microSecEnD:用于微服务应用程序的安全增强数据流图数据集

2023 IEEE/ACM 20th International Conference on Mining Software Repositories (MSR) Pub Date : 2023-05-01 DOI:10.1109/MSR59073.2023.00030

S. Schneider, Tufan Özen, Michael Chen, R. Scandariato

{"title":"microSecEnD:用于微服务应用程序的安全增强数据流图数据集","authors":"S. Schneider, Tufan Özen, Michael Chen, R. Scandariato","doi":"10.1109/MSR59073.2023.00030","DOIUrl":null,"url":null,"abstract":"Dataflow diagrams (DFDs) are useful resources in securing applications since they show a software system’s architecture and allow assessing architectural security and weaknesses. Enriching them with annotations about implemented security features further strengthens this ability. This is especially true for microservice applications, as their most pressing security concerns stem from their separation into multiple services. Researchers need data to work on these issues and enhance microservices’ architectural security. In this work, we present microSecEnD, a dataset of 17 manually created DFDs that are extensively annotated with information on implemented security features. We provide traceability for all model items. Further, a mapping to a list of 17 architectural security best-practices is provided. Finally, for each best-practice that an application violates, we present a model variant that does adhere to it.","PeriodicalId":317960,"journal":{"name":"2023 IEEE/ACM 20th International Conference on Mining Software Repositories (MSR)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"microSecEnD: A Dataset of Security-Enriched Dataflow Diagrams for Microservice Applications\",\"authors\":\"S. Schneider, Tufan Özen, Michael Chen, R. Scandariato\",\"doi\":\"10.1109/MSR59073.2023.00030\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Dataflow diagrams (DFDs) are useful resources in securing applications since they show a software system’s architecture and allow assessing architectural security and weaknesses. Enriching them with annotations about implemented security features further strengthens this ability. This is especially true for microservice applications, as their most pressing security concerns stem from their separation into multiple services. Researchers need data to work on these issues and enhance microservices’ architectural security. In this work, we present microSecEnD, a dataset of 17 manually created DFDs that are extensively annotated with information on implemented security features. We provide traceability for all model items. Further, a mapping to a list of 17 architectural security best-practices is provided. Finally, for each best-practice that an application violates, we present a model variant that does adhere to it.\",\"PeriodicalId\":317960,\"journal\":{\"name\":\"2023 IEEE/ACM 20th International Conference on Mining Software Repositories (MSR)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-05-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2023 IEEE/ACM 20th International Conference on Mining Software Repositories (MSR)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/MSR59073.2023.00030\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 IEEE/ACM 20th International Conference on Mining Software Repositories (MSR)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MSR59073.2023.00030","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

数据流图(dfd)是保护应用程序的有用资源，因为它们显示了软件系统的架构，并允许评估架构安全性和弱点。用关于已实现的安全特性的注释来丰富它们，进一步增强了这种能力。对于微服务应用程序来说尤其如此，因为它们最紧迫的安全问题源于它们被分成多个服务。研究人员需要数据来解决这些问题，并增强微服务的架构安全性。在这项工作中，我们提出了microSecEnD，这是一个由17个手动创建的dfd组成的数据集，其中广泛注释了实现安全特性的信息。我们为所有模型项提供可追溯性。此外，还提供了到17个体系结构安全性最佳实践列表的映射。最后，对于应用程序违反的每个最佳实践，我们给出了遵循它的模型变体。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

microSecEnD: A Dataset of Security-Enriched Dataflow Diagrams for Microservice Applications

Dataflow diagrams (DFDs) are useful resources in securing applications since they show a software system’s architecture and allow assessing architectural security and weaknesses. Enriching them with annotations about implemented security features further strengthens this ability. This is especially true for microservice applications, as their most pressing security concerns stem from their separation into multiple services. Researchers need data to work on these issues and enhance microservices’ architectural security. In this work, we present microSecEnD, a dataset of 17 manually created DFDs that are extensively annotated with information on implemented security features. We provide traceability for all model items. Further, a mapping to a list of 17 architectural security best-practices is provided. Finally, for each best-practice that an application violates, we present a model variant that does adhere to it.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2023 IEEE/ACM 20th International Conference on Mining Software Repositories (MSR)

自引率

0.00%

发文量