Building secure systems using model-based engineering and architectural models

CrossTalk

Volumn 21, Issue 9, 2008, Pages 10-14

  Hansson, Jörgen ^a,b   Feiler, Peter H ^a,b   Morley, John ^a,b  

^a Software Engineering Institute

^b SEI   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ARCHITECTURAL MODELING; MODEL-BASED ENGINEERING;

BELLS; COMPUTER NETWORKS; DESIGN; MODELS; SYSTEMS ANALYSIS;

ARCHITECTURAL DESIGN;

EID: 50849110201     PISSN: None     EISSN: None     Source Type: Journal    
DOI: None     Document Type: Article

References (14)

1. Bell, D.E., and L.J. LaPadula. Secure Computer Systems: Mathematical Foundations MITRE Technical Report 2547, Vol. 1. Bedford, MA: MITRE Corporation, 1973 〈www.albany.edu/acc/courses/ia/classics/belllapadulal.pdf〉.
2. Bell, D.E., and L.J. LaPadula. Secure Computer Systems: Unified Exposition and MULTICs Interpretation MITRE Technical Report ESD-TR-75-306. Bedford, MA: MITRE Corporation, 1976 〈http://csrc.nist.gov/publications/ history/bell76.pdf〉.
3. Brewer, David D.C., and J. Michael Nash. "The Chinese Wall Security Policy." IEEE Symposium on Security and Privacy. Oakland, CA: 1-3 May 1989 〈www.gammassl.co.uk/topics/chinesewall.html〉.
4. Lin, T.Y. Chinese Wall Security Policy - An Aggressive Model. Proc, of the Fifth Aerospace Computer Security Application Conference. Tucson, AZ: 4-8 Dec. 1989 〈http://ieeexplore.ieee.org/ie15/7100/19131/00884701.pdf〉.
5. Ferraiolo, David, and Rick Kuhn. Role-Based Access Control. Proc. of the 15th National Computer Security Conference. Baltimore, MD: 13-16 Oct. 1992 〈http://csrc.nist.gov/rbac/ferraiolo-kuhn-92.pdf〉.
6. Biba, K.J. Integrity Considerations for Secure Computer Systems MITRE Technical Report-3153. Bedford, MA: MITRE Corporation, Apr. 1977.
7. AADL. Find and Solve Problems Before Runtime With Model-Based Engineering. 14 Apr. 2008 〈www.aadl.info〉.
8. The Common Criteria Evaluation and Validation Scheme. Validation Protection Profile - U.S. Government Protection Profile for Separation Kernels in Environments Requiring High Robustness, Vers. 1.03. 11 July 2008 〈www.niap-ccevs.org/cc-scheme/pp/id/pp_skpp_hr_v1.03〉.
9. Alves-Foss, J., W.S. Harrison, P. Oman, and C. Taylor. "The MILS Architecture for High-Assurance Embedded Systems." International Journal of Embedded Systems 2.3/4 (2006): 239-347.
10. Zhou, J., and J. Alves-Foss. "Security Policy Refinement and Enforcement for the Design of Multi-Level Secure Systems." Journal of Computer Security 16.2 (2008): 107-131.
11. McLean, J. "Security Models." Encyclopedia of Software Engineering. John Wiley & Sons, New York, NY: 1994.
12. Zakinthinos, A. "On the Composition of Security Properties." Diss. U of Toronto, Mar. 1996.
13. ARINC Incorporated. Avionics Application Software Standard Interface, ARINC 653 Standard Document 14 Apr. 2008 〈www.arinc.com〉.
14. National Institute of Standards and Technology (NISI). The Economic Impacts of Inadequate Infrastructure for Software Testing. NIST Planning Report, May 2002 〈www.nist.gov/director/prog-ofc/report02-3.pdf〉,