Idioma:

Tool-Supported Architecture-Based Data Flow Analysis for Confidentiality

Schwickerath, Felix ; Boltz, Nicolas ; Hahner, Sebastian ; Walter, Maximilian ; Gerking, Christopher ; Heinrich, Robert

Texto completo disponível

Citações Citado por

Título:
Tool-Supported Architecture-Based Data Flow Analysis for Confidentiality
Autor: Schwickerath, Felix ; Boltz, Nicolas ; Hahner, Sebastian ; Walter, Maximilian ; Gerking, Christopher ; Heinrich, Robert
Assuntos: Confidentiality ; Security ; Software Architecture
Descrição: Through the increasing interconnection between various systems, the need for confidential systems is increasing. Confidential systems share data only with authorized entities. However, estimating the confidentiality of a system is complex, and adjusting an already deployed software is costly. Thus, it is helpful to have confidentiality analyses, which can estimate the confidentiality already at design time. Based on an existing data-flow-based confidentiality analysis concept, we reimplemented a data flow analysis as a Java-based tool. The tool uses the software architecture to identify access violations based on the data flow. The evaluation for our tool indicates that we can analyze similar scenarios and scale for certain scenarios better than the existing analysis.
Editor: arxiv
Data de criação/publicação: 2023
Idioma: Inglês

Links

Voltar para lista de resultados