A Static Verification Framework for Secure Peer-to-Peer Applications

Author

Zisman, Andrea

Author_Institution

Dept. of Comput., City Univ. London, London

fYear

2007

fDate

13-19 May 2007

Firstpage

8

Lastpage

8

Abstract

In this paper we present a static verification framework to support the design and verification of secure peer-to-peer applications. The framework supports the specification, modeling, and analysis of security aspects together with the general characteristics of the system, during early stages of the development life-cycle. The approach avoids security issues to be taken into consideration as a separate layer that is added to the system as an afterthought by the use of security protocols. The main functionality supported by the framework are concerned with the modeling of the system together with its security aspects by using an extension of UML, modeling of abuse cases to represent scenarios of attackers and assist with the identification of properties to be verified, specification of properties to be verified in a graphical template language, verification of the models against the properties, and visualization of the results of the verification process.

Keywords

Unified Modeling Language; formal specification; peer-to-peer computing; program diagnostics; program verification; security of data; software prototyping; UML; graphical template language; secure peer-to-peer application design; security protocol; static verification framework; system development life-cycle; system modeling; system specification; Cryptographic protocols; Cryptography; Formal verification; Peer to peer computing; Programming; Security; Software engineering; Software systems; Unified modeling language; Visualization;

fLanguage

English

Publisher

ieee

Conference_Titel

Internet and Web Applications and Services, 2007. ICIW '07. Second International Conference on

Conference_Location

Morne

Print_ISBN

0-7695-2844-9

Electronic_ISBN

0-7695-2844-9

Type

conf

DOI

10.1109/ICIW.2007.11

Filename

4222910