Access Analysis
The Access Analysis DSL extends the Palladio Component Model (PCM) with confidentiality related security information.
Security Aspects
Secure Access
Analyzes whether an attacker can access data contradicting to a specification.- Specification Elements:
- LocationAndTamperProtection
- Encryption
- Information Flow
- Sharing
- FurtherPhysicalConnections
- Threats:
- Information Disclosure
- Tampering with Data
Information Flow
Planning of expected information flows.- Specification Elements:
- Information Flow
- Encryption
- Threats:
- Information Disclosure
Encryption
Expresses a security requirement on a linking resource.- Specification Elements:
- Encryption
- Threats:
- Information Disclosure
- Tampering with Data
Tamper Protection
Location has to be protected against attackers with a mechanism.- Specification Elements:
- LocationAndTamperProtection
- FurtherPhysicalConnections
- Sharing
- Threats:
- Tampering with Data
Specification Elements
Information Flow
Assignes the expected data sets to information of a service, such as calls, returns, parameter or the sizeOf of these.- Applies to:
- Data
Sharing
Defines whether a resource is shared by several application.- Applies to:
- Node
Encryption
Defines whether communication through a linking resource is encrypted and which data.- Applies to:
- Connection
FurtherPhysicalConnections
Defines whether a resource has further physical connections.- Applies to:
- Node
LocationAndTamperProtection
Defines the location of a resource and whether it is protected against tampering attempts.- Applies to:
- Node
- Connection