UMLintr: A UML profile for specifying intrusions

Proceedings of the International Symposium and Workshop on Engineering of Computer Based Systems

Volumn , Issue , 2006, Pages 279-286

  Hussein, Mohammed ^a   Zulkernine, Mohammad ^a  

^a QUEEN S UNIVERSITY   (Canada)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER CRIME; COMPUTER PROGRAMMING LANGUAGES; INTRUSION DETECTION; REDUNDANCY; SOFTWARE DESIGN; USABILITY ENGINEERING;

ATTACK LANGUAGES; INTRUSIONS; UMLINTR;

UNIFIED MODELING LANGUAGE;

EID: 34250005793     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ECBS.2006.70     Document Type: Conference Paper

References (23)

1. Rosa, N., Cunha, P., and Justo, G., "ProcessNFL: A Language for Describing Non-Functional Properties", Proceedings of the 35th Hawaii International Conference on System Sciences, Hawaii, 2002.
2. OMG, OMG Unified Modeling Language Specification, Technical report, Object Management Group, March 2003.
3. Vigna, G., Eckmann, S.T., and Kemmerer, R.A., "Attack Languages", Proceedings of the IEEE Information Survivability Workshop, Boston, MA, October 2000.
4. Axelsson S., Intrusion Detection Systems: A Survey and Taxonomy, Technical report 99-15, Department of Computer Engineering, Chalmers University of Technology, Goteborg, Sweden, March 2000.
5. Zulkeraine, M. and Ahamed, S., "Software Security Engineering: Towards Unifying Software Engineering with Security Engineering", Chapter in M. Warkentin and R. Vaughn (editors), Enterprise Information Systems Assurance and System Security: Managerial and Technical Issues, (to appear) Idea Group Publishing, 2005.
6. Raihan, M. and Zulkernine, M., "Detecting Intrusions Specified in a Software Specification Language", Proceedings of the 29th Annual International Computer Software and Applications Conference (COMPSAC '05), IEEE CS Press, Edinburgh, Scotland, July 2005.
7. Zhang, Q. and Zulkeraine, M., "Applying AsmL Specification for Automatic Intrusion Detection", Proceedings of the Workshop on Specification and Automated Processing of Security Requirements, pp. 221-233, Linz, Austria, September 2004.
8. OMG, UML Profile for Modeling Quality of Service and Fault Tolerance Characteristics and Mechanisms, Technical report, Object Management Group, September 2004.
9. Lund, M., Braber, F., Stolen, K., and Vraalsen, F., A UML Profile for the Identification and Analysis of Security Risks during Structured Brainstorming, Technical report, SINTEF ICT, May 2004.
10. Lund, M., Hogganvik, I., Seehusen, F., and Stolen, K., UML Profile for Security Assessment, Technical report, SINTEF ICT, November 2003.
11. Jurjens, J., "Towards Development of Secure Systems using UML", In H. Hubmann, editor, Fundamental Approaches to Software Engineering (FASE/ETAPS, International conference), Lecture Notes in Computer Scinece, Springer, Genova, Italy, 2001.
12. Jurjens, J., Secure System Development with UML, Springer-Verlag, 2005.
13. Baser, D., Doser, J., and Lodderstedt, T., "Model Driven Security for Process-Oriented Systems", Proceedings of the 8th ACM Symposium on Access Control Models and Technologies, Como, Italy, 2003.
14. Lodderstedt, T., Basin, D., and Doser, J., "Secure UML: A UML-based Modeling Language for Model-Driven Security", Proceedings of the 5th International UML Conference, Lecture Notes in Computer Scinece, Springer, Dresden, Germany, 2002.
15. Cysneiros, L.M. and Leitte, J.C., "Using UML to Reflect Non-Functional Requirements", Proceedings of the GASCON 2001, Toronto, Canada, 2001.
16. Sindre, G. and Opdahl, A.L., "Capturing Security Requirements Through Misuse Cases", Norway Conference on Computing, Norway, 2001.
17. Dermott, J. and Fox, C., "Using Abuse Case Models for Security Requirements Analysis", 15th Annual Computer Security Applications Conference, Phoenix, Arizona, 1999.
18. Cheng, B., Konrad, S., Cample, L., and Wassermann, R., Using Security Patterns to Model and Analyze Security Requirements, Technical Report MSU-CSE-03-18, Software Engineering and Network Systems Laboratory, Michigan State University, 2003.
19. Oikinomopolous S. and Giritzails S., "Integration of Security Engineering into the Rational Unified Process", Proceedings of the Workshop on Specification and Automated Processing of Security Requirements, Austria, 2004.
20. Selic B. and Rumbaugh J. "Using UML for Modeling Complex Real-Time Systems", white paper, Rational (ObjecTime), March 1998.
21. MIT Lincoln Laboratory, DARPA Intrusion Detection Evaluation. (http://www.ll.mit.edu/IST/ideval/), 1999.
22. Eckmann, S., Vigna, G., and Kemmerer, R., STATL. Technical report, University of California Santa Barbara, CA, 2000.
23. Kendall, K., A Database of Computer Attacks for the Evaluation of Intrusion Detection Systems, Master's Thesis, MIT, June 1999.