Title :
A Static Verification Framework for Secure Peer-to-Peer Applications
Author_Institution :
Dept. of Comput., City Univ. London, London
Abstract :
In this paper we present a static verification framework to support the design and verification of secure peer-to-peer applications. The framework supports the specification, modeling, and analysis of security aspects together with the general characteristics of the system, during early stages of the development life-cycle. The approach avoids security issues to be taken into consideration as a separate layer that is added to the system as an afterthought by the use of security protocols. The main functionality supported by the framework are concerned with the modeling of the system together with its security aspects by using an extension of UML, modeling of abuse cases to represent scenarios of attackers and assist with the identification of properties to be verified, specification of properties to be verified in a graphical template language, verification of the models against the properties, and visualization of the results of the verification process.
Keywords :
Unified Modeling Language; formal specification; peer-to-peer computing; program diagnostics; program verification; security of data; software prototyping; UML; graphical template language; secure peer-to-peer application design; security protocol; static verification framework; system development life-cycle; system modeling; system specification; Cryptographic protocols; Cryptography; Formal verification; Peer to peer computing; Programming; Security; Software engineering; Software systems; Unified modeling language; Visualization;
Conference_Titel :
Internet and Web Applications and Services, 2007. ICIW '07. Second International Conference on
Conference_Location :
Morne
Print_ISBN :
0-7695-2844-9
Electronic_ISBN :
0-7695-2844-9
DOI :
10.1109/ICIW.2007.11
