Najah Ben Said , Takoua Abdellatif, Saddek Bensalem, Marius Bozga
Building secure-by-construction distributed component-based systems (2014)
Building secure-by-construction distributed component-based systems (2014)
TR-2014-6.pdf
Keywords: component-based distributed systems, information flow security, non-interference, model transformation, model-based security.
Abstract: We present an automated method to build secure distributed systems from an abstract multi-level security component-based model. We take as input a high-level secureBIP component-based model and transform it into a decentralized Send/Receive secureBIP model and further on distributed code. The security policy is defined at the design time. Information flow policy is verified and automatically preserved on intermediate models towards distributed implementation. The distributed implementation is therefore proven secure-by-construction that is, the executable code conforms to the desired security policy. The method has been implemented and we present experimental results obtained on a case study. /BOUCLE_trep>