Mining and SPF based Roundtrip Engineering for The Development of Web Applications

Abstract

newline newlineThis thesis proposes experimental support to secure Round Trip Engineering and use of security performance flexibility trusted operating systems for the designing of secure web applications. In this thesis, we propose source code generation from object models through IBM Rational Rose software, Class identification and Modeling for web applications through UML. Through which, we develop the understanding level of complex software, developers can identify software Metrics like no. of data member per class, data structure metrics, coupling between objects, information flow etc. Further we propose Security Performance flexibility model for the same to maintain the balance between security and performance for web applications. The novel integration of security engineering with model driven Software expansion approach is being used in this thesis. newline newline newline In this thesis, for security concern, we suggest use of trusted operating systems as a platform to run these web applications. For improving the performance of same web applications, we observe that all security checks in a Trusted Operating System are not necessary. As per our suggestion, various unnecessary security checks can be skipped by administrator, so that system performance of these web applications can improve. These unnecessary security checks, system calls and operations can be easily identified at the time of requirement elicitation and Requirement Engineering. For example, as we know, the popular web servers deal with public information. In this web application, the need for security checks during reads from disk seems like a waste of CPU cycles. On the other hand the real security need for servers seems to be of the write accesses. The observation and selection of necessary operations, member functions, data member and system calls will vary from one application to next. newline newline newline