Restoring Security of Long-Living Systems by Co-evolution

Bürger, Jens; Gärtner, Stefan; Ruhroth, Thomas; Zweihoff, Johannes; Jürjens, Jan; Schneider, Kurt

doi:10.1109/compsac.2015.72

Cited by 8 publications

(10 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A generic approach was proposed by Bürger et al, which handles Essential Security Requirements. This is achieved by triggering Security Maintenance Rules if changes in the Security Context Knowledge are detected [16], [17]. Another generic mechanism by Tsigkanos et al describes a model checking approach to analyze threats and plan adaptations to mitigate those [18].…”

Section: Related Workmentioning

confidence: 99%

“…If M is better than the best solution in regard to a specific comparison metric, the best solution is replaced by M , the path to the best solution is stored, and the comparison ends (line [12][13][14][15][16]. The comparison also ends if M is worse than the best solution (line [17][18][19]. It is important to state that the amount of PCP instances will always be the first metric that will be used for comparison (line 9).…”

Section: B Algorithmic Improvementsmentioning

confidence: 99%

See 1 more Smart Citation

A Data Protection Focused Adaptation Engine for Distributed Video Analytics Pipelines

et al. 2022

View full text Add to dashboard Cite

show abstract

Section: Related Workmentioning

confidence: 99%

Section: B Algorithmic Improvementsmentioning

confidence: 99%

A Data Protection Focused Adaptation Engine for Distributed Video Analytics Pipelines

et al. 2022

View full text Add to dashboard Cite

show abstract

“…Bürger et al present an approach called SecVolution for supporting the evolution of systems to ensure the fulfillment of Essential Security Requirements [31], [20]. Changes in the Security Context Knowledge (e.g., changes in relevant legislation) may trigger the invocation of Security Maintenance Rules.…”

Section: Related Workmentioning

confidence: 99%

RADAR: Data Protection in Cloud-Based Computer Systems at Run Time

et al. 2021

View full text Add to dashboard Cite

show abstract

“…In that sense, and in order to provide to MBSE the means to deal with security since early development phases (in contrast to the common practice of adding security features This work is partially funded by Région Bretagne. later in the development process), several approaches adopt a security by design perspective and integrate security aspects into modeling languages (e.g., UMLsec [1], SysML-Sec [2], and secBPMN [3] among others). Such security aspects need to be taken into account when models evolve in order to avoid potential security issues.…”

Section: Introductionmentioning

confidence: 99%

Towards Evolving Secured Multi-Model Systems with Model Federation

Boudjemila,

Dagnat,

Martínez

2023

2023 ACM/IEEE International Conference on Model Driven Engineering Languages and Systems Companion (MODELS-C)

View full text Add to dashboard Cite

In order to deal with the increasing complexity of nowadays systems, model-based system engineering (MBSE) promotes the use of models all along the engineering phases. In this scenario, systems are often represented by a set of models, conforming to different modeling languages and built with different tools. This multiplicity and heterogeneity are challenging when models evolve as they may easily become inconsistent. This is even more crucial when we deal with security requirements. Indeed, being a critical property of systems, security has been integrated in MBSE so that it can be dealt with since the early phases of the project (in what is called "security-by-design"). Consequently, it needs to be taken into account as well when the system evolves in order to avoid potential security issues.In order to tackle this problem, we propose here to leverage on the model federation paradigm, which promotes the reification of the dependencies between heterogeneous models. Concretely, we propose the creation of a security model federation. In this federation, security related dependencies between the models representing a system are reified and equipped with security rules that can be (re)evaluated upon evolution scenarios in order to determine whether a given change impacts security. We provide an initial methodology for building such a federation and demonstrate the feasibility of the approach with a prototype implementation.

show abstract

Restoring Security of Long-Living Systems by Co-evolution

Cited by 8 publications

References 13 publications

A Data Protection Focused Adaptation Engine for Distributed Video Analytics Pipelines

A Data Protection Focused Adaptation Engine for Distributed Video Analytics Pipelines

RADAR: Data Protection in Cloud-Based Computer Systems at Run Time

Towards Evolving Secured Multi-Model Systems with Model Federation

Contact Info

Product

Resources

About