[en] Model-Driven Security (MDS) has emerged as a promising sound methodology for modern secure systems development. Following the advances in MDS, this paper describes the late-PhD work that has proposed a solution to better support secure systems development, and further strengthens MDS. Our MDS solution focuses on modularity and reusability in secure systems development. On one hand, we have pro- posed a modular approach for modularity and dynamic adaptation of flexibly secure systems. On the other hand, we have been working on MDS based on a library-like System of generic Security design Patterns in which security design patterns are collected, specified as reusable aspect models to form a coherent system of them that guides developers in systematically selecting the right security design patterns for the right job. Either way, security (design pattern) models can be automatically woven into the target system model. The woven secure system model can then be used for code generation, including configured security infrastructures. We have been also working on using model-based security testing techniques to validate the resulting secure systems.
SnT
Fonds National de la Recherche - FnR
I2R-SER-PFN-10MITE > MITER: Modeling, Composing and Testing of Security Concerns > 01/01/2011 - 31/12/2013 > LE TRAON Yves
Researchers ; Professionals ; Students ; General public ; Others