A Security Ontology with MDA for Software Development

Wentao Kang, Ying Liang

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

It is found that current ontologies for security often emphasize the security concerns and concepts without their involvement in each of stages of a software development process. This means that the security concerns and concepts will not be actually considered throughout the development process. This leads a lack of approaches to involving security concerns and concepts throughout the development process. In order to overcome the lack, a new security ontology for software development has been defined together with MDA that has been used in software development so that security concerns and concepts can play a role in each of stages of the development process and be included as security components in software. This paper will firstly introduce this new ontology and its semantics, then show how to use it in the development process in terms of four case studies. The results of the case studies have proven that the proposed security ontology could be useful in modeling and design of security concerns and concepts at each of stages of the development process with MDA.
Original languageEnglish
Title of host publication2013 INTERNATIONAL CONFERENCE ON CYBER-ENABLED DISTRIBUTED COMPUTING AND KNOWLEDGE DISCOVERY (CYBERC)
PublisherIEEE
Pages67-74
ISBN (Print)978-0-7695-5106-7
DOIs
Publication statusPublished - Oct 2013

Keywords

  • securit ontology
  • security concerns and concepts
  • Model Driven Architecture (MDA)
  • software development

Cite this

Kang, W., & Liang, Y. (2013). A Security Ontology with MDA for Software Development. In 2013 INTERNATIONAL CONFERENCE ON CYBER-ENABLED DISTRIBUTED COMPUTING AND KNOWLEDGE DISCOVERY (CYBERC) (pp. 67-74). IEEE. https://doi.org/10.1109/CyberC.2013.20
Kang, Wentao ; Liang, Ying. / A Security Ontology with MDA for Software Development. 2013 INTERNATIONAL CONFERENCE ON CYBER-ENABLED DISTRIBUTED COMPUTING AND KNOWLEDGE DISCOVERY (CYBERC). IEEE, 2013. pp. 67-74
@inproceedings{32682594236a4234b0e2d0e8761d12c9,
title = "A Security Ontology with MDA for Software Development",
abstract = "It is found that current ontologies for security often emphasize the security concerns and concepts without their involvement in each of stages of a software development process. This means that the security concerns and concepts will not be actually considered throughout the development process. This leads a lack of approaches to involving security concerns and concepts throughout the development process. In order to overcome the lack, a new security ontology for software development has been defined together with MDA that has been used in software development so that security concerns and concepts can play a role in each of stages of the development process and be included as security components in software. This paper will firstly introduce this new ontology and its semantics, then show how to use it in the development process in terms of four case studies. The results of the case studies have proven that the proposed security ontology could be useful in modeling and design of security concerns and concepts at each of stages of the development process with MDA.",
keywords = "securit ontology, security concerns and concepts, Model Driven Architecture (MDA), software development",
author = "Wentao Kang and Ying Liang",
note = "Conference: 5th International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery (CyberC) Location: Beijing, PEOPLES R CHINA Date: OCT 10-12, 2013 Sponsor(s):IEEE; IEEE Comp Soc; Beijing Jiaotong Univ; Univ Louisville; Embedded & Pervasive Comp Lab; at&t; InfoBeyond; Comrise; Pivotal; RainStor; Huawei; IEEE CS Tech Comm Simulat; IEEE Task Force Networked Mobile Syst",
year = "2013",
month = "10",
doi = "10.1109/CyberC.2013.20",
language = "English",
isbn = "978-0-7695-5106-7",
pages = "67--74",
booktitle = "2013 INTERNATIONAL CONFERENCE ON CYBER-ENABLED DISTRIBUTED COMPUTING AND KNOWLEDGE DISCOVERY (CYBERC)",
publisher = "IEEE",
address = "United States",

}

Kang, W & Liang, Y 2013, A Security Ontology with MDA for Software Development. in 2013 INTERNATIONAL CONFERENCE ON CYBER-ENABLED DISTRIBUTED COMPUTING AND KNOWLEDGE DISCOVERY (CYBERC). IEEE, pp. 67-74. https://doi.org/10.1109/CyberC.2013.20

A Security Ontology with MDA for Software Development. / Kang, Wentao; Liang, Ying.

2013 INTERNATIONAL CONFERENCE ON CYBER-ENABLED DISTRIBUTED COMPUTING AND KNOWLEDGE DISCOVERY (CYBERC). IEEE, 2013. p. 67-74.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - A Security Ontology with MDA for Software Development

AU - Kang, Wentao

AU - Liang, Ying

N1 - Conference: 5th International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery (CyberC) Location: Beijing, PEOPLES R CHINA Date: OCT 10-12, 2013 Sponsor(s):IEEE; IEEE Comp Soc; Beijing Jiaotong Univ; Univ Louisville; Embedded & Pervasive Comp Lab; at&t; InfoBeyond; Comrise; Pivotal; RainStor; Huawei; IEEE CS Tech Comm Simulat; IEEE Task Force Networked Mobile Syst

PY - 2013/10

Y1 - 2013/10

N2 - It is found that current ontologies for security often emphasize the security concerns and concepts without their involvement in each of stages of a software development process. This means that the security concerns and concepts will not be actually considered throughout the development process. This leads a lack of approaches to involving security concerns and concepts throughout the development process. In order to overcome the lack, a new security ontology for software development has been defined together with MDA that has been used in software development so that security concerns and concepts can play a role in each of stages of the development process and be included as security components in software. This paper will firstly introduce this new ontology and its semantics, then show how to use it in the development process in terms of four case studies. The results of the case studies have proven that the proposed security ontology could be useful in modeling and design of security concerns and concepts at each of stages of the development process with MDA.

AB - It is found that current ontologies for security often emphasize the security concerns and concepts without their involvement in each of stages of a software development process. This means that the security concerns and concepts will not be actually considered throughout the development process. This leads a lack of approaches to involving security concerns and concepts throughout the development process. In order to overcome the lack, a new security ontology for software development has been defined together with MDA that has been used in software development so that security concerns and concepts can play a role in each of stages of the development process and be included as security components in software. This paper will firstly introduce this new ontology and its semantics, then show how to use it in the development process in terms of four case studies. The results of the case studies have proven that the proposed security ontology could be useful in modeling and design of security concerns and concepts at each of stages of the development process with MDA.

KW - securit ontology

KW - security concerns and concepts

KW - Model Driven Architecture (MDA)

KW - software development

U2 - 10.1109/CyberC.2013.20

DO - 10.1109/CyberC.2013.20

M3 - Conference contribution

SN - 978-0-7695-5106-7

SP - 67

EP - 74

BT - 2013 INTERNATIONAL CONFERENCE ON CYBER-ENABLED DISTRIBUTED COMPUTING AND KNOWLEDGE DISCOVERY (CYBERC)

PB - IEEE

ER -

Kang W, Liang Y. A Security Ontology with MDA for Software Development. In 2013 INTERNATIONAL CONFERENCE ON CYBER-ENABLED DISTRIBUTED COMPUTING AND KNOWLEDGE DISCOVERY (CYBERC). IEEE. 2013. p. 67-74 https://doi.org/10.1109/CyberC.2013.20