|
Tool Description
UML offers an unprecedented
opportunity for high-quality critical systems
development that is feasible in an industrial
context.
- As the de-facto standard in industrial
modeling, a large number of developers is
trained in UML.
- Compared to previous industrial
notations with a user community of
comparable size, UML is relatively
precisely defined.
- A number of tools are being developed
to assist the every-day work using
UML.
This tool framework provides automatic verification plugins of UML models for
critical requirements. In particular, it includes automated analysis
of UMLsec models for the security requirements included as stereotypes.
The input is a .zargo or .xmi file containing UML diagrams created
with the UML tool ArgoUML.
A particular focus of many of the verification plug-ins within this
tool architecture is on security-critical systems.
Some related publications (download from here):
- J. Jürjens, J. Schreck, and Yijun Yu:
Automated Analysis of Permission-Based Security using UMLsec.
FASE 2008 (ETAPS).
- J. Jürjens and Yijun Yu:
Tools for Model-based Security Engineering: Models vs. Code.
22nd International Conference on Automated Software Engineering (ASE 2007), IEEE/ACM, 2007, pp. 545-546.
- J. Jürjens and J. Fox:
Tools for Model-based Security Engineering.
28th International Conference on Software Engineering (ICSE 2006), ACM, 2006. pp. 819-822.
- J. Jürjens, Sound Methods and Effective Tools for Model-based Security
Engineering with UML,
27th International Conference on Software Engineering,
ACM, 2005, pages 322-331.
- J. Jürjens and P. Shabalin, Tools for Secure Systems Development
with UML: Security Analysis with ATPs, FASE 2005, Edinburgh, 2-10 April 2005,
LNCS,
© Springer-Verlag
- J. Jürjens and P. Shabalin, Automated Verification of UMLsec
Models for Security Requirements, UML 2004, Lisabon, Portugal Oct. 11–15,
2004, LNCS,
© Springer-Verlag
|