Shows how to use an extended version of industry standard UML to develop security-critical systems
Consistent use of a relevant real-world example throughout the whole book (common electronic purse specification)
Includes supplementary material: sn.pub/extras
This is a preview of subscription content, access via your institution.
Table of contents (10 chapters)
Developing Secure Systems
About this book
Attacks against computer systems can cause considerable economic or physical damage. High-quality development of security-critical systems is difficult, mainly because of the conflict between development costs and verifiable correctness.
Jürjens presents the UML extension UMLsec for secure systems development. It uses the standard UML extension mechanisms, and can be employed to evaluate UML specifications for vulnerabilities using a formal semantics of a simplified fragment of UML. Established rules of security engineering can be encapsulated and hence made available even to developers who are not specialists in security. As one example, Jürjens uncovers a flaw in the Common Electronic Purse Specification, and proposes and verifies a correction.
With a clear separation between the general description of his approach and its mathematical foundations, the book is ideally suited both for researchers and graduate students in UML or formal methods and security, and for advanced professionals writing critical applications.
- System Design
- System Development
- System Security
- Unified Modeling Language (UML)
Authors and Affiliations
Dep. of Informatics Software and Systems Engineering, Technische Universität München, München/Garching
Book Title: Secure Systems Development with UML
Authors: Jan Jürjens
Publisher: Springer Berlin, Heidelberg
eBook Packages: Computer Science, Computer Science (R0)
Copyright Information: Springer-Verlag Berlin Heidelberg 2005
Hardcover ISBN: 978-3-540-00701-2Published: 18 October 2004
Softcover ISBN: 978-3-642-05635-2Published: 13 October 2010
eBook ISBN: 978-3-540-26494-1Published: 18 November 2005
Edition Number: 1
Number of Pages: XX, 316
Number of Illustrations: 79 b/w illustrations
Topics: Data and Information Security, Software Engineering, IT Operations