Title :
Model-Based Security Engineering with UML: The Last Decade and towards the Future (Keynote)
Author_Institution :
Software Eng., Tech. Univ. Dortmund, Dortmund, Germany
Abstract :
The current state of the art in developing security-critical software and systems in practice is far from satisfactory: New security vulnerabilities are discovered on an almost daily basis. To address this problem, there has been a significant amount of work over the last 10 years on providing model-based development approaches based on the Unified Modeling Language which aim to raise the trustworthiness of security-critical systems. Recently, model-based security has even managed to gain entry into Gartner´s ”hype cycle”. This keynote talk gives an overview over some developments in this field over the last 10 years, discusses the current state of affairs with respect to foundations, tool-support and industrial applications, and considers what might be particularly promising current and future developments.
Keywords :
Unified Modeling Language; safety-critical software; software tools; UML; Unified Modeling Language; model-based development approaches; model-based security engineering; security vulnerability; security-critical software; security-critical systems; tool-support; Access control; Computational modeling; Software; Unified modeling language; Visualization; UML; UMLsec; evolution; model-based security;
Conference_Titel :
Visual Languages and Human-Centric Computing (VL/HCC), 2010 IEEE Symposium on
Conference_Location :
Leganes
Print_ISBN :
978-1-4244-8485-0
DOI :
10.1109/VLHCC.2010.10
