Ontology design and mapping for building secure e-commerce software
2012 (English)In: WEBIST 2012 - Proceedings of the 8th International Conference on Web Information Systems and Technologies, 2012, 167-173 p.Conference paper (Refereed)
Developers are struggling with the challenging task of producing secure e-commerce software. Nonetheless, software insecurity remains an issue for e-commerce organisations. Software engineers are expected to possess knowledge in the software engineering area, as well as, security. In addition, they are required to understand and correctly identify the relationships between the security concepts. However, developers commonly lack this knowledge and consequently, security is often omitted during the engineering process. To support developers to face the challenge, we use ontology based techniques for structuring and representation of security knowledge. Categorization according to the security properties of confidentiality, integrity, and availability is needed to provide a holistic view over the security requirements, assets, security threats, and security controls. Moreover, we propose mapping of different security ontologies to provide traceabil-ity. For this purpose, we use meta-agents and software agents in multi-agent system. We present a development scenario of electronic invoice presentment system, where we demonstrate how usage of ontologies in combination with multi-agent system can improve security of e-commerce software systems.
Place, publisher, year, edition, pages
2012. 167-173 p.
Agent system, E-commerce security, Mapping, Security ontology, Software security
IdentifiersURN: urn:nbn:se:kth:diva-95358ScopusID: 2-s2.0-84864882777ISBN: 978-989856508-2OAI: oai:DiVA.org:kth-95358DiVA: diva2:527950
8th International Conference on Web Information Systems and Technologies, WEBIST 2012; Porto;18 April 2012 through 21 April 2012
FunderICT - The Next Generation
QC 201205242012-05-232012-05-232014-01-27Bibliographically approved