[en] Model-Driven Security (MDS) has emerged as a promising sound methodology for modern secure systems development. Following the advances in MDS, this paper describes the late-PhD work that has proposed a solution to better support secure systems development, and further strengthens MDS. Our MDS solution focuses on modularity and reusability in secure systems development. On one hand, we have pro- posed a modular approach for modularity and dynamic adaptation of flexibly secure systems. On the other hand, we have been working on MDS based on a library-like System of generic Security design Patterns in which security design patterns are collected, specified as reusable aspect models to form a coherent system of them that guides developers in systematically selecting the right security design patterns for the right job. Either way, security (design pattern) models can be automatically woven into the target system model. The woven secure system model can then be used for code generation, including configured security infrastructures. We have been also working on using model-based security testing techniques to validate the resulting secure systems.
Research center :
SnT
Disciplines :
Computer science
Author, co-author :
Nguyen, Phu Hong ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Language :
English
Title :
Model-Driven Security with Modularity and Reusability for Secure Systems Development
Publication date :
2014
Event name :
STAF-DS 2014
Event place :
York, United Kingdom
Event date :
21-07-2014
Audience :
International
Main work title :
STAF-DS 2014
Peer reviewed :
Peer reviewed
Name of the research project :
I2R-SER-PFN-10MITE > MITER: Modeling, Composing and Testing of Security Concerns > 01/01/2011 - 31/12/2013 > LE TRAON Yves