KIT | KIT-Bibliothek | Impressum
Open Access Logo
§
Volltext
DOI: 10.5445/IR/1000076957

Model-Driven Specification and Analysis of Confidentiality in Component-Based Systems

Kramer, Max E.; Hecker, Martin; Greiner, Simon; Bao, Kaibin; Yurchenko, Kateryna

Abstract:
Many software systems have to be designed and developed in a way that guarantees that specific information remains confidential with respect to considered adversaries. Such guarantees depend on the internal information flow inside individual components and the system architecture, e.g., the deployment on hardware nodes and properties of their communication links. Therefore, we propose a novel architecture-driven approach for specifying and analyzing the confidentiality of information processed by component-based systems. It includes an architectural analysis that is able to infer leaks of confidential information from abstract architecture models, adversary models, and confidentiality specifications. Our approach supports re-usability of components and specification parts across systems as well as specifications with custom labels, e.g., accessibility of hardware and service interfaces. Additionally, our information flow specifications for components are compositional and supported by tools for non-interference verification on source code level. In two case studies, we show how our specification approach is applied and how the archi ... mehr


Zugehörige Institution(en) am KIT Institut für Theoretische Informatik (ITI)
Publikationstyp Forschungsbericht
Jahr 2017
Sprache Englisch
Identifikator ISSN: 2190-4782
URN: urn:nbn:de:swb:90-769576
KITopen ID: 1000076957
Verlag Karlsruhe
Umfang [32 S.]
Serie Karlsruhe Reports in Informatics ; 2017,12
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft KITopen Landing Page