Measuring Attack Surface in Software Architecture
Jeffrey Gennari and
David Garlan.
Technical report, CMU-ISR-11-121, Institute for Software Research, School of Computer Science, Carnegie Mellon University, 2011.
Online links:
Abstract
In this report we show how to adapt the notion of “attack surface” to formally evaluate security properties
at the architectural level of design and to identify vulnerabilities in architectural designs. Further we explore
the application of this metric in the context of architecture-based transformations to improve security
by reducing the attack surface. These transformations are described in detail and validated with a simple
experiment. |
Keywords: Acme, AcmeStudio, Architectural Analysis, Science of Security.
@TechReport{Gennari/2011,
AUTHOR = {Gennari, Jeffrey and Garlan, David},
TITLE = {Measuring Attack Surface in Software Architecture},
YEAR = {2011},
NUMBER = {CMU-ISR-11-121},
INSTITUTION = {Institute for Software Research, School of Computer Science, Carnegie Mellon University},
URL = {http://reports-archive.adm.cs.cmu.edu/anon/isr2011/abstracts/11-121.html},
PDF = {http://acme.able.cs.cmu.edu/pubs/uploads/pdf/CMU_ISR_11_121.PDF},
ABSTRACT = {In this report we show how to adapt the notion of “attack surface” to formally evaluate security properties
at the architectural level of design and to identify vulnerabilities in architectural designs. Further we explore
the application of this metric in the context of architecture-based transformations to improve security
by reducing the attack surface. These transformations are described in detail and validated with a simple
experiment.},
KEYWORDS = {Acme, AcmeStudio, Architectural Analysis, Science of Security} }
|