Secure Systems Development with UML

  • Jan Jürjens

Table of contents

  1. Front Matter
    Pages I-XIX
  2. Prologue

    1. Pages 3-14
    2. Pages 21-46
  3. Developing Secure Systems

  4. Tool Support

  5. Epilogue

    1. Pages 237-242
    2. Pages 243-244
  6. Back Matter
    Pages 245-309

About this book

Introduction

Attacks against computer systems can cause considerable economic or physical damage. High-quality development of security-critical systems is difficult, mainly because of the conflict between development costs and verifiable correctness.

Jürjens presents the UML extension UMLsec for secure systems development. It uses the standard UML extension mechanisms, and can be employed to evaluate UML specifications for vulnerabilities using a formal semantics of a simplified fragment of UML. Established rules of security engineering can be encapsulated and hence made available even to developers who are not specialists in security. As one example, Jürjens uncovers a flaw in the Common Electronic Purse Specification, and proposes and verifies a correction.

With a clear separation between the general description of his approach and its mathematical foundations, the book is ideally suited both for researchers and graduate students in UML or formal methods and security, and for advanced professionals writing critical applications.

Keywords

System Design System Development System Security UML UMLsec Unified Modeling Language (UML) security

Authors and affiliations

  • Jan Jürjens
    • 1
  1. 1.Dep. of Informatics Software and Systems EngineeringTechnische Universität MünchenMünchen/Garching

Bibliographic information

  • DOI https://doi.org/10.1007/b137706
  • Copyright Information Springer-Verlag Berlin Heidelberg 2005
  • Publisher Name Springer, Berlin, Heidelberg
  • eBook Packages Computer Science
  • Print ISBN 978-3-540-00701-2
  • Online ISBN 978-3-540-26494-1