Abstract
Before the use of critical systems, they must be free of security threats described at the specification stage. On the first hand, high levels of safety highly recommend the use of formal methods to check such security requirements. On the other hand, most software development methods recommend graphical tools, such as UML (Unified Modeling Language) and OCL (Object Constraint Language), to visualize and specify system components at the first development stages. In this context, we propose a life-cycle development approach that combines UML/OCL and the FoCaLiZe formal environment for the development of critical systems. The combination of UML/OCL and FoCaLiZe facilitates the development of such systems and ensures the constraints imposed by standards. In this approach, we highlight the development stages, starting from UML/OCL model until the generation of secure code. In order to check security requirements, we use Zenon, the automatic theorem prover of FoCaLiZe. As an example of a critical system, we present the development stages of a theoretical (mathematical) system.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Notes
- 1.
Objective Caml programming language: http://ocaml.org/.
- 2.
Papyrus homepage: https://www.eclipse.org/papyrus/.
- 3.
UML2FOC is a prototype that we have developed to validate the transformation rules from UML/OCL to FoCaLiZe: http://www.univ-eloued.dz/uml2foc/.
- 4.
Papyrus: https://www.eclipse.org/papyrus/.
- 5.
FoCal is the previous name of the FoCaLiZe environment. Since 2009, the FoCal environment was rewritten from scratch and got the name FoCaLiZe. This rewriting mainly affected the syntax of the environment.
References
Hardin, T., Francois, P., Pierre, W., Damien, D.: FoCaLiZe: Tutorial and Reference Manual, version 0.9.2. CNAM/INRIA/LIP6 (2018). http://focalize.inria.fr
Abbas, M., Ben-Yelles, C.B., Rioboo, R.: Formalizing UML/OCL structural features with focalize. Soft Comput. 24(6), 4149–4164 (2020)
Abbas, M., Ben-Yelles, C.B., Rioboo, R.: Formalizing UML/OCL multiple inheritance with focalize. In: 2018 International Conference on Smart Communications in Network Technologies (SaCoNeT), pp. 261–266. IEEE (2018)
Abbas, M., Ben-Yelles, C.-B., Rioboo, R.: Modeling UML template classes with FoCaLiZe. In: Albert, E., Sekerinski, E. (eds.) IFM 2014. LNCS, vol. 8739, pp. 87–102. Springer, Cham (2014). https://doi.org/10.1007/978-3-319-10181-1_6
Abbas, M., Rioboo, R., Ben-Yelles, C.B., Snook, C.F.: Formal modeling and verification of UML activity diagrams (UAD) with focalize. J. Syst. Archit. 114, 101911 (2021)
Abbas, M., Ben-Yelles, C.B., Rioboo, R.: Modelling UML state machines with FoCaLiZe. Int. J. Inf. Commun. Technol. 13(1), 34–54 (2018)
Brown, S.: Overview of IEC 61508. Design of electrical/electronic/programmable electronic safety-related systems. Comput. Control Eng. J. 11(1), 6–12 (2000)
Public Key Infrastructure and Token Protection Profile: Common criteria for information technology security evaluation. National Security Agency (2002)
Abrial, J.R.: Modeling in Event-B: System and Software Engineering. Cambridge University Press, Cambridge (2010)
Nipkow, T., Paulson, L.: Isabelle HOL-the tutorial (2001)
Unhelkar, B.: Software Engineering with UML. CRC Press, Boca Raton (2017)
Coq: The Coq Proof Assistant, Tutorial and Reference Manual, version 8.4. INRIA - LIP - LRI - LIX - PPS (2012). http://coq.inria.fr/
Bonichon, R., Delahaye, D., Doligez, D.: Zenon: an extensible automated theorem prover producing checkable proofs. In: Dershowitz, N., Voronkov, A. (eds.) LPAR 2007. LNCS (LNAI), vol. 4790, pp. 151–165. Springer, Heidelberg (2007). https://doi.org/10.1007/978-3-540-75560-9_13
Ayrault, P., Hardin, T., Pessaux, F.: Development life-cycle of critical software under FoCal. Electron. Notes Theor. Comput. Sci. 243, 15–31 (2009)
OMG: OCL: Object Constraint Language 2.4, January 2018. https://www.omg.org/spec/OCL/2.4/PDF
OMG: Xml metadata interchange (XMI) specification 2.5.1, June 2015. https://www.omg.org/spec/XMI/2.5.1/PDF
Doligez, D., Jaume, M., Rioboo, R.: Development of secured systems by mixing programs, specifications and proofs in an object-oriented programming environment: a case study within the focalize environment. In: Proceedings of the 7th Workshop on Programming Languages and Analysis for Security, pp. 1–12 (2012)
Abrial, J.R.: The B-Book: Assigning Programs to Meanings. Cambridge University Press, Cambridge (2005)
Singh, N.K., Lawford, M., Maibaum, T.S., Wassyng, A.: A formal approach to rigorous development of critical systems. J. Softw. Evol. Process 33, e2334 (2021)
Dghaym, D., Poppleton, M., Snook, C.: Diagram-led formal modelling using iUML-B for hybrid ERTMS level 3. In: Butler, M., Raschke, A., Hoang, T.S., Reichl, K. (eds.) ABZ 2018. LNCS, vol. 10817, pp. 338–352. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-91271-4_23
Author information
Authors and Affiliations
Corresponding authors
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 Springer Nature Switzerland AG
About this paper
Cite this paper
Abbas, M., Haloua, F., Boucherit, A. (2021). Development of Critical Systems with UML/OCL and FoCaLiZe. In: Bellatreche, L., Chernishev, G., Corral, A., Ouchani, S., Vain, J. (eds) Advances in Model and Data Engineering in the Digitalization Era. MEDI 2021. Communications in Computer and Information Science, vol 1481. Springer, Cham. https://doi.org/10.1007/978-3-030-87657-9_2
Download citation
DOI: https://doi.org/10.1007/978-3-030-87657-9_2
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-87656-2
Online ISBN: 978-3-030-87657-9
eBook Packages: Computer ScienceComputer Science (R0)