Data Flow Contracts DSL
Annotations to specify data flow contracts on data flow diagrams.
Specurity Aspects
Specification Elements
Name
Description
Describes security properties of an asset.
Which data processing a process should implement.
Attackers are commonly modeled as individual malicious nodes interacting with the system on a particular level of granularity.
An security assumption on processes, data stores, external entities, and attacker zones.
Security Aspects
Secure data flow
Propagation of security labels- Specification Elements:
- Responsibility
- Value
- TrustZone
- Assumption
- AttackerProfile
- Threats:
- Information Disclosure
- Tampering with Data
- Denial of Service
- Repudiation
Specification Elements
Value
Describes security properties of an asset.- Applies to:
- Data
Responsibility
Which data processing a process should implement.- Applies to:
- Activity
- InformationFlow
TrustZone
- Applies to:
- Activity
- Entity
- InformationFlow
AttackerProfile
Attackers are commonly modeled as individual malicious nodes interacting with the system on a particular level of granularity.- Applies to:
- Entity
Assumption
An security assumption on processes, data stores, external entities, and attacker zones.