Sciweavers

MODELS
2007
Springer

A Metamodel-Based Approach for Analyzing Security-Design Models

14 years 6 months ago
A Metamodel-Based Approach for Analyzing Security-Design Models
Abstract We have previously proposed an expressive UML-based language for constructing and transforming security-design models, which are models that combine design specifications for distributed systems with specifications of their security policies. Here we show how the same framework can be used to analyze these models: queries about properties of the security policy modeled are expressed as formulas in UML’s Object Constraint Language and evaluated over the metamodel of the security-design language. We show how this can be done in a semantically precise and meaningful way and demonstrate, through examples, that this approach can be used to formalize and check non-trivial security properties of security-design models. The approach and examples presented have all been implemented and checked in the SecureMOVA tool.
David A. Basin, Manuel Clavel, Jürgen Doser,
Added 08 Jun 2010
Updated 08 Jun 2010
Type Conference
Year 2007
Where MODELS
Authors David A. Basin, Manuel Clavel, Jürgen Doser, Marina Egea
Comments (0)