Towards a UML Profile for Model-Based Risk Assessment
نویسندگان
چکیده
The EU-funded CORAS project (IST-2000-25031) is developing a framework for model-based risk assessment of security-critical systems. This framework is characterised by: (1) A careful integration of aspects from partly complementary risk assessment methods. (2) Guidelines and methodology for the use of UML to support and direct the risk assessment methodology. (3) A risk management process based on AS/NZS 4360 and ISO/IEC 17799. (4) A risk documentation framework based on RM-ODP. (5) An integrated risk management and system development process based on UP. (6) A platform for toolinclusion based on XML. This paper focuses on one specific aspect of the CORAS framework, namely the CORAS UML profile for risk assessment. In particular, it explains its role in the CORAS risk management process and demonstrates its use in the risk assessment of an e-Commerce system.
منابع مشابه
Towards Unified System Modeling with the ModelicaML UML Profile
In order to support the development of complex products, modeling tools and processes need to support co-design of software and hardware in an integrated way. Modelica is the major object-oriented mathematical modeling language for component-oriented modeling of complex physical systems and UML is the dominant graphical modeling notation for software. In this paper we propose ModelicaML UML pro...
متن کاملModel driven development with mechatronic UML
Today, mechanical engineering products can largely be classified as mechatronic systems, i.e. systems integrating electrical and mechanical components with software. Mechatronic systems are often employed in safety-critical areas, for instance in the automotive or railway domain. MECHATRONIC UML is a UML profile specifically tailored towards the modelling of mechatronic systems. It aims at brin...
متن کاملModelling QoS: Towards a UML Profile
In this paper, we present a conceptual object model for specifying Quality of Service (QoS) that forms a basis for a UML profile for QoS. The conceptual model is based on CQML, a lexical language for QoS specification. A QoS characteristic represents some aspect of the QoS of a system, service or resource that can be identified and quantified. A QoS statement expresses some QoS by constraining ...
متن کاملnumber 2009 : 5 Modelica Modeling Language ( ModelicaML ) A UML Profile for
This document presents the Modelica Modeling Language (ModelicaML) a UML Profile for Modelica. The purpose of the ModelicaML is to enable an efficient and effective way to create, read or understand, and maintain Modelica models. ModelicaML is defined as a graphical notation and facilitates different views (composition, inheritance, behavior) on Modelica models. It is based on a subset of the O...
متن کاملAn UML profile for dependability analysis and modeling of software systems
In this document we define the Dependability Analysis Modelling profile, namely DAM profile. The process of deriving a DAM profile has been going through several steps. First of all, an in depth analysis of the literature has been carried out, in order to collect in a checklist the information requirements for the profile. Then a two-step approach for the profile definition has been followed. I...
متن کامل