Title :
Modelling Security Properties in a Grid-based Operating System with Anti-Goals
Author :
Arenas, Alvaro ; Aziz, Benjamin ; Bicarregui, Juan ; Matthews, Brian ; Yang, Erica Y.
Author_Institution :
STFC e-Sci. Centre, Rutherford Appleton Lab., Didcot
Abstract :
In this paper, we discuss the use of formal requirements-engineering techniques in capturing security requirements for a Grid-based operating system. We use KAOS goal model to represent two security goals for Grid systems, namely authorisation and single-sign on authentication. We apply goal-refinement to derive security requirements for these two security goals and we develop a model of anti-goals and show how system vulnerabilities and threats to the security goals can arise from such anti-models.
Keywords :
authorisation; formal specification; grid computing; message authentication; operating systems (computers); KAOS goal model; authorisation; formal requirements-engineering techniques; grid-based operating system; security requirement; single-sign on authentication; Application software; Authentication; Authorization; Availability; Computer interfaces; Humans; Linux; Operating systems; Security; Software systems; Grid; Requirement Engineering; Security;
Conference_Titel :
Availability, Reliability and Security, 2008. ARES 08. Third International Conference on
Conference_Location :
Barcelona
Print_ISBN :
978-0-7695-3102-1
DOI :
10.1109/ARES.2008.159
