An Integrated Security Verification and Security Solution Design Trade-Off Analysis Approach
S. H. Houmb (Norwegian University of Science and Technology, Norway), G. Georg (Colorado State University, USA), J. Jurjens (TU Munich, Germany) and R. France (Colorado State University, USA)
Copyright: © 2007
This chapter describes the integrated security veri?cation and security solution design trade-off analysis (SVDT) approach. SVDT is useful when there is a diverse set of requirements imposed upon a security critical system, such as a required security level, time-to-market and budget constraints and end users’ expectations. Balancing these needs requires developers to evaluate alternative security solutions, and SVDT makes this evaluation effective. UMLsec, an extension to UML for secure systems development, is used to specify security requirements, and UMLsec tools are used to verify if the alternative design solutions satisfy security requirements.