Verifying Security Requirements using Model Checking Technique for UML-Based Requirements Specification

被引:0
|
作者
Aoki, Yoshitaka [1 ]
Matsuura, Saeko [1 ]
机构
[1] Shibaura Inst Technol, Grad Sch Engn & Sci, Minuma Ku, Saitama 3378570, Japan
来源
2014 IEEE 1ST INTERNATIONAL WORKSHOP ON REQUIREMENTS ENGINEERING AND TESTING (RET) | 2014年
关键词
UML; Security Requirements; Verification; Model Checking; Common Criteria; Access Control;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Use case analysis is known to be an effective method to clarify functional requirements. Security requirements such as access or information control tend to increase the complexity of functional requirements, and therefore, need to be correctly implemented to minimize risks. However, general developers find it difficult to correctly specify adequate security requirements during the initial phases of the software development process. We propose a method to verify security requirements whose specifications are based on Unified Modeling Language (UML) using the model checking technique and Common Criteria security knowledge. Common Criteria assists in defining adequate security requirements in the form of a table. This helps developers verify whether UML-based requirements analysis models meet those requirements in the early stages of software development. The UML model and the table are transformed into a finite automaton in the UPPAAL model checking tool.
引用
收藏
页码:18 / 25
页数:8
相关论文
共 50 条
  • [1] A UML-based Proposal for IoT System Requirements Specification
    Reggio, Gianna
    2018 IEEE/ACM 10TH INTERNATIONAL WORKSHOP ON MODELLING IN SOFTWARE ENGINEERING (MISE), 2018, : 9 - 16
  • [2] Security Requirements Verification for Existing Systems with Model Checking Technique and UML
    Matsuura, Saeko
    Ogata, Shinpei
    Aoki, Yoshitaka
    MODELSWARD: PROCEEDINGS OF THE 5TH INTERNATIONAL CONFERENCE ON MODEL-DRIVEN ENGINEERING AND SOFTWARE DEVELOPMENT, 2017, : 529 - 535
  • [3] A UML-based pattern specification technique
    France, RB
    Kim, DK
    Ghosh, S
    Song, EJ
    IEEE TRANSACTIONS ON SOFTWARE ENGINEERING, 2004, 30 (03) : 193 - 206
  • [4] Model checking visual specification of requirements
    Shrotri, U
    Bhaduri, P
    Venkatesh, R
    FIRST INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING AND FORMAL METHODS, PROCEEDINGS, 2003, : 202 - 209
  • [5] Verifying Service-oriented Requirements using Model Checking
    Cao Xiaoxia
    Miao Huaikou
    Xu Qingguo
    PROCEEDINGS OF THE ICEBE 2008: IEEE INTERNATIONAL CONFERENCE ON E-BUSINESS ENGINEERING, 2008, : 643 - 648
  • [6] UML based Security Function Policy Verification Method for Requirements Specification
    Noro, Atsushi
    Matsuura, Saeko
    2013 IEEE 37TH ANNUAL COMPUTER SOFTWARE AND APPLICATIONS CONFERENCE (COMPSAC), 2013, : 832 - 833
  • [7] Consistency checking of UML requirements
    Li, XS
    Liu, ZM
    He, JF
    ICECCS 2005: 10TH IEEE INTERNATIONAL CONFERENCE ON ENGINEERING OF COMPLEX COMPUTER SYSTEMS, PROCEEDINGS, 2005, : 411 - 420
  • [8] UML-SR: A Novel Security Requirements Specification Language
    Mohsin, Muhammad
    Khan, Muhammad Umair
    2019 IEEE 19TH INTERNATIONAL CONFERENCE ON SOFTWARE QUALITY, RELIABILITY AND SECURITY (QRS 2019), 2019, : 342 - 349
  • [9] Automatic Verification of Behavior of UML Requirements Specifications using Model Checking
    Matsuura, Saeko
    Ikeda, Sae
    Yokotae, Kasumi
    PROCEEDINGS OF THE 8TH INTERNATIONAL CONFERENCE ON MODEL-DRIVEN ENGINEERING AND SOFTWARE DEVELOPMENT (MODELSWARD), 2020, : 158 - 166
  • [10] Verification of UML-based security policy model
    Park, SC
    Kwon, G
    COMPUTATIONAL SCIENCE AND ITS APPLICATIONS - ICCSA 2005, PT 3, 2005, 3482 : 973 - 982
12345