软件组件及其组成的安全特征

Proceedings 36th International Conference on Technology of Object-Oriented Languages and Systems. TOOLS-Asia 2000 Pub Date : 2000-10-30 DOI:10.1109/TOOLS.2000.885923

K. Khan, Jun Han, Yuliang Zheng

{"title":"软件组件及其组成的安全特征","authors":"K. Khan, Jun Han, Yuliang Zheng","doi":"10.1109/TOOLS.2000.885923","DOIUrl":null,"url":null,"abstract":"Proposes a security characterisation structure of software components and their composition. The structure provides a preliminary modelling of the security properties of stand-alone software components and some of their compositional primitives. In this paper, we are particularly interested in security properties related to user data protection of software components. The proposed compositional specification makes an attempt to model the resulting effect between the security attributes of two contracting components. The compositional specification structure can capture the results of the combined security specifications of two participating components in a contract. Our security specification syntax is based on four compositional elements: the identities of the contracting components, the actions to be performed in a compositional relationship, the security attributes supported by the components, and the resources to be used by other components. The structure is used in an example of secure interactions over a network in order to illustrate the applicability of the proposed work.","PeriodicalId":393932,"journal":{"name":"Proceedings 36th International Conference on Technology of Object-Oriented Languages and Systems. TOOLS-Asia 2000","volume":"10 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2000-10-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":"{\"title\":\"Security characterisation of software components and their composition\",\"authors\":\"K. Khan, Jun Han, Yuliang Zheng\",\"doi\":\"10.1109/TOOLS.2000.885923\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Proposes a security characterisation structure of software components and their composition. The structure provides a preliminary modelling of the security properties of stand-alone software components and some of their compositional primitives. In this paper, we are particularly interested in security properties related to user data protection of software components. The proposed compositional specification makes an attempt to model the resulting effect between the security attributes of two contracting components. The compositional specification structure can capture the results of the combined security specifications of two participating components in a contract. Our security specification syntax is based on four compositional elements: the identities of the contracting components, the actions to be performed in a compositional relationship, the security attributes supported by the components, and the resources to be used by other components. The structure is used in an example of secure interactions over a network in order to illustrate the applicability of the proposed work.\",\"PeriodicalId\":393932,\"journal\":{\"name\":\"Proceedings 36th International Conference on Technology of Object-Oriented Languages and Systems. TOOLS-Asia 2000\",\"volume\":\"10 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2000-10-30\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"9\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings 36th International Conference on Technology of Object-Oriented Languages and Systems. TOOLS-Asia 2000\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/TOOLS.2000.885923\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings 36th International Conference on Technology of Object-Oriented Languages and Systems. TOOLS-Asia 2000","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/TOOLS.2000.885923","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

摘要

提出了一种软件组件及其组成的安全特征结构。该结构提供了独立软件组件及其一些组合原语的安全属性的初步建模。在本文中，我们对与软件组件的用户数据保护相关的安全属性特别感兴趣。所提出的组合规范试图对两个契约组件的安全属性之间产生的影响进行建模。组合规范结构可以捕获合同中两个参与组件的组合安全规范的结果。我们的安全规范语法基于四个组合元素:契约组件的标识、在组合关系中执行的操作、组件支持的安全属性以及其他组件要使用的资源。该结构用于网络上安全交互的示例中，以说明所建议工作的适用性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Security characterisation of software components and their composition

Proposes a security characterisation structure of software components and their composition. The structure provides a preliminary modelling of the security properties of stand-alone software components and some of their compositional primitives. In this paper, we are particularly interested in security properties related to user data protection of software components. The proposed compositional specification makes an attempt to model the resulting effect between the security attributes of two contracting components. The compositional specification structure can capture the results of the combined security specifications of two participating components in a contract. Our security specification syntax is based on four compositional elements: the identities of the contracting components, the actions to be performed in a compositional relationship, the security attributes supported by the components, and the resources to be used by other components. The structure is used in an example of secure interactions over a network in order to illustrate the applicability of the proposed work.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings 36th International Conference on Technology of Object-Oriented Languages and Systems. TOOLS-Asia 2000

自引率

0.00%

发文量