user

Generating Formal Specifications for Security-Critical Applications - A Model-Driven Approach

被引:7
|
作者
Moebius, Nina [1 ]
Stenzel, Kurt [1 ]
Reif, Wolfgang [1 ]
机构
[1] Univ Augsburg, Dept Software Engn & Programming Languages, Inst Comp Sci, D-86135 Augsburg, Germany
来源
2009 ICSE WORKSHOP ON SOFTWARE ENGINEERING FOR SECURE SYSTEMS | 2009年
关键词
D O I
10.1109/IWSESS.2009.5068461
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
The SecureMDD approach aims to generate both, a formal specification for verification and executable code, front UML diagrams. The UML models define the static as well as dynamic components of the system under development. This model-driven approach is focused on security-critical applications that are based on cryptographic protocols, esp. Java Card applications. In this paper we describe the generation of the formal specification from the UML model which is then used as input for our interactive verification system KIV The formal specification is based on abstract state machines and algebraic specifications. It allows to formulate and to prove application-specific security properties.
引用
收藏
页码:68 / 74
页数:7
相关论文
共 50 条
  • [1] Model Checking of Security-Critical Applications in a Model-Driven Approach
    Borek, Marian
    Moebius, Nina
    Stenzel, Kurt
    Reif, Wolfgang
    [J]. SOFTWARE ENGINEERING AND FORMAL METHODS, SEFM 2013, 2013, 8137 : 76 - 90
  • [2] Abstracting Security-Critical Applications for Model Checking in a Model-Driven Approach
    Borek, Marian
    Stenzel, Kurt
    Katkalov, Kuzman
    Reif, Wolfgang
    [J]. PROCEEDINGS OF 2015 6TH IEEE INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING AND SERVICE SCIENCE, 2015, : 11 - 14
  • [3] Integration and Exchangeability of External Security-Critical Web Services in a Model-Driven Approach
    Borek, Marian
    Stenzel, Kurt
    Katkalov, Kuzman
    Reif, Wolfgang
    [J]. ADVANCES IN CONCEPTUAL MODELING, ER 2015 WORKSHOPS, 2015, 9382 : 63 - 73
  • [4] Formal Verification of Application-Specific Security Properties in a Model-Driven Approach
    Moebius, Nina
    Stenzel, Kurt
    Reif, Wolfgang
    [J]. ENGINEERING SECURE SOFTWARE AND SYSTEMS, PROCEEDINGS, 2010, 5965 : 166 - 181
  • [5] Formal Model-Driven Engineering: Generating Data and Behavioural Components
    Wang, Chen-Wei
    Davies, Jim
    [J]. ELECTRONIC PROCEEDINGS IN THEORETICAL COMPUTER SCIENCE, 2012, (105): : 100 - 117
  • [6] Formal model-driven engineering of critical information systems
    Davies, Jim
    Milward, David
    Wang, Chen-Wei
    Welch, James
    [J]. SCIENCE OF COMPUTER PROGRAMMING, 2015, 103 : 88 - 113
  • [7] DataSpecer: A Model-Driven Approach to Managing Data Specifications
    Stenchlak, Stepan
    Necasky, Martin
    Skoda, Petr
    Klimek, Jakub
    [J]. SEMANTIC WEB: ESWC 2022 SATELLITE EVENTS, 2022, 13384 : 52 - 56
  • [8] Integrating a Model-Driven Approach and Formal Verification for the Development of Secure Service Applications
    Borek, Marian
    Katkalov, Kuzman
    Moebius, Nina
    Reif, Wolfgang
    Schellhorn, Gerhard
    Stenzel, Kurt
    [J]. CORRECT SOFTWARE IN WEB APPLICATIONS AND WEB SERVICES, 2015, : 45 - 81
  • [9] A Model-Driven Approach to Web Applications
    Kozlovics, Sergejs
    [J]. DATABASES AND INFORMATION SYSTEMS IX, 2016, 291 : 73 - 86
  • [10] A Model-Driven approach to Information Security Compliance
    Correia, Anacleto
    Goncalves, Antonio
    Filomena Teodoro, M.
    [J]. APPLIED MATHEMATICS AND COMPUTER SCIENCE, 2017, 1836
12345