Abstract:
Security design patterns have been proposed recently as a tool for the improvement of software security during the architecture and design phases. Since the appearance of this research topic in 1997, several catalogs have emerged, and the security pattern community has produced significant contributions, with many related to design. In this paper, we survey major contributions in the state of the art in the field of security design patterns and assess their quality in the context of an established classification. From our results, we determined a classification of inappropriate pattern qualities. Using a six sigma approach, we propose a set of desirable properties that would prevent flaws in new design patterns, as well as a template for expressing them
Citation:
Laverdiere, M. A., Mourad, A., Hanna, A., & Debbabi, M. (2006, May). Security design patterns: Survey and evaluation. In 2006 Canadian Conference on Electrical and Computer Engineering (pp. 1605-1608). IEEE.