An approach to model-based development of secure and reliable systems

Eduardo B. Fernandez, Hironori Washizaki, Nobukazu Yoshioka, Michael VanHilst

研究成果: Conference contribution

11 被引用数 (Scopus)

抄録

A good way to obtain secure systems is to build applications in a systematic way where security is an integral part of the lifecycle. The same applies to reliability. If we want a system which is secure and reliable, both security and reliability must be built together. If we build not only applications but also middleware and operating systems in the same way, we can build systems that not only are inherently secure but also can withstand attacks from malicious applications and resist errors. In addition, all security and reliability constraints should be defined in the application level, where their semantics is understood and propagated to the lower levels. The lower levels provide the assurance that the constraints are being followed. In this approach all security constraints are defined at the conceptual or application level. The lower levels just enforce that there are no ways to bypass these constraints. By mapping to a highly secure platform, e.g., one using capabilities, we can produce a very secure system. Our approach is based on security patterns that are mapped through the architectural levels of the system. We make a case for this approach and we present here three aspects to further develop it. These aspects include a metamodel for security requirements, a mapping of models across architectural levels, and considerations about the degree of security of the system.

本文言語English
ホスト出版物のタイトルProceedings of the 2011 6th International Conference on Availability, Reliability and Security, ARES 2011
ページ260-265
ページ数6
DOI
出版ステータスPublished - 2011
イベント2011 6th International Conference on Availability, Reliability and Security, ARES 2011 - Vienna, Austria
継続期間: 2011 8 222011 8 26

出版物シリーズ

名前Proceedings of the 2011 6th International Conference on Availability, Reliability and Security, ARES 2011

Conference

Conference2011 6th International Conference on Availability, Reliability and Security, ARES 2011
CountryAustria
CityVienna
Period11/8/2211/8/26

ASJC Scopus subject areas

  • Safety, Risk, Reliability and Quality

フィンガープリント 「An approach to model-based development of secure and reliable systems」の研究トピックを掘り下げます。これらがまとまってユニークなフィンガープリントを構成します。

引用スタイル