loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Eduardo B. Fernandez and Dereje Yimam

Affiliation: Florida Atlantic University, United States

Keyword(s): Compliance, Regulations, Business Software, Security Patterns, Reference Architectures.

Related Ontology Subjects/Areas/Topics: Information and Systems Security ; Security Engineering ; Security in Information Systems ; Security Information Systems Architecture and Design and Security Patterns ; Security Requirements ; Software Security

Abstract: Business software is subject to a variety of regulations depending on the type of application. For example, software handling of medical records must follow HIPAA; software for financial applications must comply with Sarbanes Oxley, and so on. A close examination of the policies included in those regulations shows that they have analog and common aspects. Analog parts of regulations can be expressed as Semantic Analysis Patterns (SAPs), which can lead to building similar parts in other regulations. Overlapping parts usually correspond to security patterns and can be used to add security to other regulations. If we collect SAPs and security patterns in a catalog we can build reference architectures (RAs) for existing and new regulations. The resultant Compliant RAs (CRAs) can be used as guidelines for building compliant applications.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 54.172.162.78

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
B. Fernandez, E. and Yimam, D. (2015). Towards Compliant Reference Architectures by Finding Analogies and Overlaps in Compliance Regulations. In Proceedings of the 12th International Conference on Security and Cryptography (ICETE 2015) - SECRYPT; ISBN 978-989-758-117-5; ISSN 2184-3236, SciTePress, pages 435-440. DOI: 10.5220/0005575604350440

@conference{secrypt15,
author={Eduardo {B. Fernandez}. and Dereje Yimam.},
title={Towards Compliant Reference Architectures by Finding Analogies and Overlaps in Compliance Regulations},
booktitle={Proceedings of the 12th International Conference on Security and Cryptography (ICETE 2015) - SECRYPT},
year={2015},
pages={435-440},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005575604350440},
isbn={978-989-758-117-5},
issn={2184-3236},
}

TY - CONF

JO - Proceedings of the 12th International Conference on Security and Cryptography (ICETE 2015) - SECRYPT
TI - Towards Compliant Reference Architectures by Finding Analogies and Overlaps in Compliance Regulations
SN - 978-989-758-117-5
IS - 2184-3236
AU - B. Fernandez, E.
AU - Yimam, D.
PY - 2015
SP - 435
EP - 440
DO - 10.5220/0005575604350440
PB - SciTePress