Tag Archives: security

SATURN 2015: The Architectural Analysis for Security (AAFS) Method

Jungwoo Ryoo, Pennsylvania State University, and Rick Kazman, University of Hawaii and Carnegie Mellon Software Engineering Institute

by Jacob Tate, Mount St. Mary’s University

In his talk titled “Architectural Analysis for Security (AAFS),” Jungwoo Ryoo explained that there is an absence of security practices in software architecture. His research concerns developing and implementing a methodology to test and secure software systems starting at the design phase. The architectural analysis is basically a structured way of discovering these security issues. It has frequently been common to implement methods like this after the design of the system, and Dr. Ryoo warned against this.

Continue reading

Advertisements

Free SEI Webinar 1/21/15: Architecting Software in a New Age

webinar

Date: January 21, 2015
Time: 1:30 PM ET – 3:00 PM ET
Cost: Free

Register

About the Webinar

Trends and New Directions in Software Architecture, by Linda Northrop
1:30 PM ET – 2:15 PM ET

Software architecture has enormous influence on the behavior of a system. For many categories of systems, early architectural decisions can be a greater influence on success than nearly any other factor. After more than twenty years of research and practice, the foundations for software architecture have been established and codified, but challenges remain. Among other trends, increased connectivity, a shift to the cloud and to mobile platforms, and increased operational and market tempos have precipitated the need for changes in architectural practices and decisions. The first talk shares a perspective on the trends influencing the need for change, the related architectural challenges, and the applicable research and practices.

Continue reading

Link Roundup, July 10, 2014: Internet of Things

Internet of Things

Being Forgotten in the Internet of Things: Nick Malik at Microsoft Developer Network’s Inside Architecture discusses a complication in European citizens’ new “right to be forgotten” and proposes a solution.

Nest: A Small Company and a Big Disruption Enabled by Cloud: Gery Menegaz at IBM’s Thoughts on Cloud explains how the Nest Learning Thermostat made innovative use of cloud technology to turn a profit, help power companies solve a problem, and satisfy a government mandate.

Microsoft Backs Open Source for the Internet of Things: Patrick Thibodeau at Computerworld reports that Microsoft has joined the AllSeen Alliance to help promote an open source code framework to standardize device communications.

Internet of Things Done Wrong Stifles Innovation: Frank Palermo at InformationWeek considers the “dark side” of the Internet of Things. How will the IoT address security and privacy?

SATURN 2012 IEEE Software Plenary Talk: Frances Paulisch, Standardizing Speed and Security for Software-Based Systems

Standardizing Speed and Security for Software-Based Systems
Frances Paulisch, Siemens Corporate Technology

Common thematic trend at SATURN: people and culture. Change from command and control to more empowerment, autonomy, enabling people to make decentralized decisions. Conveying vision so people can make decisions in the right way is a more motivating way to work together.

Software initiative at Siemens will take on more of a governance role. Siemens has issues with embedded-system complexity. Software is not subject to law of physics. There are more interfaces with potential threats as well as benefits. As software interconnects with everything, that poses more threats, and there are more threats out there in the cyber world.

Continue reading