Weaving Authentication and Authorization Requirements into the Functional Model of a System Using Z Promotion

Haidar, Ali Nasrat and Abdallah, Ali E. (2008) Weaving Authentication and Authorization Requirements into the Functional Model of a System Using Z Promotion. In: Leveraging Applications of Formal Methods, Verification and Validation. Springer, pp. 831-846. ISBN 0302-9743

Full text not available from this repository. (Request a copy)

Abstract

The use of Z in software development has focused on specifying the functionality of a system. However, when developing secure system, it is important to address fundamental security aspects, such as authentication, authorization, and auditing. In this paper, we show an approach for building systems from generic and modular security components using promotion technique in Z. The approach focuses on weaving security component into the functionality of a system using promotion technique in Z. For each component, Z notation is used to construct its state-based model and the relevant operations. Once a component is introduced, the defined local operations are promoted to work on the global state. We illustrate this approach on the development of a “secure” model for a conference management system. With this approach, it is possible to specify the core functionalities of a system independently from the security mechanisms. Authentication and authorization are viewed as components which are carefully integrated with the functional system.

Item Type: Book Section
Identification Number: https://doi.org/10.1007/978-3-540-88479-8
Dates:
DateEvent
2008Published
Uncontrolled Keywords: Large Scale Embedded Software Systems, Comprehensive Architecture, Specification, Verification
Subjects: CAH11 - computing > CAH11-01 - computing > CAH11-01-01 - computer science
Divisions: Faculty of Computing, Engineering and the Built Environment
Faculty of Computing, Engineering and the Built Environment > School of Computing and Digital Technology
Depositing User: Oana-Andreea Dumitrascu
Date Deposited: 07 Apr 2017 11:13
Last Modified: 22 Mar 2023 12:02
URI: https://www.open-access.bcu.ac.uk/id/eprint/4231

Actions (login required)

View Item View Item

Research

In this section...