{"id":"https://openalex.org/W4220656428","doi":"https://doi.org/10.1186/s42400-022-00109-w","title":"Abstract security patterns and the design of secure systems","display_name":"Abstract security patterns and the design of secure systems","publication_year":2022,"publication_date":"2022-04-01","ids":{"openalex":"https://openalex.org/W4220656428","doi":"https://doi.org/10.1186/s42400-022-00109-w"},"language":"en","primary_location":{"id":"doi:10.1186/s42400-022-00109-w","is_oa":true,"landing_page_url":"https://doi.org/10.1186/s42400-022-00109-w","pdf_url":"https://cybersecurity.springeropen.com/track/pdf/10.1186/s42400-022-00109-w","source":{"id":"https://openalex.org/S3035238565","display_name":"Cybersecurity","issn_l":"2523-3246","issn":["2523-3246"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319965","host_organization_name":"Springer Nature","host_organization_lineage":["https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Cybersecurity","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://cybersecurity.springeropen.com/track/pdf/10.1186/s42400-022-00109-w","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5078871025","display_name":"Eduardo B. Fern\u00e1ndez","orcid":"https://orcid.org/0000-0002-5109-4591"},"institutions":[{"id":"https://openalex.org/I63772739","display_name":"Florida Atlantic University","ror":"https://ror.org/05p8w6387","country_code":"US","type":"education","lineage":["https://openalex.org/I63772739"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Eduardo B. Fernandez","raw_affiliation_strings":["Department of Electrical Engineering and Computer Science, Florida Atlantic University, Boca Raton, FL, USA"],"raw_orcid":"https://orcid.org/0000-0002-5109-4591","affiliations":[{"raw_affiliation_string":"Department of Electrical Engineering and Computer Science, Florida Atlantic University, Boca Raton, FL, USA","institution_ids":["https://openalex.org/I63772739"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5018128809","display_name":"Nobukazu Yoshioka","orcid":"https://orcid.org/0000-0002-1986-5675"},"institutions":[{"id":"https://openalex.org/I184597095","display_name":"National Institute of Informatics","ror":"https://ror.org/04ksd4g47","country_code":"JP","type":"facility","lineage":["https://openalex.org/I1319490839","https://openalex.org/I184597095","https://openalex.org/I4210158934"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Nobukazu Yoshioka","raw_affiliation_strings":["GRACE Center, National Institute of Informatics, Tokyo, Japan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"GRACE Center, National Institute of Informatics, Tokyo, Japan","institution_ids":["https://openalex.org/I184597095"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5033111691","display_name":"Hironori Washizaki","orcid":"https://orcid.org/0000-0002-1417-9879"},"institutions":[{"id":"https://openalex.org/I150744194","display_name":"Waseda University","ror":"https://ror.org/00ntfnx83","country_code":"JP","type":"education","lineage":["https://openalex.org/I150744194"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Hironori Washizaki","raw_affiliation_strings":["Waseda University, Tokyo, Japan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Waseda University, Tokyo, Japan","institution_ids":["https://openalex.org/I150744194"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5081439231","display_name":"Joseph W. Yoder","orcid":"https://orcid.org/0009-0006-9157-0050"},"institutions":[{"id":"https://openalex.org/I183874917","display_name":"Urbana University","ror":"https://ror.org/04kp3hw27","country_code":"US","type":"education","lineage":["https://openalex.org/I183874917"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Joseph Yoder","raw_affiliation_strings":["The Refactory, Inc, Urbana, IL, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"The Refactory, Inc, Urbana, IL, USA","institution_ids":["https://openalex.org/I183874917"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5078871025"],"corresponding_institution_ids":["https://openalex.org/I63772739"],"apc_list":null,"apc_paid":null,"fwci":2.5272,"has_fulltext":true,"cited_by_count":19,"citation_normalized_percentile":{"value":0.89388129,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":"5","issue":"1","first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9969000220298767,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6733798384666443},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6442133188247681},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.5036188960075378},{"id":"https://openalex.org/keywords/computer-security-model","display_name":"Computer security model","score":0.48044559359550476},{"id":"https://openalex.org/keywords/security-testing","display_name":"Security testing","score":0.4758048951625824},{"id":"https://openalex.org/keywords/core","display_name":"Core (optical fiber)","score":0.4342947006225586},{"id":"https://openalex.org/keywords/security-through-obscurity","display_name":"Security through obscurity","score":0.4274464249610901},{"id":"https://openalex.org/keywords/security-policy","display_name":"Security policy","score":0.42190441489219666},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.3866180181503296},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.3822875916957855},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.35904431343078613},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.3252946734428406},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.19076067209243774},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.15089824795722961},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.13648411631584167}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6733798384666443},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6442133188247681},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.5036188960075378},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.48044559359550476},{"id":"https://openalex.org/C195518309","wikidata":"https://www.wikidata.org/wiki/Q13424265","display_name":"Security testing","level":5,"score":0.4758048951625824},{"id":"https://openalex.org/C2164484","wikidata":"https://www.wikidata.org/wiki/Q5170150","display_name":"Core (optical fiber)","level":2,"score":0.4342947006225586},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.4274464249610901},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.42190441489219666},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.3866180181503296},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.3822875916957855},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.35904431343078613},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.3252946734428406},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.19076067209243774},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.15089824795722961},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.13648411631584167},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1186/s42400-022-00109-w","is_oa":true,"landing_page_url":"https://doi.org/10.1186/s42400-022-00109-w","pdf_url":"https://cybersecurity.springeropen.com/track/pdf/10.1186/s42400-022-00109-w","source":{"id":"https://openalex.org/S3035238565","display_name":"Cybersecurity","issn_l":"2523-3246","issn":["2523-3246"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319965","host_organization_name":"Springer Nature","host_organization_lineage":["https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Cybersecurity","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:e042b543471e45ab989694ab236a7e1a","is_oa":false,"landing_page_url":"https://doaj.org/article/e042b543471e45ab989694ab236a7e1a","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Cybersecurity, Vol 5, Iss 1, Pp 1-17 (2022)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1186/s42400-022-00109-w","is_oa":true,"landing_page_url":"https://doi.org/10.1186/s42400-022-00109-w","pdf_url":"https://cybersecurity.springeropen.com/track/pdf/10.1186/s42400-022-00109-w","source":{"id":"https://openalex.org/S3035238565","display_name":"Cybersecurity","issn_l":"2523-3246","issn":["2523-3246"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319965","host_organization_name":"Springer Nature","host_organization_lineage":["https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Cybersecurity","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/17","score":0.4300000071525574,"display_name":"Partnerships for the goals"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320327550","display_name":"National Institute of Informatics","ror":"https://ror.org/04ksd4g47"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4220656428.pdf","grobid_xml":"https://content.openalex.org/works/W4220656428.grobid-xml"},"referenced_works_count":25,"referenced_works":["https://openalex.org/W641490396","https://openalex.org/W1121564445","https://openalex.org/W1514888816","https://openalex.org/W1569144507","https://openalex.org/W1649645444","https://openalex.org/W1953739031","https://openalex.org/W1998017916","https://openalex.org/W2016259974","https://openalex.org/W2043056480","https://openalex.org/W2066736649","https://openalex.org/W2085775116","https://openalex.org/W2095881341","https://openalex.org/W2109477976","https://openalex.org/W2120628527","https://openalex.org/W2128694663","https://openalex.org/W2146395073","https://openalex.org/W2152110833","https://openalex.org/W2492605659","https://openalex.org/W2594384325","https://openalex.org/W2759368202","https://openalex.org/W3001371375","https://openalex.org/W3046679832","https://openalex.org/W3164157188","https://openalex.org/W3194081485","https://openalex.org/W4250099060"],"related_works":["https://openalex.org/W1528506334","https://openalex.org/W2384598124","https://openalex.org/W3189065608","https://openalex.org/W2397931496","https://openalex.org/W2608133077","https://openalex.org/W34731052","https://openalex.org/W2078706642","https://openalex.org/W896362041","https://openalex.org/W1561562093","https://openalex.org/W4385488256"],"abstract_inverted_index":{"Abstract":[0],"During":[1],"the":[2,8,34,47,85,90,123,168],"initial":[3],"stages":[4],"of":[5,37,79,87,126,136,170,191],"software":[6,21,42],"development,":[7],"primary":[9],"goal":[10],"is":[11,46],"to":[12,59,73,95,98,151,180,184,197,200,208],"define":[13],"precise":[14],"and":[15,29,65,93,172,183,227],"detailed":[16,175],"requirements":[17],"without":[18,77],"concern":[19],"for":[20],"realizations.":[22],"Security":[23,185],"constraints":[24],"should":[25,103],"be":[26,31,104,112,131],"introduced":[27],"then":[28],"must":[30,130],"based":[32],"on":[33,40,89],"semantic":[35],"aspects":[36],"applications,":[38],"not":[39],"their":[41,217,221],"architectures,":[43],"as":[44,62,204,206],"it":[45],"case":[48],"in":[49,133,223],"most":[50],"secure":[51,201],"development":[52],"methodologies.":[53],"In":[54],"these":[55,75,127],"stages,":[56],"we":[57,215],"need":[58],"identify":[60],"threats":[61,88,102],"attacker":[63],"goals":[64],"indicate":[66],"what":[67],"conceptual":[68,144],"security":[69,108,116,140,145],"defenses":[70],"are":[71],"needed":[72],"thwart":[74],"goals,":[76],"consideration":[78],"implementation":[80,135],"details.":[81],"We":[82,165,177,194],"can":[83,111],"consider":[84],"effects":[86],"application":[91],"assets":[92],"try":[94],"find":[96],"ways":[97],"stop":[99,152],"them.":[100,137,213],"These":[101],"controlled":[105],"with":[106,159],"abstract":[107,115,139],"mechanisms":[109],"that":[110,120,147],"realized":[113],"by":[114,225],"patterns":[117,211],"(ASPs)":[118],",":[119],"include":[121,198],"only":[122],"core":[124],"functions":[125,149],"mechanisms,":[128],"which":[129,188],"present":[132,173],"every":[134],"An":[138],"pattern":[141],"describes":[142],"a":[143,155,160,174],"mechanism":[146],"includes":[148],"able":[150],"or":[153,157,162],"mitigate":[154],"threat":[156],"comply":[158],"regulation":[161],"institutional":[163],"policy.":[164],"describe":[166,189],"here":[167],"properties":[169],"ASPs":[171,179,199],"example.":[176],"relate":[178],"each":[181],"other":[182],"Solution":[186],"Frames,":[187],"families":[190],"related":[192],"patterns.":[193],"show":[195],"how":[196,207],"an":[202],"application,":[203],"well":[205],"derive":[209],"concrete":[210],"from":[212],"Finally,":[214],"discuss":[216],"practical":[218],"value,":[219],"including":[220],"use":[222],"\u201csecurity":[224],"design\u201d":[226],"IoT":[228],"systems":[229],"design.":[230]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":10},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":2}],"updated_date":"2026-06-13T07:54:00.901334","created_date":"2025-10-10T00:00:00"}