开发可证明安全的电子商务应用程序的建模框架

International Conference on Software Engineering Advances (ICSEA 2007) Pub Date : 2007-08-25 DOI:10.1109/ICSEA.2007.7

Nina Moebius, Dominik Haneberg, W. Reif, G. Schellhorn

{"title":"开发可证明安全的电子商务应用程序的建模框架","authors":"Nina Moebius, Dominik Haneberg, W. Reif, G. Schellhorn","doi":"10.1109/ICSEA.2007.7","DOIUrl":null,"url":null,"abstract":"Developing security-critical applications is very difficult and the past has shown that many applications turned out to be erroneous after years of usage. For this reason it is desirable to have a sound methodology for developing security-critical e-commerce applications. We present an approach to model these applications with the Unified Modeling Language (UML) [1] extended by a UML profile to tailor our models to security applications. Our intent is to (semi-) automatically generate a formal specification suitable for verification as well as an implementation from the model. Therefore we offer a development method seamlessly integrating semi-formal and formal methods as well as the implementation. This is a significant advantage compared to other approaches not dealing with all aspects from abstract models down to code. Based on this approach we can prove security properties on the abstract protocol level as well as the correctness of the protocol implementation in Java with respect to the formal model using the refinement approach. In this paper we concentrate on the modeling with UML and some details regarding the transformation of this model into the formal specification. We illustrate our approach on an electronic payment system called Mondex [10]. Mondex has become famous for being the target of the first ITSEC evaluation of the highest level E6 which requires formal specification and verification.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"252 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2007-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"15","resultStr":"{\"title\":\"A Modeling Framework for the Development of Provably Secure E-Commerce Applications\",\"authors\":\"Nina Moebius, Dominik Haneberg, W. Reif, G. Schellhorn\",\"doi\":\"10.1109/ICSEA.2007.7\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Developing security-critical applications is very difficult and the past has shown that many applications turned out to be erroneous after years of usage. For this reason it is desirable to have a sound methodology for developing security-critical e-commerce applications. We present an approach to model these applications with the Unified Modeling Language (UML) [1] extended by a UML profile to tailor our models to security applications. Our intent is to (semi-) automatically generate a formal specification suitable for verification as well as an implementation from the model. Therefore we offer a development method seamlessly integrating semi-formal and formal methods as well as the implementation. This is a significant advantage compared to other approaches not dealing with all aspects from abstract models down to code. Based on this approach we can prove security properties on the abstract protocol level as well as the correctness of the protocol implementation in Java with respect to the formal model using the refinement approach. In this paper we concentrate on the modeling with UML and some details regarding the transformation of this model into the formal specification. We illustrate our approach on an electronic payment system called Mondex [10]. Mondex has become famous for being the target of the first ITSEC evaluation of the highest level E6 which requires formal specification and verification.\",\"PeriodicalId\":395851,\"journal\":{\"name\":\"International Conference on Software Engineering Advances (ICSEA 2007)\",\"volume\":\"252 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2007-08-25\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"15\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Conference on Software Engineering Advances (ICSEA 2007)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICSEA.2007.7\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Conference on Software Engineering Advances (ICSEA 2007)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSEA.2007.7","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 15

摘要

开发安全关键型应用程序是非常困难的，过去的经验表明，许多应用程序在使用多年后被证明是错误的。出于这个原因，需要有一种可靠的方法来开发安全关键型电子商务应用程序。我们提出了一种使用统一建模语言(UML)[1]对这些应用程序建模的方法，该方法由UML概要文件扩展，以将我们的模型定制为安全应用程序。我们的目的是(半)自动地生成适合于验证的正式规范，以及来自模型的实现。因此，我们提供了一种无缝集成半正式和正式方法以及实现的开发方法。与其他不处理从抽象模型到代码的所有方面的方法相比，这是一个显著的优势。基于这种方法，我们可以证明抽象协议级别上的安全属性，以及使用改进方法相对于正式模型在Java中协议实现的正确性。在本文中，我们集中讨论了使用UML进行建模以及将该模型转换为正式规范的一些细节。我们以电子支付系统Mondex[10]为例说明了我们的方法。Mondex因成为ITSEC对E6最高级别的首次评估的目标而闻名，E6最高级别的评估需要正式的规范和验证。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A Modeling Framework for the Development of Provably Secure E-Commerce Applications

Developing security-critical applications is very difficult and the past has shown that many applications turned out to be erroneous after years of usage. For this reason it is desirable to have a sound methodology for developing security-critical e-commerce applications. We present an approach to model these applications with the Unified Modeling Language (UML) [1] extended by a UML profile to tailor our models to security applications. Our intent is to (semi-) automatically generate a formal specification suitable for verification as well as an implementation from the model. Therefore we offer a development method seamlessly integrating semi-formal and formal methods as well as the implementation. This is a significant advantage compared to other approaches not dealing with all aspects from abstract models down to code. Based on this approach we can prove security properties on the abstract protocol level as well as the correctness of the protocol implementation in Java with respect to the formal model using the refinement approach. In this paper we concentrate on the modeling with UML and some details regarding the transformation of this model into the formal specification. We illustrate our approach on an electronic payment system called Mondex [10]. Mondex has become famous for being the target of the first ITSEC evaluation of the highest level E6 which requires formal specification and verification.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

International Conference on Software Engineering Advances (ICSEA 2007)

自引率

0.00%

发文量