engineering with uml
play

Engineering with UML: The Last Decade and Towards the Future Jan - PowerPoint PPT Presentation

May 14, 2023 •196 likes •496 views

Model-based Security Engineering with UML: The Last Decade and Towards the Future Jan Jrjens http://jan.jurjens.de Secure IT-Systems Today IT-systems pervade almost all aspects of human life. At the same time, IT-systems become more open

  1. Model-based Security Engineering with UML: The Last Decade and Towards the Future Jan Jürjens http://jan.jurjens.de

  2. Secure IT-Systems Today IT-systems pervade almost all aspects of human life. At the same time, IT-systems become more open and therefore more vulnerable. A lot of successful academic research has been done on foundations for secure systems. Some milestones: • Saltzer, Schroeder: Protection of Information in Computer Systems, 1975 • Gasser: Building a Secure Computer System, 1988 • Burrows, Abadi, Needham: A Logic for authentication, 1989 • Gasser, Goldstein, Kaufman, Lampson: The Digital Distributed System Security Architecture, 1989 • Ross Anderson: Security Engineering, 2001 Unfortunately, despite this successful research, today‟s systems still often do not satisfy the increasing expectations on their security requirements - ... 2 Model-based Security – UMLsec – Results – Challenges Jan Jürjens

  3. How to Develop Secure IT-Systems ? ... part of the problem is that: 1. Modern software engineering approaches in practice (which can manage today‟s complex systems) usually do not consider security. 2. Traditional, practical approaches for security assurance do not provide a holistic, integrated assurance which would scale to the complexity modern systems in a reliable way. To address this problem, 10 years ago a new line of research was started trying to bridge this gap by tailoring a modern software engineering approach (model-based development with UML) to the case of security-critical systems. 3 Model-based Security – UMLsec – Results – Challenges Jan Jürjens

  4. Model-based Security: Some Milestones 2001: UMLsec: UML profile for security modelling ( Jürjens ) Model-based security testing with AutoFocus ( Wimmel, Jürjens ) 2002: Secure UML: Modelling RBAC with UML ( Basin et al .) Hypermedia security modeling with Ariadne ( Aedo, Diaz et al. ) Aspect-oriented Security Modelling ( France et al .) Model-based IT security risk assessment ( Stølen et al .) Interactive theorem proving of UML models for security ( Haneberg, Reif et al .) 2003: Formal verification for UML models of access control ( Koch, Parisi-Presicce ) 2004: Automated verification tools for UMLsec ( Shabalin et al .) Actor-centric modeling of user rights with UML ( Breu et al .) Extending OCL for secure database development ( Fernández-Medina et al .) 2005: First book on model-based security published (in English) 2007: Security monitors for UML policy models ( Massacci et al .) 2008: Executable misuse cases for security concerns ( Whittle et al .) 2009: Model-based security vs performance evaluation ( Woodside et al .) First book on model-based security in Chinese 2010: From requirements to UMLsec models ( Houmb et al.; Islam et al.; Mouratidis et al .) Security monitoring for UMLsec models ( Bauer et al.; Pironti et al .) … : Model -based security monitor generation for embedded systems ( Schürr et al. ) 4 Model-based Security – UMLsec – Results – Challenges Jan Jürjens

  5. Model-based Security: Some Tools UMLsec Tool Framework (http://umlsec.de) :  Automated formal verification (model-checker, automated theorem prover) [Shabalin et al. 2004, 2005; Schreck et al. 2008]  Code generation [Montrieux et al. 2010] Secure UML (http://www.bm1software.com/eos)  Currently no specific, openly available tool, but the OCL checker EOS can be used to check OCL annotations from SecureUML CORAS (http://coras.sourceforge.net)  Language editor for the CORAS notation SECTET (http://qe-informatik.uibk.ac.at)  Tool for configuring Security-as-a-Service architecture Model-based Security – UMLsec – Results – Challenges Jan Jürjens

  6. Model-based Security: Industrial Usage (some (published) examples) 2003: Internet bank architecture at HypoVereinsbank (Grünbauer et al.) 2005: Instant communication system (Apvrille et al.) 2007: Intranet information system at BMW (Best et al.) 2008: German Health Card architecture (Rumm et al.) 2008: Mobile security policies at O2 Germany (Bartmann et al.) 2009: Biometric authentication system (Lloyd et al.) Model-based Security – UMLsec – Results – Challenges Jan Jürjens

  7. Model-based Security Engineering with UMLsec Security Requirements Evolution Inte- Analyze grate Generate UMLsec Models Configuration Data Verify Code-/ Reverse Configure Testgen. Engin. Runtime System Code Execute 7 Model-based Security – UMLsec – Results – Challenges Jan Jürjens

  8. Requirements Security Requirements Engineering UML Models Configuration Code Runtime system Aims:  Identify security requirements within the requirements elicitation. Idea : “Requirements Mining” in security standards (e.g. Common Criteria) resp. in the given specification document Validation example: IPTV Standard of Eur. Telecom. Stand. Inst. (ETSI) [CAISE '06, Requirem. Engin. Jour. '10, Journ. Softw. & Systems Modeling '10] 8 Jan Jürjens Einführung – Modelle – Code – Konfigurationen – Anwendungen – Schluss

  9. Requirements Modeling with UMLsec UML Models Configuration Code Runtime System Aim:  Documentation and automated analysis of security-relevant information (e.g. security properties and requirements) as part of the system specification. Idea: [FASE 01, UML 02]  UML for system modeling.  Insert security-relevant information as stereotypes provided by UML-extension UMLsec.  Formal semantics based on stream-processing functions as a foundation for verification. [Jour. Logic & Algebr. Program. '08] 9 Model-based Security – UMLsec – Results – Challenges Jan Jürjens

  10. Requirements UML Models Configuration Runtime System Code Model-based Security Analysis Aim:  Automated analysis of the system models against the specified security requirements. Idea: Automated generation of logical formulas in first- order logic (or LTL, ...) based on formal semantics for security analysis. Transfer to the automatic theorem prover (or modelchecker/...)). [ICSE 05, ICSE 06] 10 Model-based Security – UMLsec – Results – Challenges Jan Jürjens

  11. Requirements Model-based Security Testing UML Models Configuration Code Runtime System Problems with using conformance-tests for security: In general, complete test coverage impracticable.  Finds only attacks which are visible on the model level.  [ASE 01, ICFEM 02] Idea: Mutation-testing. Focus on critical test cases  Finds also weaknesses which are not visible on the model level.  Validation: Common Electronic Purse Specifications. Detected several weaknesses. Program Verification Model Generate Execute test case Test execution Test case Program behavior 11 Model-based Security – UMLsec – Results – Challenges Jan Jürjens

  12. Requirements Static Program Analysis UML Models Configuration Code Runtime System Problem: Correct use of cryptography is inherently difficult to test: sufficient test coverage amounts to brute-force attack. Idea: Automated, formal static program analysis of correct cryptographic function calls (with ATP for FOL). Validation: Java Secure Sockets Extension (JSSE). [ICSM 05, ASE 05, ASE 06] Current project Csec: C code analysis. p q g 12 Model-based Security – UMLsec – Results – Challenges Jan Jürjens

  13. Requirements Security Analysis of UML Models Configuration Configuration Data Runtime System Code Aim: Verification if security policies are enforced by user permissions. Not feasible manually:  Large amount of data (e.g. 60.000 permissions)  Complex relations between permissions (e.g. delegation) Idea: Automated analysis of business process models [ICSE '08] against user permissions, as well as user permissions [FASE '08] against security policy models. Current project (Fraunhofer Attract): Architecture for auditable business process execution (Apex). 13 Model-based Security – UMLsec – Results – Challenges Jan Jürjens

  14. Requirements Run-time Security Verification UML Models Configuration Runtime System Code General problem: Are verified implementations still secure in the system context ?  Does the static system model consider all relevant aspects ?  Are the assumptions about the system environment correct ?  Are the necessary abstractions for a static verification valid ?  Solution: Run-time verification. Classic approach: Fred Schneider's Security Automata (only safety properties). Runtime verification in a nutshell New approach with 3-valued semantic for Property LTL: also non-safety properties. automatic [Diss. A. Bauer] generation of Validation with different versions System Monitor Java Secure Sockets Extension. Property fulfilled? [Jour. Computers & Security '10, Computer Journal '10] 14 Model-based Security – UMLsec – Results – Challenges Jan Jürjens Actions t

  15. Requirements Tool support UML Models Configuration Code Runtime System [UML 04, FASE 05, Jour. Softw. Tools & Techn. Transf. (STTT) 07] 15 Jan Jürjens

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

ENGINEERING HOUSTON, ENGINEERING THE WORLD UH ENGINEERING BY THE NUMBERS UH ENGINEERING BY THE

ENGINEERING HOUSTON, ENGINEERING THE WORLD UH ENGINEERING BY THE NUMBERS UH ENGINEERING BY THE

ENGINEERING HOUSTON, ENGINEERING THE WORLD UH ENGINEERING BY THE NUMBERS UH ENGINEERING BY THE NUMBERS NAMED BEST ENGINEERING SCHOOL OF 2019 (#69) *(Source: U.S. News & World Report) TOP 100* ENGINEERING PROGRAMS IN THE U.S. *(Source:

541 views • 33 slides
Requirement Requirement Requirement Requirement Engineering Engineering Engineering

Requirement Requirement Requirement Requirement Engineering Engineering Engineering

Requirement Requirement Requirement Requirement Engineering Engineering Engineering Engineering Outline Stakeholders Context diagram and interfaces Types of requirements Numbering requirements Scenarios, sequence diagrams

586 views • 39 slides
SW Engineering for Computational Science & Engineering What Can Work and What Will Not The

SW Engineering for Computational Science & Engineering What Can Work and What Will Not The

SW Engineering for Computational Science & Engineering What Can Work and What Will Not The 2017 International Workshop on Software Engineering for High Performance Computing in Computational and Data-Enabled Science and Engineering

556 views • 41 slides
Spokes Engineering Spokes Engineering Spokes Engineering Spokes Engineering Bicycle Lanes for

Spokes Engineering Spokes Engineering Spokes Engineering Spokes Engineering Bicycle Lanes for

Spokes Engineering Spokes Engineering Spokes Engineering Spokes Engineering Bicycle Lanes for the City of Boston Hector Bermudez Christopher Longenbaker Peter Hagen Zachary Wassmouth Commonwealth Avenue Commonwealth Avenue Commonwealth

409 views • 38 slides
Security Engineering Security Engineering Wallace Hopp Industrial Engineering Department

Security Engineering Security Engineering Wallace Hopp Industrial Engineering Department

Security Engineering Security Engineering Wallace Hopp Industrial Engineering Department McCormick School of Engineering A Flat World is an exciting but dangerous world Technology Opportunity Advances Reduced Risk Political Barriers

449 views • 17 slides
www.elsing.si Safe, reliable, effjcient Our engineering expertise breathes electrical life into

www.elsing.si Safe, reliable, effjcient Our engineering expertise breathes electrical life into

Consulting Engineering Contracting Engineering Maintenance Engineering Contemporary construction of We are engineers and specialists in various fjelds, so we factories of the future and smart can undertake the most demanding projects. We

183 views • 4 slides
Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland

Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland

Based on the Book by Pressman: Software Engineering a Practitioner s Approach, as well as Wikipedia Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland University 1 Waterfall Model

467 views • 15 slides
Software Requirements Engineering Material for Software Engineering for Outsourced &

Software Requirements Engineering Material for Software Engineering for Outsourced &

Software Requirements Engineering Material for Software Engineering for Outsourced & Offshore Development Bertrand Meyer Bernd Schoeller Chair of Software Engineering, ETH Zurich Fall 2005 Softw are Engineering Statements about

1.17k views • 100 slides
Engineering Engineering from Russia AGENDA Section 1. WHAT IS SSE? 2. WHAT WE OFFER 3.

Engineering Engineering from Russia AGENDA Section 1. WHAT IS SSE? 2. WHAT WE OFFER 3.

SSE Engineering Engineering from Russia AGENDA Section 1. WHAT IS SSE? 2. WHAT WE OFFER 3. SELECTED REFERENCES. DESIGN WORK 2 COMPANY OVERVIEW. SUMMARY SSE Engineering is an engineering company specialized in power and industrial

976 views • 46 slides
Review of Engineering Skills The challenge Engineering is pervasive engineering drives

Review of Engineering Skills The challenge Engineering is pervasive engineering drives

Professor John Perkins Review of Engineering Skills The challenge Engineering is pervasive engineering drives technological progress engineering skills are in demand throughout the economy It would benefit the economy to substantially

178 views • 15 slides
UCD Engineering Programmes BSc Eng, BE, ME Mechanical Engineering Students March 2016 UCD

UCD Engineering Programmes BSc Eng, BE, ME Mechanical Engineering Students March 2016 UCD

UCD Engineering Programmes BSc Eng, BE, ME Mechanical Engineering Students March 2016 UCD School of Mechanical and Materials Engineering UCD Engineering Degree Programme Pathways Agenda 1300 - 1320 Overview BSc, BE & ME Dr. Donal

639 views • 42 slides
PhD in Engineering (Coastal Engineering and Computational Engineering concentration) at an HBCU

PhD in Engineering (Coastal Engineering and Computational Engineering concentration) at an HBCU

PhD in Engineering (Coastal Engineering and Computational Engineering concentration) at an HBCU Robert W. Whalin Jackson State University robert.w.whalin@jsums.edu 601-979-1809 or -1807 (work) 601-201-8898 (mobile) CRC 2nd Annual Meeting The

215 views • 17 slides
Engineering Disciplines Alvin Kang, Erin Russel, Hunter Lee What is Engineering Engineering is

Engineering Disciplines Alvin Kang, Erin Russel, Hunter Lee What is Engineering Engineering is

Engineering Disciplines Alvin Kang, Erin Russel, Hunter Lee What is Engineering Engineering is a mash up of subjects of math, science, economics and other to design innovative inventions. These creations have a purpose to do a job or make a

196 views • 15 slides
Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland

Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland

Based on the Book by Pressman: Software Engineering a Practitioners Approach, as well as Wikipedia Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland University

434 views • 18 slides
School of Civil Engineering (iPHEE) School of Civil Engineering (iPHEE) FACULTY OF ENGINEERING

School of Civil Engineering (iPHEE) School of Civil Engineering (iPHEE) FACULTY OF ENGINEERING

School of Civil Engineering (iPHEE) School of Civil Engineering (iPHEE) FACULTY OF ENGINEERING FACULTY OF ENGINEERING Fate of Helminth eggs during the Co-composting of Faecal Sludge with Chicken Feathers and Market waste 13 th IWA SWWS

618 views • 18 slides
Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland

Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland

Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland University Waterfall Model (1968) Communication project initiation requirements gathering Planning estimating scheduling tracking

511 views • 49 slides
Multibiometrics for Face Recognition 3D Face Project End User Meeting 2007-03-22 /

Multibiometrics for Face Recognition 3D Face Project End User Meeting 2007-03-22 /

Multibiometrics for Face Recognition 3D Face Project End User Meeting 2007-03-22 / Darmstadt Volker Kempert (Cognitec Systems GmbH) Agenda Multibiometrics in general Multibiometrics related to the face Biometric Face

499 views • 16 slides
CS 528 Mobile and Ubiquitous Computing Lecture 9b: Mobile Security and Mobile Measurements

CS 528 Mobile and Ubiquitous Computing Lecture 9b: Mobile Security and Mobile Measurements

CS 528 Mobile and Ubiquitous Computing Lecture 9b: Mobile Security and Mobile Measurements Emmanuel Agu Authentication using Biometrics Biometrics Passwords tough to remember, manage Many users have simple passwords (e.g. 1234) or do

827 views • 54 slides
CS 528 Mobile and Ubiquitous Computing Lecture 11b: Mobile Security and Mobile Software

CS 528 Mobile and Ubiquitous Computing Lecture 11b: Mobile Security and Mobile Software

CS 528 Mobile and Ubiquitous Computing Lecture 11b: Mobile Security and Mobile Software Vulnerabilities Emmanuel Agu Authentication using Biometrics Biometrics Passwords tough to remember, manage Many users have simple passwords (e.g.

506 views • 34 slides
and the Enterprise User Brian Nitz Software Engineer brian.nitz@sun.com GNOME and the

and the Enterprise User Brian Nitz Software Engineer brian.nitz@sun.com GNOME and the

and the Enterprise User Brian Nitz Software Engineer brian.nitz@sun.com GNOME and the Enterprise User Who uses GNOME? Scientific Medical Education Enterprise Developers Sun Sun's GNOME based products GNOME 1.4

658 views • 34 slides
Demystifying the Secure Enclave Processor Tarjei Mandt (@kernelpool) Mathew Solnik (@msolnik)

Demystifying the Secure Enclave Processor Tarjei Mandt (@kernelpool) Mathew Solnik (@msolnik)

Demystifying the Secure Enclave Processor Tarjei Mandt (@kernelpool) Mathew Solnik (@msolnik) David Wang (@planetbeing) About Us Tarjei Mandt Senior Security Researcher, Azimuth Security tm@azimuthsecurity.com Mathew Solnik

1.51k views • 95 slides
Flying the Unfriendly Skies: Overcoming Obstacles in Legacy Simulations to Improve Training John

Flying the Unfriendly Skies: Overcoming Obstacles in Legacy Simulations to Improve Training John

IT 2 EC 2020 IT 2 EC Extended Abstract Template Presentation/Panel Flying the Unfriendly Skies: Overcoming Obstacles in Legacy Simulations to Improve Training John Williamson 1 , Jennifer Lewis 2 1 Game Development Specialist, SAIC, Seattle, USA

248 views • 3 slides
Teleperformance Group Overview Including Q3 2018 information DISCLAIMER All forward-looking

Teleperformance Group Overview Including Q3 2018 information DISCLAIMER All forward-looking

Teleperformance Group Overview Including Q3 2018 information DISCLAIMER All forward-looking statements reflect Teleperformance managements present expectations of future events and are subject to a number of factors and uncertainties that

861 views • 54 slides
APTA Human Resources Committee 2014 Webinar Series Developing Frontline Workers: The Transit

APTA Human Resources Committee 2014 Webinar Series Developing Frontline Workers: The Transit

APTA Human Resources Committee 2014 Webinar Series Developing Frontline Workers: The Transit Industrys Backbone Wednesday, November 19, 2014 2:00 3:30 p.m. Eastern Time Viewing the webinar: Your confirmation email from GoToWebinar

882 views • 64 slides

More recommend