Model-Driven Information Flow Security for Component-Based Systems

被引:0
|
作者
Ben Said, Najah [1 ]
Abdellatif, Takoua [2 ]
Bensalem, Saddek [1 ]
Bozga, Marius [1 ]
机构
[1] UJF Grenoble 1, CNRS, VERIMAG UMR 5104, F-38041 Grenoble, France
[2] Sousse Univ, ESSTHS, Hammam Sousse, Tunisia
来源
FROM PROGRAMS TO SYSTEMS: THE SYSTEMS PERSPECTIVE IN COMPUTING | 2014年 / 8415卷
关键词
component-based systems; information flow security; non-interference; unwinding conditions; automated verification;
D O I
暂无
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
This paper proposes a formal framework for studying information flow security in component-based systems. The security policy is defined and verified from the early steps of the system design. Two kinds of non-interference properties are formally introduced and for both of them, sufficient conditions that ensures and simplifies the automated verification are proposed. The verification is compositional, first locally, by checking the behavior of every atomic component and then globally, by checking the inter-components communication and coordination. The potential benefits are illustrated on a concrete case study about constructing secure heterogeneous distributed systems.
引用
收藏
页码:1 / +
页数:5
相关论文
共 50 条
  • [41] A Component Model for Separation of Control Flow from Computation in Component-Based Systems
    Lau, Kung-Kiu
    Ukis, Vladyslav
    Velasco, Perla
    Wang, Zheng
    ELECTRONIC NOTES IN THEORETICAL COMPUTER SCIENCE, 2006, 163 (01) : 57 - 69
  • [42] A QoS driven development process model for component-based software systems
    Koziolek, Heiko
    Happe, Jens
    COMPONENT-BASED SOFTWARE ENGINEERING, PROCEEDINGS, 2006, 4063 : 336 - 343
  • [43] Model-driven architecture based security analysis
    Mili, Saoussen
    Nguyen, Nga
    Chelouah, Rachid
    SYSTEMS ENGINEERING, 2021, 24 (05) : 307 - 321
  • [44] Model-Driven Development for secure information systems
    Fernandez-Medina, Eduardo
    Jurjens, Jan
    Trujillo, Juan
    Jajodia, Sushil
    INFORMATION AND SOFTWARE TECHNOLOGY, 2009, 51 (05) : 809 - 814
  • [45] Towards a Model-driven based Security Framework
    Abdallah, Rouwaida
    Yakymets, Nataliya
    Lanusse, Agnes
    MODELSWARD 2015 PROCEEDINGS OF THE 3RD INTERNATIONAL CONFERENCE ON MODEL-DRIVEN ENGINEERING AND SOFTWARE DEVELOPMENT, 2015, : 639 - 645
  • [46] Using Process Mining and Model-driven Engineering to Enhance Security of Web Information Systems
    Bernardi, Simona
    Piraces Alastuey, Raul
    Trillo-Lado, Raquel
    2017 2ND IEEE EUROPEAN SYMPOSIUM ON SECURITY AND PRIVACY WORKSHOPS (EUROS&PW), 2017, : 160 - 166
  • [47] Model generation of component-based systems
    Sébastien Salva
    Elliott Blot
    Software Quality Journal, 2020, 28 : 789 - 819
  • [48] Model generation of component-based systems
    Salva, Sebastien
    Blot, Elliott
    SOFTWARE QUALITY JOURNAL, 2020, 28 (02) : 789 - 819
  • [49] Model-driven security management of embedded service systems
    Illner, S
    Pohl, A
    Krumm, H
    IECON 2005: THIRTY-FIRST ANNUAL CONFERENCE OF THE IEEE INDUSTRIAL ELECTRONICS SOCIETY, VOLS 1-3, 2005, : 2655 - 2660
  • [50] Model-driven security engineering of service oriented systems
    Breu, Ruth
    Hafner, Michael
    Innerhofer-Oberperfler, Frank
    Wozak, Florian
    INFORMATION SYSTEMS AND E-BUSINESS TECHNOLOGIES, 2008, 5 : 59 - +
12345