Title :
SecureMDD: A Model-Driven Development Method for Secure Smart Card Applications
Author :
Moebius, Nina ; Stenzel, Kurt ; Grandy, Holger ; Reif, Wolfgang
Author_Institution :
Dept. of Software Eng. & Programming Languages, Univ. of Augsburg, Augsburg
Abstract :
In this paper we introduce our model-driven software engineering method, called SecureMDD, which facilitates the development of security-critical applications that are based on cryptographic protocols. The approach seamlessly integrates the generation of code and formal methods. Starting with a platform-independent UML model of a system under development, we generate executable Java (Card) code as well as a formal model from the UML model. Subsequent to this, the formal model is used to verify the security of the modeled system. Our goal is to prove that the generated code is correct w.r.t. the generated formal model in terms of formal refinement. The approach is tailored to the domain of security-critical systems, e.g. smart card applications.
Keywords :
Java; Unified Modeling Language; cryptographic protocols; program compilers; program verification; smart cards; Java; SecureMDD; Unified Modeling Language; code generation; cryptographic protocol; formal verification; model-driven development; platform-independent UML model; security-critical application development; smart card application security; Application software; Availability; Computer languages; Cryptographic protocols; Electronic mail; Java; Security; Smart cards; Software engineering; Unified modeling language; JavaCard; Model-Driven Software Engineering; Security; Verification;
Conference_Titel :
Availability, Reliability and Security, 2009. ARES '09. International Conference on
Conference_Location :
Fukuoka
Print_ISBN :
978-1-4244-3572-2
Electronic_ISBN :
978-0-7695-3564-7
DOI :
10.1109/ARES.2009.22
