• Corpus ID: 18001759

Design of Software Security Verification with Formal Method Tools

@inproceedings{Jang2006DesignOS,
  title={Design of Software Security Verification with Formal Method Tools},
  author={Seung-Ju Jang and Jungwoo Ryoo and Chang-Soo Lee},
  year={2006}
}
Summary Formal methods ensure the stability and reliability of soft-ware systems by using mathematical principles and proving conformance to a given set of requirements. The stable and reliable operation of software is especially important for system applications dealing with security. Although very effective in identifying a non-conformance in security requirements, formal methods typically involve a steep learning curve before full adoption. Automated tools can be used to alleviate… 

Figures from this paper

A review on security requirements specification by formal methods
TLDR
This study summarized the outcomes of related papers to find out the current state of the art in the proposed area of security requirements, providing a deeper understanding to help security experts in the development of systems.
Formalization of Security Requirements-A Case Study on a Web- Based Application
TLDR
A novel and broad approach are proposed to specify the security requirement of web-based applications by considering some security requirements such as authentication, authorization, confidentiality, and integrity and these security properties are formally verified by the existing more formal tools.
Formal Modeling of Navigation System of Autonomous Mobile Robots using Graphs , Automata and Z
TLDR
This research has used an integration of graph theory, automata and Z notation to investigate and analyze the entire formal specification of the mobile robot navigation system.
Modeling Supervisory Control of Autonomous Mobile Robots using Graph Theory, Automata and Z Notation
TLDR
The integration of approaches as an effective tool for modeling is investigated by using Z/Eves by focusing on an integration of graph theory, automata and Z notation for modeling supervisory control of robot navigation system.

References

SHOWING 1-10 OF 17 REFERENCES
The SMV System
TLDR
The language must have a precise mathematical semantics that defines the translation from a program in the langauge to a form suitable for symbolic model checking (ie., a Boolean formula representing the transition relation), and must allow us to conveniently describe non-deterministic choices.
The SLAM Toolkit
TLDR
The SLAM toolkit checks safety properties of software without the need for user-supplied annotations or abstractions using three tools: a predicate abstraction tool that abstracts P into a boolean program BP(P,E) with respect to a set of predicates E over P 1,2.
The Model Checker SPIN
  • G. Holzmann
  • Computer Science
    IEEE Trans. Software Eng.
  • 1997
TLDR
An overview of the design and structure of the verifier, its theoretical foundation, and an overview of significant practical applications are given.
A Tutorial Introduction to PVS
TLDR
This document provides an introductory example, a tutorial, and a compact reference to the PVS veri cation system to get you started using PVS and to help appreciate the capabilities of the system and the purposes for which it is suitable.
The Z/EVES System
TLDR
The Z/EVES system is described, which allows Z specifications to be analysed in a number of different ways and includes a theorem prover that includes a decision procedure for simple arithmetic and a heuristic rewriting mechanism that recognizes “obvious” facts.
Z - an introduction to formal methods
TLDR
This tutorial introduction to Z contains information on how to relate Z specifications to actual program code and is enhanced to reflect the most current language standards.
Using Jaza to Animate RoZ Specifications of UML Class Diagrams
  • Y. Ledru
  • Computer Science
    2006 30th Annual IEEE/NASA Software Engineering Workshop
  • 2006
TLDR
A combination of the Jaza Z animator with the RoZ tool produces a Z specification from an annotated UML class diagram and generates the specification of basic operations associated to the diagram.
The STATEMATE semantics of statecharts
We describe the semantics of statecharts as implemented in the STATEMATE system. This was the first executable semantics defined for the language and has been in use for almost a decade. In terms of
The SPIN Model Checker : Primer and Reference Manual
...
...