Analysing security in the architecture design of modern software systems is a challenging task. Emerging technologies utilised in building software systems may pose security threats, so software engineers need to consider both the structure and behaviour of architectural styles that employ these supporting technologies. This paper presents an automated approach to security analysis that helps to identify security characteristics at the architectural level. Key techniques used by our approach include the use of metrics, vulnerability identification and attack scenarios. Our modelling is expressive in defining architectural styles and security characteristics. Our analysis approach gives insightful results that allow software engineers to trace through the design to find parts of the system that may be impacted by attacks. We have developed an analysis tool that allows user to seamlessly model the software architecture design and analyse security. The evaluation has been conducted to assess the accuracy and performance of our approach. The results show that our analysis approach performs reasonably well to analyse the security in the architectural design.

在现代软件系统的体系结构设计中分析安全性是一项艰巨的任务。构建软件系统中使用的新兴技术可能构成安全威胁，因此软件工程师需要同时考虑采用这些支持技术的体系结构样式的结构和行为。本文提出了一种自动进行安全性分析的方法，该方法有助于在体系结构级别识别安全性特征。我们的方法使用的关键技术包括度量标准的使用，漏洞识别和攻击方案。我们的建模在定义架构样式和安全特性方面表现力十足。我们的分析方法提供了有见地的结果，使软件工程师可以跟踪设计，以发现可能受到攻击影响的系统部分。我们开发了一种分析工具，使用户可以无缝地对软件体系结构设计进行建模并分析安全性。进行了评估以评估我们方法的准确性和性能。结果表明，我们的分析方法可以很好地分析建筑设计中的安全性。