Integrated architectural modeling and analysis for high-assurance command and control system design

Deng, Yi; Wang, Jiacun

doi:10.1109/hase.1998.731627

Cited by 1 publication

(2 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…SAM provides a multiple leveled model and notation for describing different aspects of architecture level design such as structure, behavior, and constraints [12], [23], [40]. Its specification model can be characterized from several dimensions:…”

Section: Modeling Techniquementioning

confidence: 99%

See 1 more Smart Citation

An approach for modeling and analysis of security system architectures

Deng

Wang²,

Tsai

et al. 2003

IEEE Trans. Knowl. Data Eng.

View full text Add to dashboard Cite

Security system architecture governs the composition of components in security systems and interactions between them. It plays a central role in the design of software security systems that ensure secure access to distributed resources in networked environment. In particular, the composition of the systems must consistently assure security policies that it is supposed to enforce. However, there is currently no rigorous and systematic way to predict and assure such critical properties in security system design. In this paper, a systematic approach is introduced to address the problem. We present a methodology for modeling security system architecture and for verifying whether required security constraints are assured by the composition of the components. We introduce the concept of security constraint patterns, which formally specify the generic form of security policies that all implementations of the system architecture must enforce. The analysis of the architecture is driven by the propagation of the global security constraints onto the components in an incremental process. We show that our methodology is both flexible and scalable. It is argued that such a methodology not only ensures the integrity of critical early design decisions, but also provides a framework to guide correct implementations of the design. We demonstrate the methodology through a case study in which we model and analyze the architecture of the Resource Access Decision (RAD) Facility, an OMG standard for application-level authorization service.

show abstract

Section: Modeling Techniquementioning

confidence: 99%

“…These two complementary notations are seamlessly integrated under the SAM framework. We have successfully applied SAM for the modeling and analysis of command and control systems [12], [40] and flexible manufacturing systems [13], [39]. The modeling framework of SAM is illustrated in Fig.…”

mentioning

confidence: 99%