Association for Computing Machinery
The authors present security ontology to help non-security expert software designers or developers to: design secure software and, to understand and be aware of main security concepts and issues. Their security ontology defines the main security concepts such as attacks, countermeasures, security properties and their relationships. Countermeasures can be cryptographic concepts (encryption algorithm, key management, digital signature, and hash function), security tools or security protocols. The purpose of this ontology is to be reused in numerous domains such as security of web applications, network management or communication networks (sensor, cellular and wireless).