| Information Security Group (2008) | |||||||||||||||
Abstract | |||||||||||||||
| Security-design models are models that combine design specifications for distributed systems with specifications of their security policies. We have previously proposed an expressive UML-based language for constructing and transforming security-design models. Here we show how the same framework can be used to analyze these models: queries about properties of the security policy modeled are expressed as formulas in UML’s Object Constraint Language and evaluated over the metamodel of the security-design language. We show how this can be done in a semantically precise and meaningful way and demonstrate, through examples, that this approach can be used to formalize and check nontrivial security properties of security-design models. The approach and examples presented have all been implemented and checked in the SecureMOVA tool. 1. | |||||||||||||||
Publication details | |||||||||||||||
| |||||||||||||||