Towards Language Support for Model-based Security Policy Engineering

Peter Amthor, Marius Schlegel

2020

Abstract

Software engineering for security-critical systems is based on manual translations between languages from different domains: an informal security policy is translated to a formally verifiable model, and further to actual source code. This is an error-prone task, put at the risk of losing hard-acquired correctness guarantees. To mitigate this problem, we argue for a methodical support by domain-specific languages and tools. We present ongoing work on two languages that substantiate this thesis, including their usage in a practical setting, and discuss the benefits from combining them with appropriate tool support.

Download


Paper Citation


in Harvard Style

Amthor P. and Schlegel M. (2020). Towards Language Support for Model-based Security Policy Engineering.In Proceedings of the 17th International Joint Conference on e-Business and Telecommunications - Volume 3: SECRYPT, ISBN 978-989-758-446-6, pages 513-521. DOI: 10.5220/0009893205130521


in Bibtex Style

@conference{secrypt20,
author={Peter Amthor and Marius Schlegel},
title={Towards Language Support for Model-based Security Policy Engineering},
booktitle={Proceedings of the 17th International Joint Conference on e-Business and Telecommunications - Volume 3: SECRYPT,},
year={2020},
pages={513-521},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0009893205130521},
isbn={978-989-758-446-6},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications - Volume 3: SECRYPT,
TI - Towards Language Support for Model-based Security Policy Engineering
SN - 978-989-758-446-6
AU - Amthor P.
AU - Schlegel M.
PY - 2020
SP - 513
EP - 521
DO - 10.5220/0009893205130521