Our recent work on “A Formal Approach for Verifying and Validating Security Objectives in Software Architecture” is now available online. In this paper, we propose an integrated approach for specifying and verifying security objectives in component-based software architecture models via reusable formal model libraries of security properties and constraints. Our solution is based on metamodeling techniques for specifying the software architecture structure and on formal techniques for precisely specifying and verifying security properties of a modeled system. We explore a set of representative security objectives from the Confidentiality, Integrity, Availability (CIA) classification. We also use model-driven engineering techniques for the development of a tool suite to support our approach. This paper was presented at the 13th International Conference on Model and Data Engineering (MEDI 2024). See Publications for more details!
Home / Publication / New Publication: Reusable Formal Model Libraries for Specifying and Analyzing Security Objectives in Event-B
New Publication: Reusable Formal Model Libraries for Specifying and Analyzing Security Objectives in Event-B