Creating and maintaining secure software require a good understanding of the system and its environment. Knowledge management is therefore one of the key factors to maintain secure software successfully. However, acquiring and modeling knowledge is a labor-intensive and time-consuming task. Thus, knowledge ought to be shared among different projects and must be adapted to their specific needs. In this paper, we present an approach allowing the stepwise adaptation from domain- to project-specific knowledge based on OWL ontologies. For this purpose, we define a basic set of adaptation operators which allows effective and frugal changes. Moreover, we discuss how our approach can be integrated into common software process models in order to adapt knowledge required for maintenance. Since domain- and project-specific knowledge changes over time, we show how our approach copes with changes efficiently, so that the affected knowledge remains consistent. The shared use of knowledge significantly reduce the complexity and effort to model required knowledge in various projects. Our case study and tool implementation shows the benefits for maintaining secure systems.
Abstract @InProceedings{profes14,
author = {Thomas Ruhroth and Stefan G\"artner and Jens B\"urger and Jan J\"urjens and Kurt Schneider},
title = {Towards Adaptation and Evolution of Domain-specific Knowledge for Maintaining Secure Systems},
booktitle = {15th International Conference of Product Focused Software Development and Process Improvement (Profes'14)},
pages = {239--253},
editors = {Andreas Jedlitschka and Pasi Kuvaja and Marco Kuhrmann and Tomi Mannist\"o and J\"urgen M\"unch},
year = {2014},
volume = {8892},
series = {Lecture Notes in Computer Science},
publisher = {Springer-Verlag},
doi = {10.1007/978-3-319-13835-0_17},
file = {preprint:http\://rgse.uni-koblenz.de/web/pages/people/juerjens/publications/papers/profes14.pdf:URL;dblp:http://www.informatik.uni-trier.de/~ley/pers/hd/j/J=uuml=rjens:Jan.html#c113:URL;SpringerLink:http://link.springer.com/chapter/10.1007/978-3-319-13835-0_17:URL},
abstract = {Creating and maintaining secure software require a good understanding of the system and its environment. Knowledge management
is therefore one of the key factors to maintain secure software successfully. However, acquiring and modeling knowledge is a labor-intensive
and time-consuming task. Thus, knowledge ought to be shared among
different projects and must be adapted to their specific needs. In this
paper, we present an approach allowing the stepwise adaptation from
domain- to project-specific knowledge based on OWL ontologies. For
this purpose, we define a basic set of adaptation operators which allows
effective and frugal changes. Moreover, we discuss how our approach can
be integrated into common software process models in order to adapt
knowledge required for maintenance. Since domain- and project-specific
knowledge changes over time, we show how our approach copes with
changes efficiently, so that the affected knowledge remains consistent.
The shared use of knowledge significantly reduce the complexity and effort to model required knowledge in various projects. Our case study and
tool implementation shows the benefits for maintaining secure systems.
}
}
BibTeX DOI preprint dblp SpringerLink