A Methodology to Automate the Security Patterns Selection

Khudema Zahra, Shahid Hussain, Humaira Afzal, Muhammad Rafiq Mufti, Dost Muhammad Khan, Muhammad Khalid Sohail

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Security has become an important issue for software systems. The numbers of threats are advancing day by day making it more challengeable to cope with it. During the software development life cycle (especially security oriented applications) it is difficult for the novice users to adopt the security measures correctly. A lot of security patterns are available but the question is how to choose the right pattern from the set of given patterns. For this reason we proposed a three step methodology which will help in automating the security pattern selection process. We exploit the proposed methodology by leveraging the capabilities of Fuzzy c-mean and Text categorization approach. We used a sample of security patterns along with a set of 3 security problems to assess the efficacy of proposed methodology. The experimental results are promising in terms of organization and selection of security design patterns for given design problems at hand.

Original languageEnglish (US)
Title of host publicationSecurity, Privacy, and Anonymity in Computation, Communication, and Storage - 13th International Conference, SpaCCS 2020, Proceedings
EditorsGuojun Wang, Bing Chen, Wei Li, Roberto Di Pietro, Xuefeng Yan, Hao Han
PublisherSpringer Science and Business Media Deutschland GmbH
Pages408-419
Number of pages12
ISBN (Print)9783030688509
DOIs
StatePublished - 2021
Event13th International Conference on Security, Privacy, and Anonymity in Computation, Communication, and Storage, SpaCCS 2020 - Nanjing, China
Duration: Dec 18 2020Dec 20 2020

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume12382 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference13th International Conference on Security, Privacy, and Anonymity in Computation, Communication, and Storage, SpaCCS 2020
Country/TerritoryChina
CityNanjing
Period12/18/2012/20/20

All Science Journal Classification (ASJC) codes

  • Theoretical Computer Science
  • General Computer Science

Fingerprint

Dive into the research topics of 'A Methodology to Automate the Security Patterns Selection'. Together they form a unique fingerprint.

Cite this