Security Analysis Language (SAL)

Allows to analyze the flow of data objects through a system and identifying points in a distributed system that are vulnerable to attack.
Specurity Aspects
Name
Description
Assigns whether data may flow to a lower secrecy level (Biba- model) or higher (Bell-LaPadula model).
checks the encryption algorithm and key size against the set of encryption algorithms that are vulnerable for the adversary model
Specification Elements
Name
Description
The subjects that are assigned a security level and compartment attributes.
Inherits the security level and compartment classification of its containing partition.
Transfers data from one partition to another.
Identifies the adversary model associated with an information flow.
The set of encryption algorithms that are vulnerable for the adversary model specified by adversary.
The referenced algorithm is vulnerable to an adversary if the strength of its encryption is not greater than the maximum key size.

  • Security Aspects

    • Information Flow Analysis

      Assigns whether data may flow to a lower secrecy level (Biba- model) or higher (Bell-LaPadula model).
      Specification Elements:
      Partition
      Data Object
      InformationFlow
      Threats:
      Information Disclosure

    • Threat Model Analysis

      checks the encryption algorithm and key size against the set of encryption algorithms that are vulnerable for the adversary model
      Specification Elements:
      Adversary
      EncryptionAlgorithm
      KeySize
      Threats:
      Tampering with Data
      Information Disclosure

    Specification Elements