelines Description Models Conformance Models sentation Constraints Flexibility Characteristic Calcuability [Fernandez2010] Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 7

  8. Security Concepts ans Relationships • SLR to find a sutiable securitry concepts and their relationships (attack-centric security knowledge) • Reviewed 16 publications from following areas: – Threat modeling – Risk analysis – Computer and network security – Software vulnerabilities – Information securitiy management • Focused on information systems, cyber-physical systems, distributed systems, and agend-based systems Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 8

  9. Security Concepts ans Relationships (cont.) Password, View, Database Gain unauthorized access user ident patient, admin Login form SQL injection attack Inside or outside (unknown) Inject SQL Sanitize input Improper neutralization of input statement Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 9

  10. Overview of our Approach Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 10

  11. Heuristics in Requirements Engineering Definition : A heuristic is an analytical method based on hypotheses to assess requirements with respect to security. Remarks : • Heuristics are able to cope with incomplete and uncertain knowledge • Heuristic findings are suboptimal (false positives) • Hypotheses may evolve for long-living software systems Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 11

  12. Security Assessment • To decrease effort and support evolution of environmental knowledge, natural language requirements need to be assessed automatically Use Cases Security Knowledge Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 12

  13. Step 1: Creating Analysis Model 1. The user enters an email address. 2. The user enters her PIN. 3. If successful the user is logged in. Otherwise, the system displays a message to inform the user whether the email address or the PIN are incorrect. 1. Extract relevant nouns 1. The user enters an email address. 2. The user enters her PIN. 3. If successful the user is logged in. Otherwise, the system displays a message to inform the user whether the email address or the PIN are incorrect. Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 13

  14. Step 1: Creating Analysis Model (cont.) 2. Label nouns according to the security knowledge 1. The user enters an email address. 2. The user enters her PIN. 3. If successful the user is logged in. Otherwise, the system displays a message to inform the user whether the email address or the PIN are incorrect. 3. Transform to analysis model Trust Level: user Trust Level: user Trust Level: user S1 S2 S3 Asset: email address Asset: PIN SC: system SC: System Entry Point: message S4 S5 Entry Point: message Asset: email address Asset: PIN Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 14

  15. Step 2: Extract Hypotheses from Knowledge 1. The attacker selects an user identifier and attempts to login with a random password. 2. If the systems displays a message that the identifier is incorrect, the attacker knows that a corresponding account exists. 3. The attacker tries to guess the password systematically. Transform to analysis model SC: system Trust Level: attacker Trust Level: attacker A1 A2 A3 Entry Point: message Asset: identifier, Asset: password Asset: identifier password Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 15

  16. Step 3: Vulnerability Analysis • Analysis models are semantically matched using WordNet (taxonomy-based semantic similarity) SC: system Trust Level: user SC: system Entry Point: message Asset: email address, Entry Point: message Asset: PIN PIN Asset: email address S1 S2 S3 S4 S5 A1 A2 A3 Trust Level: attacker SC: system Trust Level: attacker Asset: identifier, Entry Point: message Asset: password  Suspecious sequence has been detected (potential vulnerability) password Asset: identifier Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 16

  17. Overview of our Approach Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 17

  18. Security Context Knowledge Extraction • To support manual knowledge extraction, the requirements engineering is guided by the heuristic findings • Acquiring new knowledge by leveraging linguistic structure of sentences The user is requested to enter her email address {Asset} , PIN {Asset} , and a secure transaction number {Asset?}. • Modify, reinforce, and refine existing knowledge The IP address {  email address?} of the user is logged after an error occurs. Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 18

  19. iTrust Case Study • Medical information system iTrust: Management of health records for patients and work schedule for staff • Specified in 55 use cases written in natural language • Implemented as web application by Realsearch Research Group (North Carolina State University) Health Care Patients Use Cases Professionals (HCP) View, Edit Record View, Designate, Undesignate HCP Determine Needed Care Part of Specification … Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 19

  20. iTrust Case Study - Design • To setup security knowledge and misuse cases, 10 UCs have been selected randomly • Misuse Cases (MUC) have been obtained manually MUC1 : Interception of the registration email which • All UCs were evaluated by a security expert according to the contains sensitive information (threatens UC1). MUCs MUC2 : Address field in the patient view contains a • To simulate evolution, the case study is performed in 2 cross-site scripting vulnerability (threatens UC6). iterations (44/55 UCs) • Our approach is compared to Naive Bayes (NB), Support Vector Machine (SVM), and k Nearest Neighbor (k-NN) Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 20

  21. iTrust Case Study - Results Gärtner: Maintaining Requirements by Incorporating Security Knowledge 27.08.2014 21

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

E ff ectively Using JML Software Engineering Processes incorporating Formal Specification Joseph

E ff ectively Using JML Software Engineering Processes incorporating Formal Specification Joseph

E ff ectively Using JML Software Engineering Processes incorporating Formal Specification Joseph Kiniry Department of Computer Science University College Dublin Software Engineering Processes old-school processes CRC and state-chart based

233 views • 21 slides
Incorporating Research Driven Changes into Health Care Systems IT Operations: A

Incorporating Research Driven Changes into Health Care Systems IT Operations: A

Incorporating Research Driven Changes into Health Care Systems IT Operations: A MultiPerspective Panel Discussion Grand Rounds Webinar January 10, 2014 What to expect Presentation (30 Minutes) Introductions Overview of a common

617 views • 28 slides
Importance of incorporating ecosystem services within the context of social-ecological systems

Importance of incorporating ecosystem services within the context of social-ecological systems

Importance of incorporating ecosystem services within the context of social-ecological systems Lawrence (Larry) A. Kapustka, Ph.D LK Consultancy Turner Valley, Alberta kapustka@xplornet.com National Academies of Sciences, Engineering, &

498 views • 31 slides
SOFTWARE ARCHITECTURE SOFTWARE ARCHITECTURE OF AI-ENABLED SYSTEMS OF AI-ENABLED SYSTEMS

SOFTWARE ARCHITECTURE SOFTWARE ARCHITECTURE OF AI-ENABLED SYSTEMS OF AI-ENABLED SYSTEMS

SOFTWARE ARCHITECTURE SOFTWARE ARCHITECTURE OF AI-ENABLED SYSTEMS OF AI-ENABLED SYSTEMS Christian Kaestner Required reading: Hulten, Geoff. " Building Intelligent Systems: A Guide to Machine Learning Engineering. " Apress, 2018,

1.51k views • 88 slides
SOFTWARE ARCHITECTURE SOFTWARE ARCHITECTURE OF AI-ENABLED SYSTEMS OF AI-ENABLED SYSTEMS

SOFTWARE ARCHITECTURE SOFTWARE ARCHITECTURE OF AI-ENABLED SYSTEMS OF AI-ENABLED SYSTEMS

SOFTWARE ARCHITECTURE SOFTWARE ARCHITECTURE OF AI-ENABLED SYSTEMS OF AI-ENABLED SYSTEMS Christian Kaestner Required reading: Hulten, Geoff. " Building Intelligent Systems: A Guide to Machine Learning Engineering. " Apress, 2018,

924 views • 79 slides
Software Engineering for Embedded Systems Software Engineering for Embedded Systems Dr.-Ing.

Software Engineering for Embedded Systems Software Engineering for Embedded Systems Dr.-Ing.

Software Engineering for Embedded Systems Software Engineering for Embedded Systems Dr.-Ing. Mohammad. Abdullah Al Faruque Dipl.-Inform. Sebastian Kobbe CES - C hair for E mbedded S ystems (Prof. Dr. Jrg Henkel) Department of Computer Science

847 views • 72 slides
On the development, connections, and opportunities of incorporating RFT within AI recommender

On the development, connections, and opportunities of incorporating RFT within AI recommender

Introduction RFT AI RS Context-Aware Cold-start Links Challenges On the development, connections, and opportunities of incorporating RFT within AI recommender systems. Angela McCourt Discipline of Statistics, Trinity College Dublin,

699 views • 14 slides
INCORPORATING LARGE-SCALE CITIZEN INCORPORATING LARGE-SCALE CITIZEN DELIBERATION INTO

INCORPORATING LARGE-SCALE CITIZEN INCORPORATING LARGE-SCALE CITIZEN DELIBERATION INTO

INCORPORATING LARGE-SCALE CITIZEN INCORPORATING LARGE-SCALE CITIZEN DELIBERATION INTO ENVIRONMENTAL CONFLICT RESOLUTION America Speaks presentation to the 2008 ECR Conference Table Introductions Please form groups of 4-5 and give: Your name

848 views • 41 slides
Software Architectures of Dependable Systems: From Closed to Open Systems V. Issarny et al.

Software Architectures of Dependable Systems: From Closed to Open Systems V. Issarny et al.

Software Architectures of Dependable Systems: From Closed to Open Systems V. Issarny et al. INRIA Rocquencourt, France Architecture-based Development of Complex Software Systems Benefits wrt systems robustness Methods and tools

562 views • 27 slides
1 Software maintenance: Relative Cost 90% 80% 70% 60% 50% 40% 30% 20% 10% 0% 1970s

1 Software maintenance: Relative Cost 90% 80% 70% 60% 50% 40% 30% 20% 10% 0% 1970s

An Environment for Comprehending the Behavior of Software Systems Maher Salah Department of Computer Science Drexel University July 25, 2005 Overview Problem: Software maintenance Modern software systems Large, distributed,

628 views • 25 slides
Incorporating Ferrate Oxidation into Small Drinking Water Systems David A. Reckhow, Yanjun Jiang,

Incorporating Ferrate Oxidation into Small Drinking Water Systems David A. Reckhow, Yanjun Jiang,

RD 83560201 0 Incorporating Ferrate Oxidation into Small Drinking Water Systems David A. Reckhow, Yanjun Jiang, Joseph E. Goodwill, Joshua C. Cunningham, Xuyen Mai & John E. Tobiason University of Massachusetts Amherst, MA Ferrate Basics

277 views • 25 slides
Incorporating the Zebrafish Embryo Incorporating the Zebrafish Embryo Teratogenicity Assay Into

Incorporating the Zebrafish Embryo Incorporating the Zebrafish Embryo Teratogenicity Assay Into

Incorporating the Zebrafish Embryo Incorporating the Zebrafish Embryo Teratogenicity Assay Into the Drug Discovery Process Discovery Process Jedd Hillegass, Ph.D. Senior Toxicologist Lampire Biological Laboratories, Inc. Pipersville, PA, USA

497 views • 15 slides
RCKMS - Technology The Thinking Behind RCKMS Software Build a software suite based on an open

RCKMS - Technology The Thinking Behind RCKMS Software Build a software suite based on an open

RCKMS - Technology The Thinking Behind RCKMS Software Build a software suite based on an open source software, best practices, and standards based principles, incorporating the following components: 1. Generalpurpose Public Health Decision

309 views • 13 slides
Introduction Appreciate Software Engineering: Build complex software systems in the

Introduction Appreciate Software Engineering: Build complex software systems in the

Objectives Introduction Appreciate Software Engineering: Build complex software systems in the Chapter 1 context of frequent change Understand how to produce a high quality software system within the allowed time deal

411 views • 5 slides
Title V Block Grant Incorporating the National Standards for Systems of Care for CYSHCN Saylem

Title V Block Grant Incorporating the National Standards for Systems of Care for CYSHCN Saylem

Title V Block Grant Incorporating the National Standards for Systems of Care for CYSHCN Saylem DePasquale, CSHCN Epidemiologist February 10 th , 2018, AMCHP 2018 Process Needs Assessment Priority need for CSHCN: Medical home *46.9% of CSHCN

539 views • 9 slides
Incorporating Learning Styles in Learning Management Systems Sabine Graf Vienna University of

Incorporating Learning Styles in Learning Management Systems Sabine Graf Vienna University of

Incorporating Learning Styles in Learning Management Systems Sabine Graf Vienna University of Technology Womens Postgraduate College for Internet Technologies Vienna, Austria graf@wit.tuwien.ac.at Research assistant at Vienna University

557 views • 36 slides
The Future of E-Commerce is More Web-like Ian Jacobs W3C I. What the Web Means for Commerce

The Future of E-Commerce is More Web-like Ian Jacobs W3C I. What the Web Means for Commerce

The Future of E-Commerce is More Web-like Ian Jacobs W3C I. What the Web Means for Commerce Source: merchandisingmatters.com New Zealand E-Commerce Source: Nielsen New Zealand E-Commerce Report 2016 E-Commerce Rising Proportion of Retail

861 views • 45 slides
Solr Presented by Jacob Pitassi 07.28.12 Monday, July 30, 12 Hello Jacob Pitassi Director of

Solr Presented by Jacob Pitassi 07.28.12 Monday, July 30, 12 Hello Jacob Pitassi Director of

Solr Presented by Jacob Pitassi 07.28.12 Monday, July 30, 12 Hello Jacob Pitassi Director of Engineering jpitassi@stauffer.com stauffer.com Monday, July 30, 12 What are you talking about Monday, July 30, 12 Parts of this presentation

624 views • 26 slides
Security challenges within an Information System Directorate Works of the RWGs 5th meeting on

Security challenges within an Information System Directorate Works of the RWGs 5th meeting on

Security challenges within an Information System Directorate Works of the RWGs 5th meeting on Computer Development 25/04/2019 DGD/DSID/Ple Scurit 1 Security challenges within an Information System Directorate 29/04/2019 DGD/DSID/Ple

376 views • 14 slides
ALL THAT YOU NEED TO KNOW TO ENSURE WEB SECURITY Presented By: Ryan McElrath & Joe Kocan

ALL THAT YOU NEED TO KNOW TO ENSURE WEB SECURITY Presented By: Ryan McElrath & Joe Kocan

ALL THAT YOU NEED TO KNOW TO ENSURE WEB SECURITY Presented By: Ryan McElrath & Joe Kocan February 26, 2015 INTRODUCTIONS Ryan McElrath Chief Technology Officer Joe Kocan IT Security Consultant 2/26/2015 2 IMPORTANCE OF SECURITY

711 views • 24 slides
DC GIS Steering Committee November 2014 10:00 AM 12:00 PM 200 I Street SE, 5 th Floor

DC GIS Steering Committee November 2014 10:00 AM 12:00 PM 200 I Street SE, 5 th Floor

DC GIS Steering Committee November 2014 10:00 AM 12:00 PM 200 I Street SE, 5 th Floor Washington, DC 20003 Conference Room: 5009 Agenda Introductions and Establish Quorum Approve Minutes 8/21/2014 DC GIS News OCTO GIS News

1.1k views • 93 slides
Monthly Security Bulletin Briefing (July 2013) Teresa Ghiorzoe Security Program Manager LATAM

Monthly Security Bulletin Briefing (July 2013) Teresa Ghiorzoe Security Program Manager LATAM

Monthly Security Bulletin Briefing (July 2013) Teresa Ghiorzoe Security Program Manager LATAM Blog de Seguridad: http://blogs.technet.com/b/seguridad/ Twitter: LATAMSRC GBS Security Worldwide Programs 1 Security Advisories July 2013 New

413 views • 27 slides
Segurana em APIs REST Heitor Vital reas de Atuao o Cloud Computing

Segurana em APIs REST Heitor Vital reas de Atuao o Cloud Computing

Segurana em APIs REST Heitor Vital reas de Atuao o Cloud Computing twitter.com/heitorvital o Segurana Informao o Jogos slideshare.net/HeitorVital o Dispositivos Mveis o labs.siteblindado.com

412 views • 22 slides
Ramy Ahmed Fathy, PhD Vice Chairman of ITU-T SG20 Director, Digital Services Planning and Risk

Ramy Ahmed Fathy, PhD Vice Chairman of ITU-T SG20 Director, Digital Services Planning and Risk

ITU Workshop Smart Sustainable Cities (Samarqand - Uzbekistan 1- 2 June 2017) Trustworthy ICT: The notion of Trust, Security, and Privacy Ramy Ahmed Fathy, PhD Vice Chairman of ITU-T SG20 Director, Digital Services Planning and Risk Assessment

758 views • 52 slides

More recommend