Towards Language Support for Model-based Security Policy Engineering

被引：2

作者：

Amthor, Peter ^{[1
]}

Schlegel, Marius ^{[1
]}

机构：

[1] Tech Univ Ilmenau, Ilmenau, Germany

来源：

PROCEEDINGS OF THE 17TH INTERNATIONAL JOINT CONFERENCE ON E-BUSINESS AND TELECOMMUNICATIONS (SECRYPT), VOL 1 | 2020年

关键词：

Software Engineering; Security Engineering; Security Policies; Security Models; Specification Languages; Domain-specific Languages; Automatic Translation;

D O I：

10.5220/0009893205130521

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Software engineering for security-critical systems is based on manual translations between languages from different domains: an informal security policy is translated to a formally verifiable model, and further to actual source code. This is an error-prone task, put at the risk of losing hard-acquired correctness guarantees. To mitigate this problem, we argue for a methodical support by domain-specific languages and tools. We present ongoing work on two languages that substantiate this thesis, including their usage in a practical setting, and discuss the benefits from combining them with appropriate tool support.

引用

页码：513 / 521

页数：9

共 50 条

[41] Towards Model-based HSI Engineering: A Universal HSI Model for Utility Optimization
Harel, Avi
[J]. INCOSE International Symposium, 2022, 32 (S1): : 50 - 74
[42] SCDML: A Language for Conceptual Data Modeling in Model-based Systems Engineering
Hennig, Christian
Hoppe, Tobias
Eisenmann, Harald
Viehl, Alexander
Bringmann, Oliver
[J]. PROCEEDINGS OF THE 4TH INTERNATIONAL CONFERENCE ON MODEL-DRIVEN ENGINEERING AND SOFTWARE DEVELOPMENT (MODELSWARD 2016), 2016, : 184 - 192
[43] An Integrated Intelligent Modeling and Simulation Language for Model-based Systems Engineering
Zhang, Lin
Ye, Fei
Xie, Kunyu
Gu, Pengfei
Wang, Xiaohan
Laili, Yuanjun
Zhao, Chun
Zhang, Xuesong
Chen, Minjie
Lin, Tingyu
Chen, Zhen
[J]. JOURNAL OF INDUSTRIAL INFORMATION INTEGRATION, 2022, 28
[44] Introducing a Multi-layered Model-based Design Approach towards Safety-Security Co-engineering
Quamara, Megha
Pedroza, Gabriel
Hamid, Brahim
[J]. 2021 21ST INTERNATIONAL CONFERENCE ON SOFTWARE QUALITY, RELIABILITY AND SECURITY COMPANION (QRS-C 2021), 2021, : 1163 - 1164
[45] Model-Based Security Testing
Schieferdecker, Ina
Grossmann, Juergen
Schneider, Martin
[J]. ELECTRONIC PROCEEDINGS IN THEORETICAL COMPUTER SCIENCE, 2012, (80): : 1 - 12
[46] Model-based cyber security
Rasche, Galen
Allwein, Erin
Moore, Michael
Abbott, Ben
[J]. ECBS 2007: 14TH ANNUAL IEEE INTERNATIONAL CONFERENCE AND WORKSHOPS ON THE ENGINEERING OF COMPUTER-BASED SYSTEMS, PROCEEDINGS: RAISING EXPECTATIONS OF COMPUTER-BASES SYSTEMS, 2007, : 405 - 412
[47] Building dispositions towards models and model-based reasoning in engineering education
Coso, Alexandra E.
Le Doux, Joseph M.
Newstetter, Wendy C.
Waller, Alisha A.
Koretsky, Milo D.
Champagne, Audrey B.
[J]. 2014 IEEE FRONTIERS IN EDUCATION CONFERENCE (FIE), 2014,
[48] Towards Model-Based Engineering of Self-configuring Embedded Systems
Chen, DeJiu
Torngren, Martin
Persson, Magnus
Feng, Lei
Qureshi, Tahir Naseer
[J]. MODEL-BASED ENGINEERING OF EMBEDDED REAL-TIME SYSTEMS, 2010, 6100 : 345 - 353
[49] Towards Automating Model-Based Systems Engineering in Industry - An Experience Report
Cederbladh, Johan
Berardinelli, Luca
Bruneliere, Hugo
Cicchetti, Antonio
Dehghani, MohammadHadi
Di Sipio, Claudio
Miranda, James
Rahimi, Abbas
Rubei, Riccardo
Suryadevara, Jagadish
[J]. 18TH ANNUAL IEEE INTERNATIONAL SYSTEMS CONFERENCE, SYSCON 2024, 2024,
[50] Towards an Integrated Approach to Verification and Model-Based Testing in System Engineering
Lefticaru, Raluca
Konur, Savas
Yildirim, Unal
Uddin, Amad
Campean, Felician
Gheorghe, Marian
[J]. 2017 IEEE INTERNATIONAL CONFERENCE ON INTERNET OF THINGS (ITHINGS) AND IEEE GREEN COMPUTING AND COMMUNICATIONS (GREENCOM) AND IEEE CYBER, PHYSICAL AND SOCIAL COMPUTING (CPSCOM) AND IEEE SMART DATA (SMARTDATA), 2017, : 131 - 138

← 1 2 3 4 5 →