Jurjens, Jan; Schreck, Jörg and Yu, Yijun
Automated analysis of permission-based security using UMLsec (TOOL DEMO).
In: ETAPS 2008 , 29 March - 6 April 2008, Budapest, Hungary.
To guarantee the security of computer systems, it is necessary to define security permissions to restrict the access to the systems’ resources. These permissions enforce certain restrictions based on the workflows the system is designed for. It is not always easy to see if workflows and the design of the security permissions for the system fit together. We present research towards a tool which supports embedding security permissions in UML models and model-based security analysis by providing consistency checks. It also offers an automated analysis of underlying mechanisms for managing security-critical permissions using Prolog resp. automated theorem provers for first-order logic.
|Project Funding Details:
|Funded Project Name||Project ID||Funding Body|
|Not Set||Not Set||Royal Society|
||Presented at one of the mainconferences at ETAPS, Fundamental Approaches to Software Engineering.
Published in Fundamental Approaches to Software Engineering
11th International Conference, FASE 2008, Held as Part of the Joint European Conferences on Theory and Practice of Software, ETAPS 2008, Budapest, Hungary, March 29-April 6, 2008. Proceedings / edited by José Luiz Fiadeiro and Paola Inverardi, Lecture Notes in Computer Science, 2008, Volume 4961, pp 292-295, © 2008 Springer-Verlag
||Mathematics, Computing and Technology > Computing & Communications
|Interdisciplinary Research Centre:
||Centre for Research in Computing (CRC)
||13 Jan 2011 12:44
||13 Jan 2011 13:00
|Share this page:
Actions (login may be required)