Security Description Summary

Defines the navigation flow of the application and navigational access control policies. The former shows which possibilities of navigation exist in a certain context. The latter specifies which roles are allowed to navigate to a specific state and the action taken in case access cannot be granted. In a web application such actions can be, e.g., to logout the user and to redirect to the login form or just to display an error message. Furthermore, secure connections between server and browser are modeled, too.

Specurity Aspects

Name

Description

Authentication

Enables users to log into a system.

Reauthentication

After a certain time of inactivity, users need to authenticate themselves again.

Secure Connections

Can be used to ensure the confidentiality, integrity and freshness of all user’s request as well as of all response of the system.

Under Attack Mode

A dynamic protection against attempts of compromising the systems functionality, as the system reacts accordingly and reduces the attackers possibilities.

Specification Elements

Name

Description

IsHome

Refers to the entry point of a web application.

IntegratedMenu

Defined to be a shortcut for showing menus entries for all menus of Submachine States.

RolesExpression

Specifies navigational access control.

TransmissionType

Specifies connection type.

Denotes that a search is done when using a transition.

ItemType

Refers to a list of elements with the given {itemType} tag from the Content model.

ReAuth

Specify critical areas in which a user needs to reauthenticate themselves.

NoAccessInMode

Prevents navigating to the interface.

Security Aspects
- Authentication
  Enables users to log into a system.
  Specification Elements:
  IsHome
  Threats:
  Spoofing
  Elevation of Privileges
- Reauthentication
  After a certain time of inactivity, users need to authenticate themselves again.
  Specification Elements:
  ReAuth
  Threats:
  Spoofing
  Elevation of Privileges
- Secure Connections
  Can be used to ensure the confidentiality, integrity and freshness of all user’s request as well as of all response of the system.
  Specification Elements:
  TransmissionType
  Threats:
  Tampering with Data
  Repudiation
  Information Disclosure
  Denial of Service
  Elevation of Privileges
- Under Attack Mode
  A dynamic protection against attempts of compromising the systems functionality, as the system reacts accordingly and reduces the attackers possibilities.
  Specification Elements:
  NoAccessInMode
  Threats:
  Tampering with Data
  Repudiation
  Information Disclosure
  Denial of Service
  Elevation of Privileges
Specification Elements
- IsHome
  Refers to the entry point of a web application.
  Applies to:
  State
- IntegratedMenu
  Defined to be a shortcut for showing menus entries for all menus of Submachine States.
  Applies to:
  State
- RolesExpression
  Specifies navigational access control.
  Applies to:
  State
- TransmissionType
  Specifies connection type.
  Applies to:
  Connection
- Search
  Denotes that a search is done when using a transition.
  Applies to:
  State
- ItemType
  Refers to a list of elements with the given {itemType} tag from the Content model.
  Applies to:
  State
  Entity
  Component
- ReAuth
  Specify critical areas in which a user needs to reauthenticate themselves.
  Applies to:
  State
- NoAccessInMode
  Prevents navigating to the interface.
  Applies to:
  State

Navigation View

Security Aspects

Authentication

Reauthentication

Secure Connections

Under Attack Mode

Specification Elements