BEATS: Search Engine for Architectural Strategies for Security

  • Marcelo Junior USP
  • Rodrigo Moreno UNIFEI
  • Lina Garcés UNIFEI
  • Elisa Nakagawa USP

Resumo


The software system’s architecture is an important artifact for addressing, at design time, quality attributes requirements, e.g., performance, reliability, scalability, and security, i.e., focus of this work. Some design strategies, such the application of architectural patterns or tactics, are available in literature and industry. Their reuse is considered a good practice, since they are proven solutions in real industry scenarios, in a diversity of problems, for instance, software vulnerabilities mitigation. Specifically, architectural strategies for security are widespread through different information sources, mostly closed to community contributions, impeding the consolidation of sustainable body of knowledge for security-by-design strategies. We propose BEATS, a web browser of architectural strategies for security. This tool aims to assist the unification and centralization of architectural knowledge for security reported in diverse information sources. BEATS is a more complete repository, with a friendly user interface. It also allows the security-by-design community contributions, adding new strategies and maintaining all knowledge updated over time. Video Link: https://youtu.be/76oQaX9tNuY

Palavras-chave: software architecture, security, tactics, knowledge repository, security-by-design, patterns
Publicado
03/10/2022
JUNIOR, Marcelo; MORENO, Rodrigo; GARCÉS, Lina; NAKAGAWA, Elisa. BEATS: Search Engine for Architectural Strategies for Security. In: SIMPÓSIO BRASILEIRO DE ENGENHARIA DE SOFTWARE (SBES), 36. , 2022, Uberlândia. Anais [...]. Porto Alegre: Sociedade Brasileira de Computação, 2022 . p. 263–268.