Architectural tactics and trade-offs for confidentiality

IF 3.7 2区计算机科学 Q1 COMPUTER SCIENCE, SOFTWARE ENGINEERING

Journal of Systems and Software Pub Date : 2025-03-19 DOI:10.1016/j.jss.2025.112433

Cristian Orellana , Hernán Astudillo

{"title":"Architectural tactics and trade-offs for confidentiality","authors":"Cristian Orellana , Hernán Astudillo","doi":"10.1016/j.jss.2025.112433","DOIUrl":null,"url":null,"abstract":"<div><div>Data protection has become a top priority, with blooming legal frameworks like the EU’s General Data Protection Regulation (GDPR) and others. Software architects need readily available information on existing alternative design decisions and their trade-offs regarding other quality attributes. Architectural tactic catalogs have been proposed to package architectural knowledge on design for specific quality attributes, but non for confidentiality per se and not as part of the traditional security C-I-A triad (Confidentiality, Integrity, Availability). This article surveys published confidentiality tactics; presents a stimulus-based scenario template; builds a new taxonomy that organizes existing and newly proposed confidentiality tactics; and aggregates expert knowledge about their trade-offs with other quality attributes. The taxonomy applicability is illustrated with the (actual) design rationale of an already published Internet of Things (IoT) system. Finally, the taxonomy usefulness for architectural decision-making is shown with an experimental study by 12 practitioners with varying degrees of experience. Although using the tactics catalog significantly improved <em>recall</em> and <em>F1-Score</em> for all subjects, this was especially true for seniors, suggesting that it enabled them to explore a broader solution space than just using previous knowledge. This new enriched taxonomy (1) extends the reach of architectural tactics to deal with confidentiality requirements and (2) provides guidance on their trade-offs regarding other quality attributes. This systematization increases the usefulness of architectural tactics as design techniques and facilitates their wider adoption by practicing architects for architectural decision-making.</div></div>","PeriodicalId":51099,"journal":{"name":"Journal of Systems and Software","volume":"226 ","pages":"Article 112433"},"PeriodicalIF":3.7000,"publicationDate":"2025-03-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Systems and Software","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S0164121225001013","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, SOFTWARE ENGINEERING","Score":null,"Total":0}

引用次数: 0

Abstract

Data protection has become a top priority, with blooming legal frameworks like the EU’s General Data Protection Regulation (GDPR) and others. Software architects need readily available information on existing alternative design decisions and their trade-offs regarding other quality attributes. Architectural tactic catalogs have been proposed to package architectural knowledge on design for specific quality attributes, but non for confidentiality per se and not as part of the traditional security C-I-A triad (Confidentiality, Integrity, Availability). This article surveys published confidentiality tactics; presents a stimulus-based scenario template; builds a new taxonomy that organizes existing and newly proposed confidentiality tactics; and aggregates expert knowledge about their trade-offs with other quality attributes. The taxonomy applicability is illustrated with the (actual) design rationale of an already published Internet of Things (IoT) system. Finally, the taxonomy usefulness for architectural decision-making is shown with an experimental study by 12 practitioners with varying degrees of experience. Although using the tactics catalog significantly improved recall and F1-Score for all subjects, this was especially true for seniors, suggesting that it enabled them to explore a broader solution space than just using previous knowledge. This new enriched taxonomy (1) extends the reach of architectural tactics to deal with confidentiality requirements and (2) provides guidance on their trade-offs regarding other quality attributes. This systematization increases the usefulness of architectural tactics as design techniques and facilitates their wider adoption by practicing architects for architectural decision-making.

查看原文本刊更多论文

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of Systems and Software 工程技术-计算机：理论方法

CiteScore

8.60

自引率

5.70%

发文量

193

审稿时长

16 weeks

期刊介绍： The Journal of Systems and Software publishes papers covering all aspects of software engineering and related hardware-software-systems issues. All articles should include a validation of the idea presented, e.g. through case studies, experiments, or systematic comparisons with other approaches already in practice. Topics of interest include, but are not limited to: •Methods and tools for, and empirical studies on, software requirements, design, architecture, verification and validation, maintenance and evolution •Agile, model-driven, service-oriented, open source and global software development •Approaches for mobile, multiprocessing, real-time, distributed, cloud-based, dependable and virtualized systems •Human factors and management concerns of software development •Data management and big data issues of software systems •Metrics and evaluation, data mining of software development resources •Business and economic aspects of software development processes The journal welcomes state-of-the-art surveys and reports of practical experience for all of these topics.