SysML-Sec: A model driven approach for designing safe and secure systems

Yves Roudier; Ludovic Apvrille

doi:10.5220/0005402006550664

SysML-Sec: A model driven approach for designing safe and secure systems

Yves Roudier
, Ludovic Apvrille

Eurecom

Résultats de recherche: Le chapitre dans un livre, un rapport, une anthologie ou une collection › Contribution à une conférence › Revue par des pairs

Résumé

Security flaws are open doors to attack embedded systems and must be carefully assessed in order to determine threats to safety and security. Subsequently securing a system, that is, integrating security mechanisms into the system's architecture can itself impact the system's safety, for instance deadlines could be missed due to an increase in computations and communications latencies. SysML-Sec addresses these issues with a modeldriven approach that promotes the collaboration between system designers and security experts at all design and development stages, e.g., requirements, attacks, partitioning, design, and validation. A central point of SysML-Sec is its partitioning stage during which safety-related and security-related functions are explored jointly and iteratively with regards to requirements and attacks. Once partitioned, the system is designed in terms of system's functions and security mechanisms, and formally verified from both the safety and the security perspectives. Our paper illustrates the whole methodology with the evaluation of a security mechanism added to an existing automotive system.

langue originale	Anglais
titre	MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings
rédacteurs en chef	Slimane Hammoudi, Luis Ferreira Pires, Philippe Desfray, Joaquim Filipe, Joaquim Filipe
Editeur	SciTePress
Pages	655-664
Nombre de pages	10
ISBN (Electronique)	9789897580833
Les DOIs	https://doi.org/10.5220/0005402006550664
état	Publié - 1 janv. 2015
Evénement	3rd International Conference on Model-Driven Engineering and Software Development, MODELSWARD 2015 - Angers, France Durée: 9 févr. 2015 → 11 févr. 2015

Série de publications

Nom	MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings

Une conférence

Une conférence	3rd International Conference on Model-Driven Engineering and Software Development, MODELSWARD 2015
Pays/Territoire	France
La ville	Angers
période	9/02/15 → 11/02/15

Accès au document

10.5220/0005402006550664

Contient cette citation

Roudier, Y., & Apvrille, L. (2015). SysML-Sec: A model driven approach for designing safe and secure systems. Dans S. Hammoudi, L. F. Pires, P. Desfray, J. Filipe, & J. Filipe (eds.), MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings (p. 655-664). (MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings). SciTePress. https://doi.org/10.5220/0005402006550664

Roudier, Yves ; Apvrille, Ludovic. / SysML-Sec : A model driven approach for designing safe and secure systems. MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings. Editeur / Slimane Hammoudi ; Luis Ferreira Pires ; Philippe Desfray ; Joaquim Filipe ; Joaquim Filipe. SciTePress, 2015. p. 655-664 (MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings).

@inproceedings{f7cde33e4bad44f9ae40f75d91bbeedd,

title = "SysML-Sec: A model driven approach for designing safe and secure systems",

abstract = "Security flaws are open doors to attack embedded systems and must be carefully assessed in order to determine threats to safety and security. Subsequently securing a system, that is, integrating security mechanisms into the system's architecture can itself impact the system's safety, for instance deadlines could be missed due to an increase in computations and communications latencies. SysML-Sec addresses these issues with a modeldriven approach that promotes the collaboration between system designers and security experts at all design and development stages, e.g., requirements, attacks, partitioning, design, and validation. A central point of SysML-Sec is its partitioning stage during which safety-related and security-related functions are explored jointly and iteratively with regards to requirements and attacks. Once partitioned, the system is designed in terms of system's functions and security mechanisms, and formally verified from both the safety and the security perspectives. Our paper illustrates the whole methodology with the evaluation of a security mechanism added to an existing automotive system.",

keywords = "Embedded systems, Model-driven engineering, Safety, Security, SysML",

author = "Yves Roudier and Ludovic Apvrille",

note = "Publisher Copyright: Copyright {\textcopyright} 2015 SCITEPRESS - Science and Technology Publications.; 3rd International Conference on Model-Driven Engineering and Software Development, MODELSWARD 2015 ; Conference date: 09-02-2015 Through 11-02-2015",

year = "2015",

month = jan,

day = "1",

doi = "10.5220/0005402006550664",

language = "English",

series = "MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings",

publisher = "SciTePress",

pages = "655--664",

editor = "Slimane Hammoudi and Pires, \{Luis Ferreira\} and Philippe Desfray and Joaquim Filipe and Joaquim Filipe",

booktitle = "MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings",

}

Roudier, Y & Apvrille, L 2015, SysML-Sec: A model driven approach for designing safe and secure systems. Dans S Hammoudi, LF Pires, P Desfray, J Filipe & J Filipe (eds), MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings. MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings, SciTePress, p. 655-664, 3rd International Conference on Model-Driven Engineering and Software Development, MODELSWARD 2015, Angers, France, 9/02/15. https://doi.org/10.5220/0005402006550664

SysML-Sec: A model driven approach for designing safe and secure systems. / Roudier, Yves; Apvrille, Ludovic.
MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings. Ed. / Slimane Hammoudi; Luis Ferreira Pires; Philippe Desfray; Joaquim Filipe; Joaquim Filipe. SciTePress, 2015. p. 655-664 (MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings).

Résultats de recherche: Le chapitre dans un livre, un rapport, une anthologie ou une collection › Contribution à une conférence › Revue par des pairs

TY - GEN

T1 - SysML-Sec

T2 - 3rd International Conference on Model-Driven Engineering and Software Development, MODELSWARD 2015

AU - Roudier, Yves

AU - Apvrille, Ludovic

PY - 2015/1/1

Y1 - 2015/1/1

N2 - Security flaws are open doors to attack embedded systems and must be carefully assessed in order to determine threats to safety and security. Subsequently securing a system, that is, integrating security mechanisms into the system's architecture can itself impact the system's safety, for instance deadlines could be missed due to an increase in computations and communications latencies. SysML-Sec addresses these issues with a modeldriven approach that promotes the collaboration between system designers and security experts at all design and development stages, e.g., requirements, attacks, partitioning, design, and validation. A central point of SysML-Sec is its partitioning stage during which safety-related and security-related functions are explored jointly and iteratively with regards to requirements and attacks. Once partitioned, the system is designed in terms of system's functions and security mechanisms, and formally verified from both the safety and the security perspectives. Our paper illustrates the whole methodology with the evaluation of a security mechanism added to an existing automotive system.

AB - Security flaws are open doors to attack embedded systems and must be carefully assessed in order to determine threats to safety and security. Subsequently securing a system, that is, integrating security mechanisms into the system's architecture can itself impact the system's safety, for instance deadlines could be missed due to an increase in computations and communications latencies. SysML-Sec addresses these issues with a modeldriven approach that promotes the collaboration between system designers and security experts at all design and development stages, e.g., requirements, attacks, partitioning, design, and validation. A central point of SysML-Sec is its partitioning stage during which safety-related and security-related functions are explored jointly and iteratively with regards to requirements and attacks. Once partitioned, the system is designed in terms of system's functions and security mechanisms, and formally verified from both the safety and the security perspectives. Our paper illustrates the whole methodology with the evaluation of a security mechanism added to an existing automotive system.

KW - Embedded systems

KW - Model-driven engineering

KW - Safety

KW - Security

KW - SysML

U2 - 10.5220/0005402006550664

DO - 10.5220/0005402006550664

M3 - Conference contribution

AN - SCOPUS:84939500992

T3 - MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings

SP - 655

EP - 664

BT - MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings

A2 - Hammoudi, Slimane

A2 - Pires, Luis Ferreira

A2 - Desfray, Philippe

A2 - Filipe, Joaquim

PB - SciTePress

Y2 - 9 February 2015 through 11 February 2015

ER -

Roudier Y, Apvrille L. SysML-Sec: A model driven approach for designing safe and secure systems. Dans Hammoudi S, Pires LF, Desfray P, Filipe J, Filipe J, rédacteurs en chef, MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings. SciTePress. 2015. p. 655-664. (MODELSWARD 2015 - 3rd International Conference on Model-Driven Engineering and Software Development, Proceedings). doi: 10.5220/0005402006550664

SysML-Sec: A model driven approach for designing safe and secure systems

Résumé

Série de publications

Une conférence

Accès au document

Empreinte digitale

Contient cette citation