Checking security compliance between models and code

Tuma, Katja; Peldszus, Sven; Strüber, Daniel; Scandariato, Riccardo; Jürjens, Jan

doi:10.1007/s10270-022-00991-5

Cited by 4 publications

(1 citation statement)

References 58 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Work by Töberg et al [26] as well as Tuma et al [25] is similar to Quac in that it combines architecture and code by using sourcecode analyses to verify whether assumptions in an architectural model hold in the implementation. However, these approaches do not modify the architectural model based on the results of the source-code analysis.…”

Section: Related Workmentioning

confidence: 99%

A Refactoring for Data Minimisation Using Formal Verification

Lanzinger

Ulbrich

Weigl

2022

Leveraging Applications of Formal Methods, Verification and Validation. Software Engineering

View full text Add to dashboard Cite

Most formal methods see the correctness of a software system as a binary decision. However, proving the correctness of complex systems completely is difficult because they are composed of multiple components, usage scenarios, and environments. We present Quac, a modular approach for quantifying the correctness of service-oriented software systems by combining software architecture modeling with deductive verification. Our approach is based on a model of the service-oriented architecture and the probabilistic usage scenarios of the system. The correctness of a single service is approximated by a coverage region, which is a formula describing which inputs for that service are proven to not lead to an erroneous execution. The coverage regions can be determined by a combination of various analyses, e.g., formal verification, expert estimations, or testing. The coverage regions and the software model are then combined into a probabilistic program. From this, we can compute the probability that under a given usage profile no service is called outside its coverage region. We also present an implementation of Quac for Java using the modeling tool Palladio and the deductive verification tool KeY. We demonstrate its usability by applying it to a software simulation of an energy system. CCS CONCEPTS• Software and its engineering → Formal software verification; Object oriented architectures.

show abstract

Section: Related Workmentioning

confidence: 99%

A Refactoring for Data Minimisation Using Formal Verification

Lanzinger

Ulbrich

Weigl

2022

Leveraging Applications of Formal Methods, Verification and Validation. Software Engineering

View full text Add to dashboard Cite

show abstract

Towards ML-Integration and Training Patterns for AI-Enabled Systems

Peldszus,

Knopp,

Sens

et al. 2024

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Machine learning (ML) has improved dramatically over the last decade. ML models have become a fundamental part of intelligent software systems, many of which are safety-critical. Since ML models have complex lifecycles, they require dedicated methods and tools, such as pipeline automation or experiment management. Unfortunately, the current state of the art is model-centric, disregarding the challenges of engineering systems with multiple ML models that need to interact to realize complex functionality. Consider, for instance, robotics or autonomous driving systems, where perception architectures can easily incorporate more than 30 ML models. Developing such multi-ML model systems requires architectures that can integrate and chain ML components. Maintaining and evolving them requires tackling the combinatorial explosion when re-training ML components, often exploring different (hyper-)parameters, features, training algorithms, or other ML artifacts. Addressing these problems requires systems-centric methods and tools. In this work, we discuss characteristics of multi-ML-model systems and challenges of engineering them. Inspired by such systems in the autonomous driving domain, our focus is on experiment-management tooling, which supports tracking and reasoning about the training process for ML models. Our analysis reveals their concepts, but also their limitations when engineering multi-ML-model systems, especially due to their model-centric focus. We discuss possible integration patterns and ML training to facilitate the effective and efficient development, maintenance, and evolution of multi-ML-model systems. Furthermore, we describe real-world multi-ML-model systems, providing early results from identifying and analyzing open-source systems from GitHub.

show abstract