Model-based security engineering

被引:0
|
作者
Juerjens, Jan [1 ]
机构
[1] Tech Univ Munich, Dept Informat, D-8000 Munich, Germany
来源
SIGMAP 2006: PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON SIGNAL PROCESSING AND MULTIMEDIA APPLICATIONS | 2006年
关键词
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The current state of the art in security-critical software is far from satisfactory: New security vulnerabilities are discovered on an almost daily basis. To improve this situation, we develop techniques and tools that perform an automated analysis of software artefacts for security requirements (such as secrecy, integrity, and authenticity). These artefacts include specifications in the Unified Modeling Language (UML), annotated source code, and run-time data such as security permissions. The security analysis techniques make use of model-checkers and automated theorem provers for first-order logic. We give examples for security flaws found in industrial software using our tools.
引用
收藏
页码:IS23 / IS29
页数:7
相关论文
共 50 条
  • [21] PROCESS MODEL-BASED ENGINEERING
    COTT, BJ
    DURHAM, RG
    LEE, PL
    SULLIVAN, GR
    [J]. COMPUTERS & CHEMICAL ENGINEERING, 1989, 13 (09) : 973 - 984
  • [22] Model-based transcriptome engineering
    Brent, Michael
    [J]. ACM-BCB' 2017: PROCEEDINGS OF THE 8TH ACM INTERNATIONAL CONFERENCE ON BIOINFORMATICS, COMPUTATIONAL BIOLOGY,AND HEALTH INFORMATICS, 2017, : 636 - 636
  • [23] Model-Based Systems Engineering for Machine Tools and Production Systems (Model-Based Production Engineering)
    Kuebler, Karl
    Scheifele, Stefan
    Scheifele, Christian
    Riedel, Oliver
    [J]. 4TH INTERNATIONAL CONFERENCE ON SYSTEM-INTEGRATED INTELLIGENCE: INTELLIGENT, FLEXIBLE AND CONNECTED SYSTEMS IN PRODUCTS AND PRODUCTION, 2018, 24 : 216 - 221
  • [24] Foundations for model-based systems engineering and model-based safety assessment
    Rauzy, Antoine B.
    Haskins, Cecilia
    [J]. SYSTEMS ENGINEERING, 2019, 22 (02) : 146 - 155
  • [25] Model-Based Assurance of Security Controls
    Beres, Yolanta
    Baldwin, Adrian
    Shiu, Simon
    [J]. QOP'07: PROCEEDINGS OF THE 2007 ACM WORKSHOP ON QUALITY OF PROTECTION, 2007, : 55 - 55
  • [26] Model-Based Systems Security Quantification
    Ouchani, Samir
    Jarraya, Yosr
    Mohamed, Otmane Ait
    [J]. 2011 NINTH ANNUAL INTERNATIONAL CONFERENCE ON PRIVACY, SECURITY AND TRUST, 2011, : 142 - 149
  • [27] Model-based security vulnerability testing
    Pari Salas, Percy A.
    Krishnan, Padmanabhan
    Ross, Kelvin J.
    [J]. 2007 AUSTRALIAN SOFTWARE ENGINEERING CONFERENCE, PROCEEDINGS, 2007, : 284 - +
  • [28] Model-based security engineering for cyber-physical systems: A systematic mapping study
    Nguyen, Phu H.
    Ali, Shaukat
    Yue, Tao
    [J]. INFORMATION AND SOFTWARE TECHNOLOGY, 2017, 83 : 116 - 135
  • [29] Modelling the Climate System: Is Model-Based Science Like Model-Based Engineering?
    Easterbrook, Steve
    [J]. 2015 ACM/IEEE 18TH INTERNATIONAL CONFERENCE ON MODEL DRIVEN ENGINEERING LANGUAGES AND SYSTEMS (MODELS), 2015, : 1 - 1
  • [30] Model-based Systems Engineering Efficiencies
    Oh, Jane M. C.
    Fifield, Michael G.
    Scandore, Steve F.
    Trettel, Ian A.
    Donitz, Benjamin
    [J]. 2023 IEEE AEROSPACE CONFERENCE, 2023,
12345