Internet Archive Scholar

Tools for model-based security engineering

Jan Jürjens, Jorge Fox
2006 Proceeding of the 28th international conference on Software engineering - ICSE '06  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (130.8 kB)
https://web.archive.org/web/20170815174946/http://www.tara.tcd.ie/bitstream/handle/2262/15159/p819-juerjensfox.pdf?sequence=1

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL. The file type is application/pdf.

We present tool-support for checking UML models and C code against security requirements. A framework supports implementing verification routines, based on XMI output of the diagrams from UML CASE tools, and on control flow generated from the C code. The tool also supports weaving security aspects into the code generated from the models. Advanced users can use this open-source framework to implement verification routines for the constraints of selfdefined security requirements. We focus on a
more » ... ification routine that automatically verifies crypto-based software for security requirements by using automated theorem provers.
doi:10.1145/1134285.1134423 dblp:conf/icse/JurjensF06 fatcat:amyu7yvrjvg4bgin5atfaidcce
Citation

Jan Jürjens, Jorge Fox. "Tools for model-based security engineering." Proceeding of the 28th international conference on Software engineering - ICSE '06 (2006) 819-822