DETECTING WEB SECURITY RISKS WITH UML DESIGN MODELS

机译：使用UML设计模型检测Web安全风险

获取原文

获取原文并翻译 | 示例

获取外文期刊封面目录资料

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Both legitimate users and attackers use resources to realizerntheir goals. These goals are either desired or malicious inrnterms of the role of users. This paper presents a novelrnapproach for detecting web security risks by focusing on thernresources used/exploited by both legitimate users andrnattackers. To systematically detect security risks of webrnapplications, first, security risks have been formally definedrnin terms of web resources, then, behavioral risk models arernconstructed based on UML design models. Security risks ofrna web application are identified and organized in terms ofrnuse case scenarios derived from the behavioral risk models.

机译：合法用户和攻击者都使用资源来实现其目标。这些目标是用户角色的理想选择或恶意选择。本文通过关注合法用户和攻击者都使用/利用的资源，提出了一种检测Web安全风险的新颖方法。为了系统地检测Web应用程序的安全风险，首先根据Web资源正式定义了安全风险，然后基于UML设计模型构造了行为风险模型。根据行为风险模型得出的用例场景来识别和组织Web应用程序的安全风险。

著录项

来源
《Proceedings of the IASTED international conference series on imaging and signal processing in health care and technology ; Human-computer interaction ; Communication, internet and information technology》|2012年|333-337|共5页
会议地点 Baltimore MD(US)
作者
Weifeng Xu; Lin Deng; Tao Ding;
展开▼
作者单位

Gannon University Department of Computer Information Science109 University Square, Erie, PA 16541, USA xu001@gannon.edu;

Department of Computer Science George Mason University4400 University Dr, Fairfax, Virginia 22030, USA ldeng2@gmu.edu;

Gannon University Department of Computer Information Science109 University Square, Erie, PA 16541, USA ding001@knights.gannon.edu;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
Security risks; web resources; risk annotation; UML models; risk formalization;

机译：安全风险； Web资源；风险注释； UML模型；风险形式化;

相似文献

外文文献
中文文献
专利

1. UML-based Conceptual Design Approach for Modeling Complex Processes in Web Application [J] . Siti Azreena Mubin, Azrul Hazri Jantan, Rusli Abdullah, International Journal of Applied Engineering Research . 2016,第6aPta9期

机译：基于UML的概念设计方法，用于Web应用程序中的复杂流程建模
2. An Extension of UML Modeling for Web Hypermedia Design: A Case Study [J] . Azrul Hazri Jantan International Journal of Information and Communication Technology Research . 2012,第1期

机译：Web超媒体设计的UML建模扩展：一个案例研究
3. Security Risk Assessment of Healthcare Web Application Through Adaptive Neuro-Fuzzy Inference System: A Design Perspective [J] . Jasleen Kaur, Asif Irshad Khan, Yoosef B Abushark, Risk Management and Healthcare Policy . 2020,第1期

机译：通过自适应神经模糊推理系统的安全风险评估医疗保健网络应用：设计视角
4. DETECTING WEB SECURITY RISKS WITH UML DESIGN MODELS [C] . Weifeng Xu, Lin Deng, Tao Ding IASTED International Conference on Communication, Internet, and Information Technology . 2012

机译：用UML设计模型检测Web安全风险
5. Model-to-model transformation approach for systematic integration of security aspects into UML 2.0 design models [D] . Nouh, Mariam 2010

机译：将安全方面系统集成到UML 2.0设计模型中的模型到模型转换方法
6. Design Implementation Use and Preliminary Evaluation of an UMLS-Enabled Terminology Web Service for Clinical Decision Support [O] . Kensaku Kawamoto, David F. Lobach 2006

机译：用于临床决策支持的启用UMLS的术语Web服务的设计实现使用和初步评估
7. Modeling Security Risks at the System Design Stage: Alignment of Mal Activity Diagrams and SecureUML to the ISSRM Domain Model [O] . Chowdhury Mohammad Jabed Morshed 2011

机译：在系统设计阶段对安全风险进行建模：恶意活动图和SecureUML与ISSRM域模型的对齐

DETECTING WEB SECURITY RISKS WITH UML DESIGN MODELS

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅