Ecole d'ingénieur et centre de recherche en Sciences du numérique

SysML models and model transformation for security

Lugou, Florian; Li, Letitia W; Apvrille, Ludovic; Ameur, Rabea

MODELSWARD 2016, Conference on Model-Driven Engineering and Software Development, 19-21 February 2016, Rome, Italy

The security flaws of embedded systems have become very valuable targets for cyber criminals. SysML-Sec has been introduced to target the security of these systems during their development stages. However, assessing resistance to attacks during these stages requires efficiently capturing the system's behavior and formally proving security properties from those behaviors. This paper thus proposes (i) novel SysML block and state machine diagrams enhanced to better capture security features, and (ii) a model-to-Proverif transformation. ProVerif is a toolkit first released for the formal analysis of security protocol, but it can be used more generally to assess confidentiality and authenticity properties. This paper demonstrates the soundness of our approach using a complex asymmetric key distribution protocol.

Document Hal Bibtex

Titre:SysML models and model transformation for security
Mots Clés:SysML-Sec, Security, Model-driven engineering, Model transformation, ProVerif, TTool
Type:Conférence
Langue:English
Ville:Rome
Pays:ITALIE
Date:
Département:Sécurité numérique
Eurecom ref:6014
Copyright: © Springer. Personal use of this material is permitted. The definitive version of this paper was published in MODELSWARD 2016, Conference on Model-Driven Engineering and Software Development, 19-21 February 2016, Rome, Italy and is available at :
Bibtex: @inproceedings{EURECOM+6014, year = {2016}, title = {{S}ys{ML} models and model transformation for security}, author = {{L}ugou, {F}lorian and {L}i, {L}etitia {W} and {A}pvrille, {L}udovic and {A}meur, {R}abea}, booktitle = {{MODELSWARD} 2016, {C}onference on {M}odel-{D}riven {E}ngineering and {S}oftware {D}evelopment, 19-21 {F}ebruary 2016, {R}ome, {I}taly}, address = {{R}ome, {ITALIE}}, month = {02}, url = {http://www.eurecom.fr/publication/6014} }
Voir aussi: