Modeling and Validating Security and ConfixC;dentiality in System Architectures
Abstract
The importance of security in computer and information systems is increasing as network connected computer systems become more ubiquitous. The objective of security is to verify that the computing platform is secured and that data and information are properly accessed and handled by users and applications, ensuring data confidentiality and integrity. To develop a framework for modeling and verifying security as a data quality attribute, designers need to identify parameters and variables with the expressive power to capture and represent security models and determine the type of analysis to enable. This report presents an approach for modeling and validating confidentiality based on the BellLaPadula security model using the Architecture Analysis and Design Language (AADL). The report describes the BellLaPadula security model and elaborates how security and BellLaPadula attributes are mapped to concepts and represented in AADL. It then describes modeling and validating security in AADL models, considering conditions that need to be enforced for a system to ensure conformance to the BellLaPadula security policy. It also presents the analysis capabilities provided by AADL and examples modeled in AADL.
Document Details
- Document Type
- Technical Report
- Publication Date
- Mar 01, 2021
- Accession Number
- AD1148629
Entities
People
- Aaron Greenhouse
- Jorgen Hansson
- Lutz Wrage
Organizations
- Carnegie Mellon University