Ecole d'ingénieur et centre de recherche en Sciences du numérique

Towards the model-driven engineering of security requirements for embedded systems

Roudier, Yves ; Idrees, Muhammad Sabir; Apvrille, Ludovic

MODRE 2013, International Workshop on Model-Driven Requirements Engineering, 15 July 2013, Rio de Janeiro, Brazil

This paper discusses why and how security requirements engineering must be adapted to the model-driven approach usually adopted to design and develop embedded systems. In particular, we discuss to what extent the elicitation of security requirements and the Y-chart partitioning approach, a central design methodology in embedded systems, can mutually enrich each other. We also show how SysML, which is already commonly used to engineer requirements in embedded systems, can also represent security requirements, assets, and threats with only a few extensions and thus support a more comprehensive requirements engineering methodology. We illustrate the use of our overall methodology and toolkit with examples from the automotive embedded system field in order to demonstrate the relevance of our approach.

Document Doi Bibtex

Titre:Towards the model-driven engineering of security requirements for embedded systems
Mots Clés:Communication System Security; Computer Security; Design methodology; System-level design; Component Architectures; Embedded Systems; Security Requirements Engineering
Type:Conférence
Langue:English
Ville:Rio de Janeiro
Pays:BRÉSIL
Date:
Département:Sécurité numérique
Eurecom ref:4119
Copyright: © 2013 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.
Bibtex: @inproceedings{EURECOM+4119, doi = {http://dx.doi.org/10.1109/MoDRE.2013.6597264}, year = {2013}, title = {{T}owards the model-driven engineering of security requirements for embedded systems}, author = {{R}oudier, {Y}ves and {I}drees, {M}uhammad {S}abir and {A}pvrille, {L}udovic}, booktitle = {{MODRE} 2013, {I}nternational {W}orkshop on {M}odel-{D}riven {R}equirements {E}ngineering, 15 {J}uly 2013, {R}io de {J}aneiro, {B}razil }, address = {{R}io de {J}aneiro, {BR}{\'{E}}{SIL}}, month = {07}, url = {http://www.eurecom.fr/publication/4119} }
Voir aussi: