Modeling, composing, and testing of security concerns in a Model-Driven Security approach

Nguyen, Phu Hong; Klein, Jacques; Le Traon, Yves

Reference : Modeling, composing, and testing of security concerns in a Model-Driven Security approach


	Document type :	Scientific congresses, symposiums and conference proceedings : Paper published in a book
	Discipline(s) :	Engineering, computing & technology : Computer science
	To cite this reference:	http://hdl.handle.net/10993/16420

Title :	Modeling, composing, and testing of security concerns in a Model-Driven Security approach
Language :	English
Author, co-author :	Nguyen, Phu Hong [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	Klein, Jacques [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
	Le Traon, Yves [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
Publication date :	26-Feb-2014
Main document title :	Proceedings of the 2014 ESSoS Doctoral Symposium co-located with the International Symposium on Engineering Secure Software and Systems (ESSoS 2014)
Editor :	Joosen, Wouter
	Martinelli, Fabio
	Heyman, Thomas
Collection and collection volume :	Vol-1298
Peer reviewed :	Yes
On invitation :	No
Audience :	International
Event name :	International Symposium on Engineering Secure Software and Systems - Doctoral Symposium
Event date :	from 26-02-2014 to 28-02-2014
Keywords :	[en] Model-Driven Security ; Model-Driven Engineering ; Secu- rity Modeling, Model Composition, Adaptive Security, Security Testing
Abstract :	[en] Model-Driven Security (MDS) has emerged as a promising sound methodology for supporting the development of secure systems nowadays. Following the advances in MDS, this research work aims at 1) developing new modeling techniques to represent multiple security concerns, 2) (automatically) composing security models with the business logic model (called target model), and 3) testing the security model composition and the resulting secure system against security requirements. These three objectives converge to an integrated MDS framework (and tool chain) which 1) allows a target system model to embed various security concerns, 2) enables the generation of implementation code including configured security infrastructures, and 3) makes these security properties testable by construction. This paper presents the main research modules, the results we have achieved so far, and the main points for future work.
Research centres :	SnT
Funders :	Fonds National de la Recherche - FnR
Name of the research project :	I2R-SER-PFN-10MITE > MITER: Modeling, Composing and Testing of Security Concerns > 01/01/2011 - 31/12/2013 > LE TRAON Yves
Target :	Researchers ; Professionals ; Students ; General public ; Others
Permalink :	http://hdl.handle.net/10993/16420

File(s) associated to this reference

Fulltext file(s):

	File	Commentary	Version	Size	Access
Open access	ESSoS-DS2014-PhuNGUYEN.pdf		Author preprint	311.41 kB	View/Open

All documents in ORBi^lu are protected by a user license.

University of Luxembourg Library | Feedback | Legal notices