• Corpus ID: 18001759

Design of Software Security Verification with Formal Method Tools

  title={Design of Software Security Verification with Formal Method Tools},
  author={Seung-Ju Jang and Jungwoo Ryoo and Chang-Soo Lee},
Summary Formal methods ensure the stability and reliability of soft-ware systems by using mathematical principles and proving conformance to a given set of requirements. The stable and reliable operation of software is especially important for system applications dealing with security. Although very effective in identifying a non-conformance in security requirements, formal methods typically involve a steep learning curve before full adoption. Automated tools can be used to alleviate… 

Figures from this paper

A review on security requirements specification by formal methods

This study summarized the outcomes of related papers to find out the current state of the art in the proposed area of security requirements, providing a deeper understanding to help security experts in the development of systems.

Formalization of Security Requirements-A Case Study on a Web- Based Application

A novel and broad approach are proposed to specify the security requirement of web-based applications by considering some security requirements such as authentication, authorization, confidentiality, and integrity and these security properties are formally verified by the existing more formal tools.

Formal Modeling of Navigation System of Autonomous Mobile Robots using Graphs , Automata and Z

This research has used an integration of graph theory, automata and Z notation to investigate and analyze the entire formal specification of the mobile robot navigation system.

Modeling Supervisory Control of Autonomous Mobile Robots using Graph Theory, Automata and Z Notation

The integration of approaches as an effective tool for modeling is investigated by using Z/Eves by focusing on an integration of graph theory, automata and Z notation for modeling supervisory control of robot navigation system.



The SMV System

The language must have a precise mathematical semantics that defines the translation from a program in the langauge to a form suitable for symbolic model checking (ie., a Boolean formula representing the transition relation), and must allow us to conveniently describe non-deterministic choices.

The SLAM Toolkit

The SLAM toolkit checks safety properties of software without the need for user-supplied annotations or abstractions using three tools: a predicate abstraction tool that abstracts P into a boolean program BP(P,E) with respect to a set of predicates E over P 1,2.

The Model Checker SPIN

  • G. Holzmann
  • Computer Science
    IEEE Trans. Software Eng.
  • 1997
An overview of the design and structure of the verifier, its theoretical foundation, and an overview of significant practical applications are given.

Z - an introduction to formal methods

This tutorial introduction to Z contains information on how to relate Z specifications to actual program code and is enhanced to reflect the most current language standards.

Using Jaza to Animate RoZ Specifications of UML Class Diagrams

  • Y. Ledru
  • Computer Science
    2006 30th Annual IEEE/NASA Software Engineering Workshop
  • 2006
A combination of the Jaza Z animator with the RoZ tool produces a Z specification from an annotated UML class diagram and generates the specification of basic operations associated to the diagram.

The STATEMATE semantics of statecharts

We describe the semantics of statecharts as implemented in the STATEMATE system. This was the first executable semantics defined for the language and has been in use for almost a decade. In terms of

The SPIN Model Checker : Primer and Reference Manual

The Z/EVES System

The Z/EVES system is described, which allows Z specifications to be analysed in a number of different ways and includes a theorem prover that includes a decision procedure for simple arithmetic and a heuristic rewriting mechanism that recognizes “obvious” facts.

User guide for the pvs specification and verification system (beta release)