Skip to Main content Skip to Navigation
New interface
Conference papers

An Asset-Based Assistance for Secure by Design

Abstract : With the growing numbers of security attacks causing more and more serious damages in software systems, security cannot be added as an afterthought in software development. It has to be built in from the early development phases such as requirement and design. The role responsible for designing a software system is termed an "architect", knowledgeable about the system architecture design, but not always well-trained in security. Moreover, involving other security experts into the system design is not always possible due to time-to-market and budget constraints. To address these challenges, we propose to define an asset-based security assistance in this paper, to help architects design secure systems even if these architects have limited knowledge in security. This assistance helps alert threats, and integrate the security controls over vulnerable parts of system into the architecture model. The central concept enabling this assistance is that of asset. We apply our proposal on a telemonitoring case study to show that automating such an assistance is feasible.
Document type :
Conference papers
Complete list of metadata

Cited literature [33 references]  Display  Hide  Download
Contributor : Nicolas Belloir Connect in order to contact the contributor
Submitted on : Thursday, November 5, 2020 - 5:37:24 PM
Last modification on : Friday, August 5, 2022 - 2:54:52 PM
Long-term archiving on: : Saturday, February 6, 2021 - 8:01:06 PM


Files produced by the author(s)


  • HAL Id : hal-02990897, version 1


Nan Messe, Nicolas Belloir, Vanea Chiprianov, Jamal El-Hachem, Régis Fleurquin, et al.. An Asset-Based Assistance for Secure by Design. APSEC 2020 - 27th Asia-Pacific Software Engineering Conference, Dec 2020, Singapore, Singapore. pp.1-10. ⟨hal-02990897⟩



Record views


Files downloads