KIT | KIT-Bibliothek | Impressum | Datenschutz

Model-Driven Specification and Analysis of Confidentiality in Component-Based Systems

Kramer, Max E.; Hecker, Martin; Greiner, Simon; Bao, Kaibin ORCID iD icon; Yurchenko, Kateryna

Abstract:

Many software systems have to be designed and developed in a way that guarantees that specific information remains confidential with respect to considered adversaries. Such guarantees depend on the internal information flow inside individual components and the system architecture, e.g., the deployment on hardware nodes and properties of their communication links. Therefore, we propose a novel architecture-driven approach for specifying and analyzing the confidentiality of information processed by component-based systems. It includes an architectural analysis that is able to infer leaks of confidential information from abstract architecture models, adversary models, and confidentiality specifications. Our approach supports re-usability of components and specification parts across systems as well as specifications with custom labels, e.g., accessibility of hardware and service interfaces. Additionally, our information flow specifications for components are compositional and supported by tools for non-interference verification on source code level. In two case studies, we show how our specification approach is applied and how the architectural analysis is able to detect information leaks of a system in an early design phase.


Volltext §
DOI: 10.5445/IR/1000076957
Veröffentlicht am 28.11.2017
Cover der Publikation
Zugehörige Institution(en) am KIT Institut für Programmstrukturen und Datenorganisation (IPD)
Institut für Theoretische Informatik (ITI)
Kompetenzzentrum für angewandte Sicherheitstechnologie (KASTEL)
Lehrstuhl IPD Snelting (Lehrstuhl IPD Snelting)
Publikationstyp Forschungsbericht/Preprint
Publikationsjahr 2017
Sprache Englisch
Identifikator ISSN: 2190-4782
urn:nbn:de:swb:90-769576
KITopen-ID: 1000076957
Verlag Karlsruher Institut für Technologie (KIT)
Umfang [32 S.]
Serie Karlsruhe Reports in Informatics ; 2017,12
Projektinformation KASTEL_IoE (BMBF, 16KIS0346)
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft
KITopen Landing Page