Developing a secure mobile Grid system through a UML extension

Journal of Universal Computer Science

Volumn 16, Issue 17, 2010, Pages 2333-2352

  Rosado, David G ^a   Fernández Medina, Eduardo ^a   López, Javier ^b   Piattini, Mario ^a  

^a UNIVERSITY OF CASTILLA LA MANCHA   (Spain)

^b UNIVERSITY OF MÁLAGA   (Spain)

Author keywords

Secure development; Secure mobile Grid; Security; UML extension; Use Cases

Indexed keywords

EID: 78650294009     PISSN: 0958695X     EISSN: 09486968     Source Type: Journal    
DOI: None     Document Type: Article

References (33)

1. [Alexander (2003)] Alexander, I., Misuse Cases: Use Cases with Hostile Intent. IEEE Software, (2003): p. 58-66.
2. [Alexander and Maiden (2004)] Alexander, I. and N. Maiden, Scenarios, Stories, Use Cases: Through the Systems Development Life-Cycle. (2004): John Wiley & Sons. [Artelsmair and Wagner (2003)] Artelsmair, C. and R. Wagner. Towards a Security
3. [Artelsmair and Wagner (2003)] Artelsmair, C. and R. Wagner. Towards a Security Engineering Process. in The 7th World Multiconference on Systemics, Cybernetics and Informatics. (2003). Orlando, Florida, USA.
4. [Bass, Bachmann et al. (2004)] Bass, L., F. Bachmann, R.J. Ellison, A.P. Moore, and M. Klein, Security and survivability reasoning frameworks and architectural design tactics. SEI, (2004).
5. [Bradford, Grizzell et al. (2007)] Bradford, P.G., B.M. Grizzell, G.T. Jay, and J.T. Jenkins, Cap. 4. Pragmatic Security for Constrained Wireless Networks, in Security in Distributed, Grid, Mobile, and Pervasive Computing, A. Publications, Editor. (2007): The University of Alabama, Tuscaloosa, USA. p. 440.
6. [Breu, Burger et al. (2003)] Breu, R., K. Burger, M. Hafner, J. Jürjens, G. Popp, V. Lotz, and G.Wimmel. Key issues of a formally based process model for security engineering. in International Conference on Software and Systems Engineering and their Applications. (2003).
7. [Dail, Sievert et al. (2004)] Dail, H., O. Sievert, F. Berman, H. Casanova, A. YarKhan, S. Vadhiyar, J. Dongarra, C. Liu, L. Yang, D. Angulo, and I. Foster, Scheduling In The Grid Application Development Software Project, in Grid resource management:state of the art and future trends. (2004). p. 73-98.
8. [Firesmith (2003)] Firesmith, D.G., Security Use Cases. Journal of Object Technology, (2003): p. 53-64.
9. [Foster and Kesselman (2004)] Foster, I. and C. Kesselman, The Grid2: Blueprint for a Future Computing Infrastructure. (2004), San Francisco, CA: Morgan Kaufmann Publishers; 2 edition.
10. [Giguhre (2001)] Giguhre, E., Java 2 Micro Edition: The Ultimate Guide to Programming Handheld and Embedded Devices. (2001): John Wiley & Sons, Inc.
11. [Guan, Zaluska et al. (2005)] Guan, T., E. Zaluska, and D.D. Roure. A Grid Service Infrastructure for Mobile Devices. in First International Conference on Semantics, Knowledge, an Grid (SKG 2005). (2005). Beijing, China.
12. [Haley, Moffet et al. (2006)] Haley, C.B., J.D. Moffet, R. Laney, and B. Nuseibeh. A framework for security requirements engineering. in Software Engineering for Secure Systems Workshop. (2006). Shangai, China.
13. [Jameel, Kalim et al. (2005)] Jameel, H., U. Kalim, A. Sajjad, S. Lee, and T. Jeon. Mobile-To- Grid Middleware: Bridging the gap between mobile and Grid environments. in European Grid Conference EGC 2005. (2005). Amsterdam, The Netherlands: Springer.
14. [Jürjens (2005)] Jürjens, J., Secure Systems Development with UML. (2005): Springer. 309.
15. [Kolonay and Sobolewski (2004)] Kolonay, R. and M. Sobolewski. Grid Interactive Serviceoriented Programming Environment. in Concurrent Engineering: The Worldwide Engineering Grid. (2004). Tsinghua, China: Press and Springer Verlag.
16. [Lodderstedt, Basin et al. (2002)] Lodderstedt, T., D. Basin, and J. Doser. SecureUML: A UML-Based Modeling Language for Model-Driven Security. in 5th International Conference on the Unified Modeling Language (UML), 2002. (2002). Dresden, Germany: Springer.
17. [Mouratidis and Giorgini (2006)] Mouratidis, H. and P. Giorgini, Integrating Security and Software Engineering: Advances and Future Vision. (2006): Idea Group Publishing.
18. [OMG (2007)] OMG, OMG Unified Modeling Language (OMG UML), Superstructure, V2.1.2. 2007.
19. [OMG (2008)] OMG, Software & Systems Process Engineering Meta-Model Specification (SPEM) 2.0. 2008.
20. [Park (2009)] Park, J.H., USF-PAS: Study on Core Security Technologies for Ubiquitous Security Framework. Journal of Universal Computer Science (J.UCS), (2009). 15(5): p. 1065- 1080.
21. [Rosado, Fernández-Medina et al. (2009a)] Rosado, D.G., E. Fernández-Medina, and J. López. Applying a UML Extension to build Use Cases diagrams in a secure mobile Grid application. in 5th International Workshop on Foundations and Practices of UML, in conjunction with the 28th International Conference on Conceptual Modelling, ER 2009. (2009a). Gramado, Brasil: LNCS 5833.
22. [Rosado, Fernández-Medina et al. (2009b)] Rosado, D.G., E. Fernández-Medina, and J. López, Obtaining Security Requirements for a Mobile Grid System. International Journal of Grid and High Performance Computing, (2009b). 1(3): p. 1-17.
23. [Rosado, Fernández-Medina et al. (2009c)] Rosado, D.G., E. Fernández-Medina, and J. López. Reusable Security Use Cases for Mobile Grid environments. in Workshop on Software Engineering for Secure Systems, in conjunction with the 31st International Conference on Software Engineering. (2009c). Vancouver, Canada.
24. [Rosado, Fernández-Medina et al. (2010a)] Rosado, D.G., E. Fernández-Medina, and J. López, Security Services Architecture for Secure Mobile Grid Systems. Journal of Systems Architecture. Special Issue on Security and Dependability Assurance of Software Architectures, (2010a).
25. [Rosado, Fernández-Medina et al. (2008a)] Rosado, D.G., E. Fernández-Medina, J. López, and M. Piattini. Engineering Process Based On Grid Use Cases For Mobile Grid Systems. in The Third International Conference on Software and Data Technologies- ICSOFT 2008. (2008a). Porto, Portugal.
26. [Rosado, Fernández-Medina et al. (2008b)] Rosado, D.G., E. Fernández-Medina, J. López, and M. Piattini. PSecGCM: Process for the development of Secure Grid Computing based Systems with Mobile devices. in International Conference on Availability, Reliability and Security (ARES 2008). (2008b). Barcelona, Spain: IEEE Computer Society.
27. [Rosado, Fernández-Medina et al. (2010b)] Rosado, D.G., E. Fernández-Medina, J. López, and M. Piattini, Analysis of Secure Mobile Grid Systems: A Systematic Approach. Information and Software Technology, (2010b). 52: p. 517-536.
28. [Rosado, Gutiérrez et al. (2006)] Rosado, D.G., C. Gutiérrez, E. Fernandez-Medina, and M. Piattini, Security Patterns and Requirements for Internet-based Applications. Internet Research, (2006). 16(5): p. 519-536.
29. [Røstad (2006)] Røstad, L. An extended misuse case notation: Including vulnerabilities and the insider threat. in XII Working Conference on Requirements Engineering: Foundation for Software Quality. (2006). Luxembourg.
30. [Sindre and Opdahl (2001)] Sindre, G. and A.L. Opdahl. Capturing Security Requirements by Misuse Cases. in 14th Norwegian Informatics Conference (NIK'2001). (2001). Tromsø, Norway.
31. [Sindre and Opdahl (2001)] Sindre, G. and A.L. Opdahl. Templates for misuse case description. in 7th International Workshop on Requirements Engineering: Foundation for Software Quality (REFSQ'01). (2001). Austria.
32. [Sindre and Opdahl (2005)] Sindre, G. and A.L. Opdahl, Eliciting security requirements with misuse cases. Requirements Engineering Journal, (2005). 10(1): p. 34-44.
33. [WAP Forum (2001)] WAP Forum. Wireless Transport Layer Security specification. 2001; Available from: http://www.openmobilealliance.org/tech/affiliates/wap/wap-261-wtls- 20010406-a.pdf.