The security flaws of embedded systems have become very valuable targets for cyber criminals. SysML-Sec has been introduced to target the security of these systems during their development stages. However, assessing resistance to attacks during these stages requires efficiently capturing the system's behavior and formally proving security properties from those behaviors. This paper thus proposes (i) novel SysML block and state machine diagrams enhanced to better capture security features, and (ii) a model-to-Proverif transformation. ProVerif is a toolkit first released for the formal analysis of security protocol, but it can be used more generally to assess confidentiality and authenticity properties. This paper demonstrates the soundness of our approach using a complex asymmetric key distribution protocol.
SysML models and model transformation for security
MODELSWARD 2016, Conference on Model-Driven Engineering and Software Development, 19-21 February 2016, Rome, Italy
Type:
Conférence
City:
Rome
Date:
2016-02-19
Department:
Sécurité numérique
Eurecom Ref:
6014
Copyright:
© Springer. Personal use of this material is permitted. The definitive version of this paper was published in MODELSWARD 2016, Conference on Model-Driven Engineering and Software Development, 19-21 February 2016, Rome, Italy and is available at :
See also:
PERMALINK : https://www.eurecom.fr/publication/6014
