Model Driven Security Engineering

Model driven engineering (MDE) is becoming increasingly relevant in the domain of Software Engineering. This methodology strives to increase productivity by using models at suitable abstraction levels. Security of ubiquitous computers in our current and future world cannot be ensured adequately by today's techniques. To be able to build truly secure software systems, new techniques must be developed to ensure security in novel application scenarios.

The center for advanced security research Darmstadt (CASED) is a research center at the Technische Universität Darmstadt focussing on the security of IT systems. Researchers from different disciplines, international research centers, and various commercial partners cooperate to investigate and develop future-proof solutions for IT security. 

Our research in this field aims on the development of model driven techniques for supervising and enforcing behavioral security requirements in critical systems.

Our approach is (i) to consider security requirements specifications as first class citizens in model driven system design, and (ii) to provide mechanisms to automatically generate facilities, as an integral part of the final software product, for supervising and enforcing these requirements. 

Current Projects

 

In previous projects we worked on the model driven development of security monitors for supervising the interaction of components with a fixed structure.

Current activities aim on monitoring and verifying self-reconfiguring systems, i.e., systems whose structure is dynamically changed during runtime.

Based on the formal framework of graph transformation for the rule based specification of system reconfigurations, the current efforts can be categorized in two major directions:

1) Graph transformation rule rewriting: Based on graph constraints, which place restrictions on the structure of a system, graph transformation rules can be automatically augmented to statically enforce the compliance of reconfigurations with all structural restriction.

We are currently working on increasing the expressiveness of existing constraints and rewriting techniques.

2) Model driven development and incremental evaluation of monitoring queries for self-reconfiguring systems: Research activities in the field of monitoring have typically focused on supervising either queries for event sequences, or queries for structural patterns.

Our current research, therefore, aims to combine both approaches to supervise the temporal evolution of reconfiguring systems.

Contact

Dipl.-Ing. Frederik Deckwerth

M.Sc. Roland Kluge

no title

no title

Publications

Related Publications

Contact us

Technische Universität Darmstadt

Institute of Computer Engineering

Real-Time Systems Lab

Prof. Dr. rer. nat. Andy Schürr

Building S3|06 (3rd Floor, Room 313)

Merckstraße 25

64283 Darmstadt

+49 6151 16-6940
+49 6151 16-6942


A A A | Drucken | Impressum | Sitemap | Suche | Kontakt
Zum SeitenanfangZum Seitenanfang