摘要： 提出一种基于安全模式的软件安全设计方法，能在设计阶段保障软件的安全性。以新的安全构造型标识安全关注，建立一种高层的安全抽象；阐述使用安全构造型和安全模式进行系统设计的具体过程，给出应用实例的系统设计类图；对安全模式库的构建方法进行分析，并与其他软件设计方法进行了比较。

关键词: 安全模式, 软件安全设计, 统一建模语言, 安全模式库

Abstract: This paper proposes a method for software security design based on security pattern. A new security stereotype is introduced, which can be used to denote security concerns and establish high level abstraction of system security. The process of security design with the usage of security stereotype and security patterns is described, and it gives a system design class diagram of application example. The way to design and implement security pattern library is given and it compares the method with other software design methods.

Key words: security pattern, software security design, Unified Modeling Language(UML), security pattern library

中图分类号: 

• TP309