An architecture for security-oriented perfective maintenance of legacy software |
| |
| Affiliation: | 1. Department of Neurology, University Hospital of Ioannina, Ioannina, Greece;2. Adult Department, Danish Epilepsy Center, Epilepsihospitalet, Dianalund, Denmark;3. UCL Queen Square Institute of Neurology, Department of Clinical and Experimental Epilepsy, London, United Kingdom;4. Department of Neurology, Department of Clinical Neurophysiology and MEG, VU University Medical Center, Amsterdam, Netherlands;5. Epilepsy Center, University Medical Center, Freiburg, Germany;6. Moscow Research and Clinical Center for Neuriopsychiatry, Russian National Research Medical University, Moscow, Russia;7. Psychiatry Department, Strasbourg University Hospital, Strasbourg, France;8. National Centre for Epilepsy, Oslo University Hospital, Oslo, Norway;9. Division of Clinical Epileptology and Experimental Neurophysiology, “Carlo Besta” Neurological Institute Foundation, Milan, Italy;10. Oberärztin Station Gastaut/IME, Epilepsiezentrum, Kork, Germany;11. Epilepsy Surgery Centre, IRCCS NEUROMED, Pozzilli, Italy;12. Refractory Epilepsy Centre at Cliniquesuniversitaires Saint-Luc, University Hospital, Brussels, Belgium;13. EEG/Sleep Laboratory, Department of Neurosciences, Hospital de Santa Maria – CHLN, University Hospital, Lisbon, Portugal;14. Department of Neurology, Hospital Ruber Internacional & Hospital La Luz, Madrid, Spain;15. Epilepsy Surgery Center, Department of Neurosurgery, St. Ivan Rilski University Hospital, Sofia, Bulgaria;p. Epilepsy Center, Department of Neurology, University Hospital, Zagreb, Croatia;q. Department of Neurology, Istanbul University Cerrahpasa Faculty of Medicine, Istanbul, Turkey;r. Department of Clinical Neuroscience, Institute of Neuroscience and Physiology, Gothenburg University, Göteborg, Sweden;s. Department of Neurology Clinic B, The Cyprus Institute of Neurology & Genetics, Cyprus School of Molecular Medicine, Nicosia, Cyprus;t. National Institute of Psychiatry and Neurology, Department of Neurology, University of Pécs, Budapest, Hungary;u. Academic Neurology Unit, Royal Hallamshire Hospital, University of Sheffield, Sheffield, United Kingdom;v. Paracelsus Medical University Salzburg, Department of Neurology, Christian Doppler University Hospital, Salzburg, Austria;w. Department of Clinical Neurosciences, University Hospital of Lausanne (CHUV), Lausanne, Switzerland |
| |
| Abstract: | This work presents an implementation strategy which exploits the separation of concerns and reuse in a multi-tier architecture to improve the security (availability, integrity, and confidentiality) level of an existing application. Functional properties are guaranteed via wrapping of the existing software modules. Security mechanisms are handled by the business logic of the middle-tier: availability and integrity are achieved via replication of the functional modules and the confidentiality is obtained via cryptography. The technique is presented with regard to a case study application. We believe that our experience can be used as a guideline for software practitioners to solve similar problems. We thus describe the conceptual model behind the architecture, discuss implementation issues, and present technical solutions. |
| |
| Keywords: | |
| 本文献已被 ScienceDirect 等数据库收录! |
|
