Controlling Security of Software Development with Multi-agent System
2010 (English)In: KNOWLEDGE-BASED AND INTELLIGENT INFORMATION AND ENGINEERING SYSTEMS / [ed] Setchi R; Jordanov I; Howlett RJ; Jain LC, 2010, Vol. 6279, 98-107 p.Conference paper (Refereed)
Software systems become distributed and complex. Distributed systems are crucial for organizations since they provide possibility to share data and information, resources and services. Nowadays, many software systems are not developed from scratch: system development involves reuse of already developed components. However, with the intrusion in the computer systems, it has become important that systems must fulfill security goals and requirements. Moreover, interdependencies of components create problems during integration phase. Therefore, security properties of components should be considered and evaluated earlier in the lifecycle. In this paper, we propose an agent-oriented process that supports verification of fulfillment of security goals and validation of security requirements during different phases of development lifecycle. Moreover, the system needs to support mapping of security requirements to threat list to determine if any of the attacks in the list is applicable to the system to be developed. This is performed by the meta-agents. These meta-agents automatically create a security checklist, as well as, provide control of actions taken by human agent.
Place, publisher, year, edition, pages
2010. Vol. 6279, 98-107 p.
, Lecture Notes in Artificial Intelligence, ISSN 0302-9743 ; 6279
Multi-agent system, security engineering, risk management, security checklist, control system
Computer and Information Science
IdentifiersURN: urn:nbn:se:kth:diva-33476ISI: 000289445700011ScopusID: 2-s2.0-78649296403ISBN: 978-3-642-15383-9OAI: oai:DiVA.org:kth-33476DiVA: diva2:417200
14th Interntional Conference on Knowledge-Based and Intelligent Information and Engineering Systems
QC 201105162011-05-162011-05-092012-05-24Bibliographically approved