Project

MORES2

Modelling and Refinement of Security Requirements on Data and Processes 2

  • Duration:
  • Research Topics
    Other
  • Application fields
    Other

MORES2 aims at the development of appropriate refinement techniques for workflow specifications. In particular, the notion of refinement to be developed has to support the refinement of the various aspects (e.g. activities, data, users) of workflows and also has to be able to translate the security properties to corresponding properties in other refinement levels. Translated security guarantees of higher abstraction levels will serve as initial building blocks for the verification of security properties on lower levels. However, we cannot expect that the notion of refinement will preserve the security guarantees in general because otherwise the arising restrictions would render such a refinement impracticable. Additionally, changing the abstraction level may also result in a refinement of the abilities of an attacker observing the workflow, which causes a change of how the required security guarantees are formulated. In MORES2 we will develop techniques to make use of security guarantees of higher abstraction levels in verifying the corresponding security properties on lower abstraction levels. We will provide a corresponding verification tool support based on existing interactive proof systems.

Sponsors

Deutsche Forschungsgemeinschaft (DFG)

HU737/5-2

Deutsche Forschungsgemeinschaft (DFG)

Publications about the project

Armando Pesenti Gritti, Andrei Popescu, Franco Raimondi,

In: Journal of Automated Reasoning (JAR) 61 1-4 Pages 113-139 Springer Heidelberg 12/2017.

To the publication
Victor Ferman, Raul Monroy, Dieter Hutter

In: Grigori Sidorov , Ulises Cortés (editor). Computación y Sistemas 21 1 Pages 101-114 Instituto Politécnico Nacional, Mexico Mexico City 4/2017.

To the publication
Armando Pesenti Gritti, Andrei Popescu, Franco Raimondi,

In: 2017 IEEE Symposium on Security and Privacy. IEEE Symposium on Security and Privacy (SP-17) May 22-24 San Jose CA United States IEEE 2017.

To the publication

German Research Center for Artificial Intelligence
Deutsches Forschungszentrum für Künstliche Intelligenz