Security Requirements Verification for Existing Systems with Model Checking Technique and UML

Saeko Matsuura, Shinpei Ogata, Yoshitaka Aoki

2017

Abstract

In software development, when making migration or specification changes to an existing system, it is important to verify that the new source code meets the original specifications. We propose an effective use of model checking techniques and a supporting tool that allows non-specialized developers to easily verify specification conformance. In this study, we verify security requirements for an ongoing learning management system that has insufficient specification documentation and discuss the applications and challenges for developing the model checking technology.

References

  1. Y. Aoki and S. Matsuura, Verifying Security Requirements using Model Checking Technique for UML-Based Requirements Specification, Proc. of 1st International Workshop on Requirements Engineering and Testing, pp.18-25, September,2014.
  2. Y. Aoki, S. Ogata, H. Okuda and S. Matsuura, Data Lifecycle Verification Method for Requirements Specifications Using a Model Checking Technique, Proc. of The Eighth International Conference on Software Engineering Advances (ICSEA 2013), pp.194-200, 2013.
  3. UPPAAL, http://www.uppaal.com/, 2016.
  4. S. Ogata and S. Matsuura, “A UML-based Requirements Analysis with Automatic Prototype System Generation,” Communication of SIWN, Vol. 3, pp.166-172, 2008.
  5. Common Criteria, “CC/CEM v3.1 Release4”, http://www.commoncriteriaportal.org/cc/
  6. Y. Aoki, S. Matsuura, “Verifying Business Rules Using Model-Checking Techniques for Non-specialist in Model-Checking.” IEICE TRANSACTIONS on Information and Systems, Vol. E97-D, No. 5, pp.1097-1108, May, 2014.
  7. S. Matsuura, Y. Aoki, and S. Ogata, Practical Behavioral Inconsistency Detection between Source Code and Specification using Model Checking, ISSRE 2014, pp.124-125, 2014.
  8. D. Beyer, T.A. Henzinger, R. Jhala, and R. Majumdar, An Eclipse Plug-in for Model Checking, Proceedings. 12th IEEE International Workshop on Program Comprehension, pp. 251-255, 2004.
  9. S. Thompson and G. Brat, Verification of C++ Flight Software with the MCP Model Checker, Aerospace Conference 2008 IEEE, pp.1-9, 2008.
Download


Paper Citation


in Harvard Style

Matsuura S., Ogata S. and Aoki Y. (2017). Security Requirements Verification for Existing Systems with Model Checking Technique and UML . In Proceedings of the 5th International Conference on Model-Driven Engineering and Software Development - Volume 1: MODELSWARD, ISBN 978-989-758-210-3, pages 529-535. DOI: 10.5220/0006267105290535


in Bibtex Style

@conference{modelsward17,
author={Saeko Matsuura and Shinpei Ogata and Yoshitaka Aoki},
title={Security Requirements Verification for Existing Systems with Model Checking Technique and UML},
booktitle={Proceedings of the 5th International Conference on Model-Driven Engineering and Software Development - Volume 1: MODELSWARD,},
year={2017},
pages={529-535},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006267105290535},
isbn={978-989-758-210-3},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 5th International Conference on Model-Driven Engineering and Software Development - Volume 1: MODELSWARD,
TI - Security Requirements Verification for Existing Systems with Model Checking Technique and UML
SN - 978-989-758-210-3
AU - Matsuura S.
AU - Ogata S.
AU - Aoki Y.
PY - 2017
SP - 529
EP - 535
DO - 10.5220/0006267105290535