A Security Specification Verification Technique Using Theorem Proving and Model Checking Based on the International Standard ISO/IEC 15408

A Security Specification Verification Technique Using Theorem Proving and Model Checking Based on the International Standard ISO/IEC 15408

This paper proposes a security specification verification technique based on the international standard ISO/IEC 15408. We formalized the security criteria of ISO/IEC 15408 and developed the verification technique of security specifications based on the formalized criteria with theorem-proving and mo...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Computer Software 2006, Vol.23(3), pp.3_117-3_133
Hauptverfasser: Morimoto, Shoichi, Shigematsu, Shinjiro, Goto, Yuichi, Cheng, Jingde
Format: Artikel
Sprache:eng ; jpn
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:This paper proposes a security specification verification technique based on the international standard ISO/IEC 15408. We formalized the security criteria of ISO/IEC 15408 and developed the verification technique of security specifications based on the formalized criteria with theorem-proving and model-checking. With the technique, one can formally verify whether or not specifications satisfy the security criteria of ISO/IEC 15408. Ambiguity and/or oversight about security in specifications written in natural language can also be detected.
ISSN:0289-6540
DOI:10.11309/jssst.23.3_117