Modelling secure multiagent systems

Abstract. In designing software systems, security is typically only one design objective among many. It may compete with other objectives such as functionality, usability, and performance. Too often, security mechanisms such as firewalls, access control, or encryption are adopted without explicit recognition of competing design objectives and their origins in stakeholder interests. Recently, there is increasing acknowledgement that security is ultimately about trade-offs. One can only aim for "good enough" security, given the competing demands from many parties. In this paper, we examine how conceptual modeling can provide explicit and systematic support for analyzing security trade-offs. After considering the desirable criteria for conceptual modeling methods, we examine several existing approaches for dealing with security trade-offs. From analyzing the limitations of existing methods, we propose an extension to the i* framework for security trade-off analysis, taking advantage of its multi-agent and goal orientation. The method was applied to several case studies used to exemplify existing approaches.

show abstract

TICSA Approach: Five Important Aspects of Multi-agent Systems

Hadzic

Chang

2008

On the Move to Meaningful Internet Systems: OTM 2008 Workshops

View full text Add to dashboard Cite

Modelling secure multiagent systems

Cited by 5 publications

References 3 publications

Specifying Security Requirements in Multi-agent Systems Using the Descartes-Agent Specification Language and AUML

Specifying Security Requirements in Multi-agent Systems Using the Descartes-Agent Specification Language and AUML

A Goal Oriented Approach for Modeling and Analyzing Security Trade-Offs

TICSA Approach: Five Important Aspects of Multi-agent Systems

Contact Info

Product

Resources

About