Software security risk compliance and management model

Abstract

The objectives of the research work is to propose software security engineering models based on the various security requirements of the distributed software In the context of possible attacks and threats the behaviour and functionalities of the secured software system have to be declared in mathematical ways to implement the underlying models in a newlinepragmatic style for management of the risk through compliance management The core idea in the undertaken research work is to apply strong basic mathematical theories and then transform those theories into computational models within the framework of security risks and compliance management The first phase of the research work proposes a software based security engineering model using an algebric categorical and morphisms theory using abstract algebra in mathematics The earlier models on software security engineering focus different viewpoints on parallel processing and develop rewrite based knowledge but they do not include different functional mappings between many security objects for selection of the best strategy The proposed requirement model is based on the formal theory of category of objects and the morphisms between them In addition to n categories and multiple morphisms that were used for organizing security requirements of newlinefunctional objects of different categories The on demand security requirement objects morphisms and the uncertain events in any one of the subsystems are considered for management of this security requirement category as an algebraic data types The collection of security requirement objects using classification and clustering techniques are implicitly applied by the formation of category and morphism The risk and compliances both in the form of direct and indirect categories are mapped so as to provide a security assurance functors with minimum risk on the requirements to the next design state