This chapter describes also the architectural patterns applied, the data ow amongst the components and a description of each component intervening in each step in the adaptation process of a software system. Architecturebased self protecting software system absp where a system may dynamically rearchitect itself using repeatable patterns as requirements and environments change. Architectural concepts for selfaware computing systems. Formal certification and compliance for runtime service environments. Emad albassam king abdulaziz university, saudi arabia 4. A systematic survey of self protecting software systems 17 process here we. Qosa proceedings of the 9th international acm sigsoft conference on quality of software. Architecturally significant requirements are those requirements that have a measurable effect on a computer system s architecture. A framework based on learning techniques for decisionmaking.
Wireless sensor networks have been a driving force of the industrial internet of things iiot. Incorporating architecturebased selfadaptation into an. Design decisions made during early development stages of self adaptive systems tend to have a significant impact upon system properties at run time e. Self protecting software system the first draft of this page has been done based on the survey on self protecting software systems done by boshra hosseini and laleh alimadadi june 2017. Architecturebased selfprotection proceedings of the 2014. In proceedings of the ieee 9th international conference on services computing scc. Autonomic computing is a broad research area, which includes systems from di erent domains like hardware, robotics, networks, grid computing, and software. A decentralized approach to architecturebased selfprotecting software systems. Soa is the overarching strategy for building software applications inside a companythink of an architectural blueprintexcept that in this case, the architecture calls for all the pieces of. Much self protection research todate, however, has focused on specific system layers e. Unlike previous hardware information flow tracking systems, datasafe software architecture bridges the semantic gap. In the approach advocated by this paper, selfadaptation is provided by adding a self. A self protecting system has the ability to detect malicious attacks and to defend itself against them. Evolving an adaptive industrial software system to use.
Architecturebased criticality assessment of software systems. Architecturebased selfprotecting software systems ey, sm, brs, dg, jg, pp. Architecturebased selfprotecting software systems request pdf. A software hardware architecture for selfprotecting data. These properties allow systems to automatically react to the users needs or to respond as soon as these systems meet execution environment changes 11, 12.
Yuan selfprotecting software systems 2014 i i i i a. Znn is a webbased clientserver system it has a load balancer with a pool of replicated web servers and a database server. Much selfprotection research todate, however, has focused on specific system layers e. Pdf a softwarehardware architecture for selfprotecting data. Since conventional software security approaches are often. Software architecture descriptions are commonly organized into views, which are analogous to the different types of blueprints made in building architecture. Introduction to system architecture architecture to value. Strategy and product development for complex systems is a comprehensive text that brings new focus to the emerging discipline of systems architecture. A common approach to achieve selfadaptation is the architecture based approach, which was proposed by yan et al. View test prep yuan self protecting software systems 2014 from inf bql1038a at ashford university. Architecturebased selfprotecting software systems proceedings of the 9th international conference on quality of software architectures qosa 20, vancouver, canada jun 20. In this research project, we are making a case for an architecturebased selfprotection absp approach to address the aforementioned challenges.
In absp, detection and mitigation of security threats are informed by an architectural representation of the software that is kept in sync with the running system. Much selfprotection research todate, however, has focused on specific system. Taylor, towards architecturebased selfhealing systems, in proc. Software engineering community has developed numerous approaches for promoting and ensuring security of software. Aug 07, 2016 in this research project, we are making a case for an architecture based self protection absp approach to address the aforementioned challenges. Software professionals routinely make decisions that impact. The architecture based design method january 2000 technical report felix bachmann, len bass, gary chastek, patrick donohoe, fabio peruzzi. In fact, many security vulnerabilities are effectively avoidable through proper application of wellestablished software engineering principles and techniques.
This can comprise both software and hardware requirements. In 35 we argued that building on recent research in architecture based self adaptation we could provide an approach to architecture based self protection, which can address. In this paper, we argue for an architecturebased self protection absp approach to address this challenge. Its architectures are often based on fault tolerance. This paper presents the architecture based design abd method for designing the highlevel software architecture for a product line or longlived system. Visualization approaches for security measurements. A taxonomy and survey of selfprotecting software systems. Languagebased techniques 23 can prevent leaking of in. The method includes a preliminary system characterization through an extensive software. Although there are also languagelevel or networklevel methods for self adaptation, architecture based methods have been widely accepted as more promising approaches, since they provide the required level of abstraction and generality to deal with the challenges posed 7. A system architecture for software defined industrial internet of things abstract. Reusability in architecturebased selfadaptation ecsa 18, september 2428, 2018, madrid, spain 3. Architecturebased selfprotection absp allows for the detection. Bradley schmerls publications carnegie mellon school of.
Pdf a taxonomy and survey of selfprotecting software systems. Coordinating architecturebased selfprotecting systems. Pdf selfprotecting software systems are a class of autonomic systems capable of detecting and. In this chapter, we first provide an introduction to the principles and. Architecturebased selfadaptation 7, 9, 10 is regarded as a promising approach to building. Architecture of network systems explains the practice and methodologies that will allow you to solve a broad range of problems in system design, including problems related to security, quality of service. Challenges in developing a software architecture evolution tool as a plugin. Architecture based selfprotecting software systems cpsvo. Aug 31, 2016 my work outlined in this project makes a convincing case for the hitherto overlooked role of software architecture in software security, especially software self protection. Architecturebased selfprotecting software systems adnan. A reference architecture for componentbased selfadaptive. A systematic survey of selfprotecting software systems 17.
Selfprotecting software systems are a class of autonomic systems capable of. A softwarehardware architecture for selfprotecting data. View test prep yuan selfprotecting software systems 2014 from inf bql1038a at ashford university. This has motivated the development of selfprotecting software that is capable of detecting security threats and mitigating them through runtime adaptation techniques. Rainbow is a platform supporting architecturebased selfadaptation of software systems. However, uncertainty in the self adaptive software system has been obstructing the application of these methods in realworld.
In proceedings of the 19th acm conference on computer and communications security, october 2012. Abstractas any software system, a selfadaptive system is subject to security. An overview to software architecture in intrusion detection system mehdi bahrami1, mohammad bahrami2 department of computer engineering, i. Analyzing selfadaptation via model checking of stochastic games. Department of computer science volgenau school of engineering george mason university 4400 university dr. The design of dare is based on the autonomic computing mapek loop model and integrates architecture discovery mechanisms with recovery and adaptation connectors. Empirical resilience evaluation of an architecturebased.
Empirical case studies and experimental results from security measurements. In this report we study the concepts of selfhealing and selfprotection as a part. A system architecture for softwaredefined industrial. Chapter 1 software architecturebased selfadaptation. Architecture based self adaptive systems with multiple quality requirements. This paper proposes an architecturebased method, which allows characterizing the criticality of individual components and their impact on the overall system.
In proceedings of the ninth international acm sigsoft conference on the quality of software architectures qosa 20, pages 3342, 1721 june 20. Architecturebased selfprotecting software systems george. Qosa proceedings of the 9th international acm sigsoft conference on quality of software architectures. Architecturally significant requirements wikipedia. Recent research in architecture based self adaptation has addressed many of these issues in the context of system properties such as performance and cost. Engineering the upcoming generation of software systems and guaranteeing the required qualities is complex due to the inherent uncertainties at design time, such as new user needs and changing. Architecture based selfprotecting software systems. A decentralized approach to architecturebased selfprotecting.
Selfawareness in a computing system is achieved by implementing a modelbased learning, reasoning, and acting loop lram loop. Knowledge management powerful knowledge management software collects, stores, retrieves and presents current and historical process and. Selfprotecting software systems are the new technology that detects and mitigate the security threats inside the system rather the traditional way of. Architecture based self protecting software systems proceedings of the 9th international conference on quality of software architectures qosa 20, vancouver, canada jun 20.
Towards secure architecturebased adaptations ku leuven. An architecturebased approach to selfadaptive software. Architecture based self protecting software systems. A systems software architecture is widely regarded as one of the most important software artifacts. Acm transactions on autonomous and adaptive systems vol 8 no. A systematic survey of self protecting software systems. Software architecture topics architectural styles of software systems. A systematic survey of selfprotecting software systems 39. Selfprotection has been identified by kephart and chess 1 as one of the essential traits of selfmanagement for autonomic computing systems. It is both a readily accessible introduction to software. Introduction architecturebased selfadaptation 7, 9, 10 is regarded as a promising approach to building exible and dependable software systems.
Architecturebased selfprotecting software systems eric yuan, phd george mason university, 2016 dissertation director. We discuss the main reasons leading to this problem by looking into a number of architecture based self adaptation services and frameworks that have been proposed in recent years from. Software systems architecture, second edition is a highly regarded, practitioneroriented guide to designing and implementing effective architectures for information systems. Self protecting software systems are the new technology that detects and mitigate the security threats inside the system rather the traditional way of. They are growing in importance, as the stovepipe static methods of securing software systems have shown inadequate for the challenges posed by modern software systems. Similar to the feedback loops for selfadaptive software, we argue that the lram loop should be addressed during the architectural design of selfaware computing systems. A common approach to achieve selfadaptation is the architecturebased approach, which was proposed by yan et al. Selfprotecting software systems are a class of autonomic systems capable of detecting and mitigating security threats at runtime. Adaptation architecture for selfhealing computer systems. Selfprotecting software systems are the new technology that detects and mitigate the security threats inside the system. An enhanced goaloriented decisionmaking model for self. A systematic survey of self protecting software school ashford university. In proceedings of the ninth international acm sigsoft conference on the quality of software architectures qosa 20, 1721 june 20. Architecturebased selfprotecting software systems proceedings of.
Architecturebased selfadaptation is considered as a promising approach to drive down the development and operation costs of complex software systems operating in ever changing environments. In this paper, we argue for an architecture based self protection absp approach to address this challenge. According to their study, selfoptimizing has a strong relationship with efficiency, and selfprotecting can be associated with reliability of the system. Architecture based self protecting software systems eric yuan, phd george mason university, 2016 dissertation director. A protocol for a classification framework of uncertainty. Implementing selfadaptive software architecture by. A system might, for example, modify itself to impr ove system. This paper describes dare, an architecture based, decentralized framework that provides both self configuration and self healing properties to large and highly dynamic software systems. Eric yuan, sam malek, bradley schmerl, david garlan, jeffrey gennari. Hassan gomaa security is increasingly a principal concern that drives the design and construction of modern software systems. Under what conditions does the system undergo ada pta tion. Architecturebased selfprotection proceedings of the.
Repository pipe and filter case study of compiler architecture. Similar to any other software system, architecture based self adaptive systems should fulfill a variety of quality attributes in order to support a desired runtime system behavior and user experience. Infrastructure based on template engines for automatic. Index termsbyzantine fault tolerance, intrusion tolerance, state machine replication, distributed systems, trusted components 1 show context citation context. This has motivated the development of self protecting software that is capable of detecting security threats and mitigating them through runtime adaptation techniques. Coordinating architecturebased selfprotecting cabsp observed probabilistic poladian 2007 none. A distributed adaptation and failure recovery framework. Selfcontained systems scs are an architecture approach that takes ideas from microservice and combines them with approaches from classic web application development to gain a set of highly. A patternbased architectural style for selforganizing. They are a subset of requirements, the subset that affects the architecture of a system. A protocol for a classification framework of uncertainty in.