ABSTRACT
Security Patterns - the adaption of Design Patterns by Gamma et al. to security - have not quite met the expectations since Yoder and Barcalow pioneered the field. The two main reasons for this are the lack of formalisation and the fact that security often permeates all parts of a software, which is hard to encapsulate in a single pattern.
This paper investigates and presents our method of using Petri nets to first model security patterns on an abstract level. Gradual and intuitive refinement of the Petri nets then permits the creation of a running Petri net implementation - very much in the sense of model driven software engineering (MDSE) and model driven security (MDS). The Petri nets are modelled and executed using Renew - both IDE and virtual machine.
- C. Alexander. The timeless way of building. Oxford University Press, 1979.]]Google Scholar
- D. A. Basin, J. Doser, and T. Lodderstedt. Model driven security: From UML models to access control infrastructures. ACM Trans. Softw. Eng. Methodol., 15(1):39--91, 2006.]] Google ScholarDigital Library
- A. M. Braga, C. M. F. Rubira, and R. Dahab. Tropyc: A pattern language for cryptographic software. Technical Report IC--99--03, Institute of Computing, University of Campinas, Jan. 1999.]]Google Scholar
- L. Cabac, D. Moldt, and H. Rölke. A proposal for structuring Petri net--based agent interaction protocols. In W. v. d. Aalst and E. Best, editors, 24th International Conference on Application and Theory of Petri Nets, Eindhoven, Netherlands, June 2003, volume 2679 of LNCS, pages 102--120. Springer, June 2003.]] Google ScholarDigital Library
- L. Dai and K. Cooper. A survey of modeling and analysis approaches for architecting secure software systems. International Journal of Network Security, 5(2):187--198, Sept. 2007.]]Google Scholar
- M. Duvigneau. Bereitstellung einer Agentenplattform für petrinetzbasierte Agenten. Diploma thesis, Universität Hamburg, Fachbereich Informatik, Vogt--Kölln Str. 30, D--22527 Hamburg, Dec. 2002.]]Google Scholar
- E. B. Fernandez and P. Morrison. Securing the Broker pattern. In Proceedings of the European Conference on Pattern Languages of Programs (EuroPLoP). Department of Computer Science & Engineering, Florida Atlantic University, USA, 2006.]]Google Scholar
- Foundation for Intelligent Physical Agents (FIPA) -- homepage. http://www.fipa.org/. Foundation for Intelligent Physical Agents.]]Google Scholar
- S. Fischmeister, G. Vigna, and R. A. Kemmerer. Evaluating the security of three Java--based mobile agent systems. In Mobile Agents: 5th International Conference, Atlanta, GA, USA. Proceedings, pages 31--41. Springer, 2001.]] Google ScholarDigital Library
- D. S. Frankel. Model Driven Architecture: Applying MDA to Enterprise Computing. Wiley, 2003.]] Google ScholarDigital Library
- A. Fuxman, M. Pistore, J. Mylopoulos, and P. Traverso. Model checking early requirements specifications in Tropos. In IEEE International Symposium on Requirements Engineering, 2001.]] Google ScholarDigital Library
- E. Gamma, R. Helm, R. Johnson, and J. Vlissides. Design Patterns: Elements of Reusable Object-Oriented Software. Addison-Wesley Longman Publishing Co., Inc. Boston, MA, USA, 1995.]] Google ScholarDigital Library
- M. Gasser. Building a secure computer system. Van Nostrand Reinhold Co., New York, NY, USA, 1988.]] Google ScholarDigital Library
- C. Girault and R. Valk. Petri Nets for Systems Engineering -- A Guide to Modeling, Verification, and Applications. Springer, 2003.]] Google ScholarDigital Library
- S. T. Halkidis, A. Chatzigeorgiou, and G. Stephanides. A qualitative evaluation of security patterns. In Sixth International Conference on Information and Communications Security (ICICS), LNCS, pages 132--144. Springer, Oct. 2004.]]Google ScholarCross Ref
- D. Hatebur, M. Heisel, and H. Schmidt. A security engineering process based on patterns. dexa, 0:734--738, 2007. SPattern'07.]] Google ScholarDigital Library
- V. Horvath. Security patterns for multi-agent systems: Review and implementation in mulan/capa. Diploma thesis, Universität Hamburg, Department Informatik, Vogt-Kölln Str. 30, D--22527 Hamburg, Dec. 2007.]]Google Scholar
- N. R. Jennings. On agent--based software engineering. Artificial Intelligence, 117(2):277--296, 2000.]] Google ScholarDigital Library
- J. Jürjens. Secure Systems Development with UML. Springer, 2004.]] Google ScholarDigital Library
- O. Kummer. Referenznetze. Logos Verlag, Berlin, 2002.]]Google Scholar
- O. Kummer, F. Wienberg, and M. Duvigneau. Renew -- the Reference Net Workshop. Available at: http://www.renew.de/, May 2006. Release 2.1.]]Google Scholar
- S. Lehtonen and J. Pärssinen. A pattern language for key management. In Eighth Conference on Pattern Languages of Programs (PLoP 2001), Allerton Park, Monticello, Illinois, USA, Sept. 2001.]]Google Scholar
- H. Mouratidis, M. Weiss, and P. Giorgini. Modeling secure systems using an agent--oriented approach and security patterns. International Journal of Software Engineering and Knowledge Engineering, 16(3):471, 2006.]]Google ScholarCross Ref
- M. Naedele and J. W. Janneck. Design patterns in petri net system modeling. In Proc. 4th IEEE Int. Conf. on Engineering of Complex Computer Systems, 10--14 August 1998, Monterey, CA, pages 47--54, Aug. 1998.]]Google ScholarCross Ref
- I. Porres and M. C. Valiente. Process definition and project tracking in model driven engineering. In J. Münch and M. Vierimaa, editors, PROFES, volume 4034 of LNCS, pages 127--141. Springer, 2006.]] Google ScholarDigital Library
- H. Reza and X. He. Pattern--based software architecture: A case study. In Proc. of the IEEE International Conference on Information Technology: Coding and Computing, Las Vegas, pages 592--597, May 2003.]] Google ScholarDigital Library
- P. Robinson. Extensible security patterns. dexa, 0:729--733, Sept. 2007. Workshop SPattern'07.]] Google ScholarDigital Library
- H. Rölke. Modellierung von Agenten und Multiagentensystemen -- Grundlagen und Anwendungen, volume 2 of Agent Technology -- Theory and Applications. Logos Verlag, Berlin, 2004.]]Google Scholar
- M. Schumacher. Security Engineering with Patterns -- Origins, Theoretical Models, and New Applications, volume 2754 of LNCS. Springer, 2003.]] Google ScholarDigital Library
- R. Valk. Petri nets as token objects -- an introduction to elementary object nets. In J. Desel and M. Silva, editors, 19th International Conference on Application and Theory of Petri nets, Lisbon, Portugal, number 1420 in LNCS, pages 1--25. Springer, 1998.]] Google ScholarDigital Library
- J. W. Yoder and J. Barcalow. Architectural patterns for enabling application security. In Fourth Conference on Pattern Languages of Programs (PLoP 1997), Allerton Park, Monticello, Illinois, USA, Sept. 1997.]]Google Scholar
Index Terms
- From security patterns to implementation using petri nets
Recommendations
Petri nets and resource bisimulation
Concurrency Specification and Programming (CS&P'2002), Part 2Resources are defined as submultisets of Petri net markings. Two resources are called similar if replacing one of them by another in any marking doesn't change the Petri net's behavior. We define the relations of resource similarity and resource ...
Petri nets and resource bisimulation
Concurrency specification and programmingResources are defined as submultisets of Petri net markings. Two resources are called similar if replacing one of them by another in any marking doesn't change the Petri net's behavior. We define the relations of resource similarity and resource ...
Implementing Coloured Petri Nets Using a Functional Programming Language
Coloured Petri Nets (CPNs) are a graphically oriented modelling language for concurrent systems based on Petri Nets and the functional programming language Standard ML. Petri Nets provide the primitives for modelling concurrency and synchronisation. ...
Comments