Tool-Supported Architecture-Based Data Flow Analysis for Confidentiality
Schwickerath, Felix 1; Boltz, Nicolas 1; Hahner, Sebastian
1; Walter, Maximilian
1; Gerking, Christopher
1; Heinrich, Robert 1
1 Institut für Informationssicherheit und Verlässlichkeit (KASTEL), Karlsruher Institut für Technologie (KIT)
1; Walter, Maximilian
1; Gerking, Christopher
1; Heinrich, Robert 11 Institut für Informationssicherheit und Verlässlichkeit (KASTEL), Karlsruher Institut für Technologie (KIT)
Abstract:
Through the increasing interconnection between various systems, the need for confidential systems is increasing. Confidential systems share data only with authorized entities. However, estimating the confidentiality of a system is complex, and adjusting an already deployed software is costly. Thus, it is helpful to have confidentiality analyses, which can estimate the confidentiality already at design time. Based on an existing data-flow-based confidentiality analysis concept, we reimplemented a data flow analysis as a Java-based tool. The tool uses the software architecture to identify access violations based on the data flow. The evaluation for our tool indicates that we can analyze similar scenarios and scale for certain scenarios better than the existing analysis.
| Zugehörige Institution(en) am KIT | Institut für Informationssicherheit und Verlässlichkeit (KASTEL) |
| Publikationstyp | Forschungsbericht/Preprint |
| Publikationsdatum | 03.08.2023 |
| Sprache | Englisch |
| Identifikator | KITopen-ID: 1000161187 |
| HGF-Programm | 46.23.03 (POF IV, LK 01) Engineering Security for Mobility Systems |
| Verlag | arxiv |
| Projektinformation | SofDCar (BMWK, 19S21002K) |
| Schlagwörter | Confidentiality, Software Architecture, Security |
| Nachgewiesen in | arXiv Dimensions |
| Relationen in KITopen |