Modeling Requirements for Security-enhanced Design of Embedded Systems

Alberto Ferrante; Igor Kaitovic; Jelena Milosevic

doi:10.5220/0005050003150320

Modeling Requirements for Security-enhanced Design of Embedded Systems

Alberto Ferrante, Igor Kaitovic, Jelena Milosevic

2014

Abstract

Designing an embedded system is a complex process that involves working on both hardware and software. The first step in the design process is defining functional and non-functional requirements; among them, it is fundamental to also consider security. We propose an effective way for designers to specify security requirements starting from User Security Requirements. User Security Requirements are high-level requirements related to security attacks that the system should be able to withstand. We also provide a mechanism to automatically translate these User Requirements into System Security Requirements, that include a detailed description of security solutions. For expressing requirements we use Unified Modeling Language (UML); specifically, we create a UML profile to describe user requirements and we use model-to-model transformation to automatically generate system requirements. We show the effectiveness of the modeling scheme and of the translation mechanism by applying our methodology to a case study based on wearable devices for e-health monitoring.

Download

Paper Citation

in Harvard Style

Ferrante A., Kaitovic I. and Milosevic J. (2014). Modeling Requirements for Security-enhanced Design of Embedded Systems . In Proceedings of the 11th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2014) ISBN 978-989-758-045-1, pages 315-320. DOI: 10.5220/0005050003150320

in Bibtex Style

@conference{secrypt14,
author={Alberto Ferrante and Igor Kaitovic and Jelena Milosevic},
title={Modeling Requirements for Security-enhanced Design of Embedded Systems},
booktitle={Proceedings of the 11th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2014)},
year={2014},
pages={315-320},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005050003150320},
isbn={978-989-758-045-1},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 11th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2014)
TI - Modeling Requirements for Security-enhanced Design of Embedded Systems
SN - 978-989-758-045-1
AU - Ferrante A.
AU - Kaitovic I.
AU - Milosevic J.
PY - 2014
SP - 315
EP - 320
DO - 10.5220/0005050003150320