Abstract
We have previously proposed an expressive UML-based language for constructing and transforming security-design models, which are models that combine design specifications for distributed systems with specifications of their security policies. Here we show how the same framework can be used to analyze these models: queries about properties of the security policy modeled are expressed as formulas in UML's Object Constraint Language and evaluated over the metamodel of the security-design language. We show how this can be done in a semantically precise and meaningful way and demonstrate, through examples, that this approach can be used to formalize and check non-trivial security properties of security-design models. The approach and examples presented have been implemented and checked in the SecureMOVA tool. © Springer-Verlag Berlin Heidelberg 2007.
Cite
CITATION STYLE
Basin, D., Clavel, M., Doser, J., & Egea, M. (2007). A metamodel-based approach for analyzing security-design models. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 4735 LNCS, pp. 420–435). Springer Verlag. https://doi.org/10.1007/978-3-540-75209-7_29
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
