Dynamic secure aspect modeling with UML: from models to code

Authors:
Jan Jürjens;Siv Hilde Houmb
Affiliations:
Software & Systems Engineering, Dep. of Informatics, TU Munich, Germany;Department of Computer and Information Science, Norwegian University of Science and Technology, Norway
Venue:
MoDELS'05 Proceedings of the 8th international conference on Model Driven Engineering Languages and Systems
Year:
2005

Citing 10
Cited 7

Discussing aspects of AOP

Communications of the ACM
Aspect-Oriented Modeling: Bridging the Gap between Implementation and Design

GPCE '02 Proceedings of the 1st ACM SIGPLAN/SIGSOFT conference on Generative Programming and Component Engineering
E-SETHEO: An Automated3 Theorem Prover

TABLEAUX '00 Proceedings of the International Conference on Automated Reasoning with Analytic Tableaux and Related Methods
UMLsec: Extending UML for Secure Systems Development

UML '02 Proceedings of the 5th International Conference on The Unified Modeling Language
Certification Support for Automatically Generated Programs

HICSS '03 Proceedings of the 36th Annual Hawaii International Conference on System Sciences (HICSS'03) - Track 9 - Volume 9
A UML-Based Pattern Specification Technique

IEEE Transactions on Software Engineering
Modeling Complex Systems by Separating Application and Security Concerns

ICECCS '04 Proceedings of the Ninth IEEE International Conference on Engineering Complex Computer Systems Navigating Complexity in the e-Engineering Age
An Information Retrieval Approach to Concept Location in Source Code

WCRE '04 Proceedings of the 11th Working Conference on Reverse Engineering
Sound methods and effective tools for model-based security engineering with UML

Proceedings of the 27th international conference on Software engineering
Secure Systems Development with UML

Secure Systems Development with UML

Tools for model-based security engineering

Proceedings of the 28th international conference on Software engineering
From Access Control Policies to an Aspect-Based Infrastructure: A Metamodel-Based Approach

Models in Software Engineering
A transformation contract to generate aspects from access control policies

Software and Systems Modeling (SoSyM)
Model-based security engineering with UML: introducing security aspects

FMCO'05 Proceedings of the 4th international conference on Formal Methods for Components and Objects
Model-Based security engineering with UML

Foundations of Security Analysis and Design III
Behavioral singletons to consistently handle global states of security patterns

DAIS'12 Proceedings of the 12th IFIP WG 6.1 international conference on Distributed Applications and Interoperable Systems
Compositional verification of application-level security properties

ESSoS'13 Proceedings of the 5th international conference on Engineering Secure Software and Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

Security engineering deals with modeling, analysis, and implementation of complex security mechanisms. The dynamic nature of such mechanisms makes it difficult to anticipate undesirable emergent behavior. In this work, we propose an approach to develop and analyze security-critical specifications and implementations using aspect-oriented modeling. Since we focus on the dynamic views of a system, our work is complementary to existing approaches to security aspects mostly concerned with static views. Our approach includes a link to implementations in so far as the code which is constructed from the models can be analyzed automatically for satisfaction of the security requirements stated in the UML diagrams. We present tool support for our approach.