For-LySa: UML for authentication analysis

Authors:
Mikael Buchholtz;Carlo Montangero;Lara Perrone;Simone Semprini
Affiliations:
Informatics and Mathematical Modelling, Technical University of Denmark, Kgs. Lyngby, Denmark;Dipartimento di Informatica, Università di Pisa, Pisa, Italy;Dipartimento di Informatica, Università di Pisa, Pisa, Italy;Automated Reasoning Systems Division, ITC-IRST, Povo – Trento, Italy
Venue:
GC'04 Proceedings of the 2004 IST/FET international conference on Global Computing
Year:
2004

Citing 6
Cited 5

A logic of authentication

ACM Transactions on Computer Systems (TOCS)
Casper: a compiler for the analysis of security protocols

Journal of Computer Security
A compiler for analyzing cryptographic protocols using noninterference

ACM Transactions on Software Engineering and Methodology (TOSEM)
UMLsec: Extending UML for Secure Systems Development

UML '02 Proceedings of the 5th International Conference on The Unified Modeling Language
The AVISS Security Protocol Analysis Tool

CAV '02 Proceedings of the 14th International Conference on Computer Aided Verification
Secure Systems Development with UML

Secure Systems Development with UML

Barbed Model--Driven Software Development: A Case Study

Electronic Notes in Theoretical Computer Science (ENTCS)
An Aspect-Oriented Approach for Software Security Hardening: from Design to Implementation

Proceedings of the 2009 conference on New Trends in Software Methodologies, Tools and Techniques: Proceedings of the Eighth SoMeT_09
A design environment for mobile applications

IPDPS'06 Proceedings of the 20th international conference on Parallel and distributed processing
End-to-end integrated security and performance analysis on the DEGAS choreographer platform

FM'05 Proceedings of the 2005 international conference on Formal Methods
Choreographing security and performance analysis for web services

EPEW'05/WS-FM'05 Proceedings of the 2005 international conference on European Performance Engineering, and Web Services and Formal Methods, international conference on Formal Techniques for Computer Systems and Business Processes

Quantified Score

Hi-index	0.00

Visualization

Abstract

The DEGAS project aims at enriching standard UML-centred development environments in such a way that the developers of global applications can exploit automated formal analyses with minimal overhead. In this paper, we present For-LySa, an instantiation of the DEGAS approach for authentication analysis, which exploits an existing analysis tool developed for the process calculus LySa. We discuss what information is needed for the analysis, and how to build the UML model of an authentication protocol in such a way that the needed information can be extracted from the model. We then present our prototype implementation and report on some promising results of its use.