UMLsecUML extension for secure systems design. It uses standard UML extension mechanisms and can be used to evaluate UML specifications for vulnerabilities using a formal semantics of a simplified fragment of the UML. Established security engineering rules can be encapsulated and made available to developers who are not security specialists. |  |
Security DSLs provided by the Tool
Name
Description
UML profile defining the UMLsec security annotations using the standard UML extension mechanisms.
Security Checks provided by the Tool
Name
Description
Analyzes the security of static dependencies
Analyzes that critical information is only communicated over sufficiently protected connections.
Checks that guarded objects are only accessed through guard objects.
Checks that no information is indirectly leaked.
Checks that no information is indirectly leaked.