Context-based Access Control and Attack Modelling and Analysis
Abstract
This work introduces architectural security analyses for detecting access violations and attack paths in software architectures. It integrates access control policies and vulnerabilities, often analyzed separately, into a unified approach using software architecture models. Contributions include metamodels for access control and vulnerabilities, scenario-based analysis, and two attack analyses. Evaluation demonstrates high accuracy in identifying issues for secure system development.
Keywords
attacker models; security; Software architecture; Angreifermodelle; Sicherheit; SoftwarearchitekturDOI
10.5445/KSP/1000170265ISBN
9783731513629Publisher
KIT Scientific PublishingPublisher website
https://www.ksp.kit.edu/index.php?link=shop&sort=allPublication date and place
2024Series
The Karlsruhe Series on Software Design and Quality, 41Classification
Maths for computer scientists