Developing secure systems in a modular way

Author

Shi, Qi ; McDermid, J.A. ; Moffett, J.D.

Author_Institution

Dept. of Comput. Sci., York Univ., UK

fYear

1993

fDate

14-17 Jun 1993

Firstpage

111

Lastpage

121

Abstract

The authors present a new technique for development and verification of secure systems in a modular way. At the heart of the technique is a general approach for coping with the composition of modules. In abstract system design, this composition approach is applied to determine security of the overall system and then to produce appropriate security requirements for its modules in terms of functional specifications. These modular security requirements enable different modules to have different security properties. In concrete system design, only correspondences between the modular security requirements and source code of the modules need to be demonstrated to ensure that the final system is secure. To handle changes of functional specifications during system development, dependencies among modular security requirements are analyzed. These can be used to locate the modules affected by changes, and to avoid unnecessary security reevaluation of other modules

Keywords

formal specification; functional programming; program verification; security of data; abstract system design; composition approach; dependencies; functional specifications; modular security requirements; secure systems; security reevaluation; source code; system development; Computer science; Concrete; Design methodology; Heart; Security;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Assurance, 1993. COMPASS '93, Practical Paths to Assurance. Proceedings of the Eighth Annual Conference on

Conference_Location

Gaithersburg, MD

Print_ISBN

0-7803-1251-1

Type

conf

DOI

10.1109/CMPASS.1993.288852

Filename

288852