HQ Yu,XD He,Y Deng,L Mo

DOI: https://doi.org/10.1109/hase.2004.1281766

2004-01-01

Abstract:Software architecture plays a central role in developing software systems that provide basic functionality and satisfy critical properties such as reliability and security. However, little has been done to formally model software architectures and to systematically enforce required properties. We aim to propose a formal approach to designing secure software architectures. We use the software architecture model (SAM), a general software architecture model combining Petri nets and temporal logic, as the underlying formalism. Architecture design consists of the functionality part and the security part. Guidelines are proposed to design functionality of software architectures at both element level and composition level. Software security is enforced by stepwise refinement.

Huiqun Yu,Xudong He,Yi Deng,Lian Mo

2004-01-01

Abstract:Software architecture plays a central role in developing software systems that satisfy functionality and security requirements. However, little has been done to integrate system design with security enforcement, which would otherwise benefits both development process and system’s quality of service (QoS). This paper proposes a formal method to integrate security administration into software architecture design. We use the Software Architecture Model (SAM), a general software architecture model combining Petri nets and temporal logic, as the underlying formalism. Several techniques for designing functionalit y of software architectures are presented. Security modelin g and administration methods are proposed. As such, SAM serves as a common platform for modeling, design and analysis of secure software architectures.

HQ Yu,DM Liu,XD He,L Yang,S Gao

DOI: https://doi.org/10.1109/iceccs.2005.75

2005-01-01

Abstract:Security design at architecture level is critical to achieve high assurance software systems. However, most security design techniques for software architectures were in ad hoc fashion and fell short in precise notations. This paper proposes a formal aspect-oriented approach to designing secure software architectures. The underlying formalism is the software architecture model (SAM) that combines Petri nets and temporal logic. SAM supports a precise way to model the problem domain, its software architecture, and security aspects of the software architecture. An integrated architecture is obtained by weaving aspect models with the base architecture model. Mechanisms in SAM are amenable to analyzing correctness of the architecture design.

XD He,HQ Yu,TJ Shi,JH Ding,Y Deng

DOI: https://doi.org/10.1016/s0164-1212(02)00087-0

2004-01-01

Abstract:In the past decade, software architecture has emerged as a major research area in software engineering. Many architecture description languages have been proposed and some analysis techniques have also been explored. In this paper, we present a graphical formal software architecture description model called software architecture model (SAM). SAM is a general software architecture development framework based on two complementary formalisms--Petri nets and temporal logic. Petri nets are used to visualize the structure and model the behavior of software architectures while temporal logic is used to specify the required properties of software architectures. These two formal methods are nicely integrated through the SAM software architecture framework. Furthermore, SAM provides the flexibility to choose different compatible Petri net and temporal logic models according to the nature of system under study. Most importantly, SAM supports formal analysis of software architecture properties in a variety of well-established techniques--simulation, reachability analysis, model checking, and interactive proving, In this paper, we show how to formally analyze SAM software architecture specifications using two well-known techniques--symbolic model checking with tool Symbolic Model Verifier, and theorem proving with tool STeP.

Hq Yu,Xd He,Y Deng,La Mo

DOI: https://doi.org/10.1007/3-540-36103-0_30

2002-01-01

Abstract:The Software Architecture Model (SAM) is a general software architecture model based on a dual formalism combining Petri nets and temporal logic. This paper proposes a formal method for modeling and analyzing real-time systems with SAM. A high level Petri net and a linear time temporal logic are used as the theoretical basis for SAM. Behaviors of real-time systems are modeled by Petri nets, while their properties are specified by temporal logic. By translating Petri nets into clocked transition systems, we can apply the Stanford Temporal Prover to automating the analysis of real-time systems. A case study of interactive multimedia documents demonstrates our approach to modeling and analyzing real-time systems with SAM.

Zhenhua Yu,Yuanli Cai,Haiping Xu

DOI: https://doi.org/10.3321/j.issn:0253-987X.2007.02.009

2007-01-01

Abstract:Aiming at the defects of existing methods for modeling of dynamic software architecture, a novel software architecture abstract model (SAAM) is presented, in which two complementary formalisms, namely object-oriented Petri nets (OPN) and π-calculus, are adopted as formal theory bases. The OPN are employed to visualize initial architecture as well as system behaviors; while π-calculus is used to describe software architecture evolutions. These two formal methods are integrated in the SAAM, and the SAAM can be analyzed and verified by the corresponding supporting tools. Furthermore, the evolving strategy of components and the consistency among components can also be analyzed using π-calculus so as to detect the design errors in early software design stage and significantly improve the quality of software. A classical gas station example is used to show that SAAM is intuitional and effectively describes dynamic software architecture.

zhenhua yu,xiao fu,yu liu,jingwang,yuanli cai

DOI: https://doi.org/10.5772/7522

2010-01-01

Abstract:Software architecture has recently emerged as a new discipline of software engineering to effectively develop and maintain complex and large-scale software systems and reduce costs of developing applications. Software architecture provides a high-level abstraction for representing components, their relationships to each other and environment, and their constraints. The overall system structure design and specifications are far more important than the selection of the specific algorithms and data structures. Therefore, software architecture is a critical factor to success for system design and development (Shaw & Clements, 2006). Software architecture can be characterized according to its evolution at runtime (Oquendo, 2004): 1. static architectures: the architecture does not evolve during the execution of the system; 2. dynamic architectures: the architecture can evolve during the execution, e.g. components can be created, deleted, reconfigured, or updated at run-time. Dynamic software architectures have several practical applications (Medvidovic & Taylor, 2000). In public information systems with high availability and in missionand safety-critical systems, the implementation of architectural evolvement at run-time can decrease the cost and risk. To support architecture-based development, architecture description languages (ADLs) and formal models have been proposed to represent software architecture in a formal way, such as UniCon (Shaw et al., 1995), Darwin (Magee, 1995), Rapide (Luckham et al., 1995), Wright (Allen et al., 1998), π-ADL (Oquendo, 2004), SAM (He et al., 2004), XYZ/ADL (Luo et al., 2000). However, the major attentions have been focused on the description of static architectures, while the description of dynamic architecture has not yet to receive the attention it deserves. Darwin and Rapide only depict predefined dynamic evolvement and cannot verify the integrality and liveness of the systems. Wright can describe the dynamic evolvement, but it is so complicated. For a two-tier client/server system, process algebra (such as π-calculus) uses two processes and one or two channels to depict it, while Wright only needs seven processes and eight channels. π-SPACE and π-ADL cannot analyze the key characteristics. Although the existing approaches provide support for dynamic software architecture, most of them cannot analyze and verify the key characteristics. Therefore, software systems cannot be ensured robustness, consistency and maintenance. To support the development of correct and robust dynamic software architectures, a visual software architecture formal model (SAFM) based on two complementary formalisms, namely Object-oriented Petri nets (OPN) and π-calculus, is proposed. SAFM divides software systems

Lirong Dai,Kendra Cooper

2007-01-01

Abstract:There has been a growing interest in investigating methodologies to support the development of secure sys- tems in the software engineering research community. Re- cently, much attention has been focused on the modelling and analysis of security properties for systems at the soft- ware architecture design level. The potential benefits of this architecture level work are substantial: security flaws can be detected and removed earlier in the software de- velopment life-cycle. This reduces development time, re- duces development cost, and improves the quality of the resulting system. As a result of this attention, a wide variety of approaches have been proposed in the literature. At this point, a sur- vey for researchers involved in the problem of systemat- ically modelling and analyzing software architecture de- sign that have security properties would be of value to the community. This paper presents such a survey; it includes a discussion of semi-formal, formal, integrated semi-formal and formal, and aspect-oriented approaches. Comparison criteria are defined including: the kinds of notations used to model the security properties (e.g., Petri nets, temporal logic, etc.), whether the approach supports the manual or automated analysis of security properties, the specific security property modelled (e.g., authenti- cation, role-based access control, etc.), and the kind of example system that has been used to illustrate the ap- proach (information, distributed, etc.).

Xudong He,Huiqun Yu,Yi Deng

DOI: https://doi.org/10.4018/978-1-59140-941-1.ch013

2007-01-01

Abstract:Software has been a major enabling technology for advancing modern society, and is now an indispensable part of daily life. Because of the increased complexity of these software systems, and their critical societal role, more effective software development and analysis technologies are needed. How to develop and ensure the dependability of these complex software systems is a grand challenge. It is well known that a highly dependable complex software system cannot be developed without a rigorous development process and a precise specification and design documentation. Formal methods are one of the most promising technologies for precisely specifying, modeling, and analyzing complex software systems. Although past research experience and practice in computer science have convincingly shown that it is not possible to formally verify program behavior and properties at the program source code level due to its extreme huge size and complexity, recently advances in applying formal methods during software specification and design, especially at software architecture level, have demonstrated significant benefits of using formal methods. In this chapter, we will review several well-known formal methods for software system specification and analysis. We will present recent advances of using these formal methods for specifying, modeling, and analyzing software architectural design.

Xiaohua Li,Gang Wang,Lin Xiao,Maosheng Ding

DOI: https://doi.org/10.1109/TDC.2005.1547134

2005-01-01

Abstract:This paper gives a new more practical software reliability model based on architectures of software components. This model uses semi-Markov chain and can give the quantitative evaluation about the digital protection's software. It analyzes the relation between the material architecture of software's modules and the reliability of software, then changes the model into a semi-Markov one based on the architecture of software's modules. Besides having the characters of the former model, this one have the ability to emulate the reliability in the situation which is the software having complex architecture or the system having the capability about paratactic calculating. Furthermore, the variable parameter method is used to study the sensitivity in order to find the vital factors of reliability. An example is given to demo the proposed techniques. The calculation results prove that the algorithm is viable. © 2005 IEEE.

Yan Hu,Yaozhong Xin,Yingduo Han

2003-01-01

Abstract:Based on the experience in the security architecture design of secondary systems, this paper presents a method for structured security architecture design, which draws on the advantages of DGSA and MOAT and makes good use of object-oriented analysis and modeling techniques. The method begins with establishing an abstract model for a secondary system, and then performs the security risk analysis and countermeasure configuration, the purpose being to facilitate the communications among security work teams and ensure the quality of security architecture design for large systems. Since it is mainly based on the object-oriented analysis and modeling techniques supported by fairly good tools, it provides the possibility for the automation of security architecture design.

Zhen-hua YU,Yuan-li CAI,Xiao FU,Wen-jun XIE,Hai-ping XU

2014-01-01

Abstract:From the perspective of multi-agent systems, a high-confidence software formal model (HCSFM) of cyber-physical systems (CPS) based on two complementary formalisms, namely Petri nets and π-calculus, is proposed. Petri nets are employed to visualize the architecture and model the behaviors of CPS software, and the structural analysis techniques allow the qualitative analysis of properties that may be proved directly on the structure of Petri nets. π-calculus is used to describe CPS software evolution, including agent joining, exiting, updating, and architecture reconfiguration. The evolving strategy of agents and the consistency of CPS software can also be analyzed using π-calculus. HCSFM will improve the dependability of CPS software. HCSFM is applied to unmanned ground vehicles CPS, which shows that it can effectively describe and analyze the high-confidence software of cyber-physical systems.

RAO Ruo-nan,YOU Jin-yuan

DOI: https://doi.org/10.3321/j.issn:1006-2467.2000.07.033

2000-01-01

Abstract:This paper discussed the essential requirements of modeling distributed enterprise information system's software architecture and the feasible Unified Modeling Language (UML) constructs and techniques that specify them. A UML based software architecture model of distributed enterprise information system (UDESAM) was introduced. The UDESAM consists of parts, connectors, interfaces and constraints, adopts a subset of UML as its architecture modeling language, and is described with use case view, logical view, component view and deployment view. The software development process and the strategy based on the model were described, and a development example of sales system based on Web was provided.

Nacha Chondamrongkul,Jing Sun,Ian Warren

DOI: https://doi.org/10.1016/j.scico.2021.102631

IF: 1.039

2021-01-01

Science of Computer Programming

Abstract:Analysing security in the architecture design of modern software systems is a challenging task. Emerging technologies utilised in building software systems may pose security threats, so software engineers need to consider both the structure and behaviour of architectural styles that employ these supporting technologies. This paper presents an automated approach to security analysis that helps to identify security characteristics at the architectural level. Key techniques used by our approach include the use of metrics, vulnerability identification and attack scenarios. Our modelling is expressive in defining architectural styles and security characteristics. Our analysis approach gives insightful results that allow software engineers to trace through the design to find parts of the system that may be impacted by attacks. We have developed an analysis tool that allows user to seamlessly model the software architecture design and analyse security. The evaluation has been conducted to assess the accuracy and performance of our approach. The results show that our analysis approach performs reasonably well to analyse the security in the architectural design. (C) 2021 Elsevier B.V. All rights reserved.

Chen Li,Linpeng Huang,Luxi Chen,Xu Li,Weichao Luo

DOI: https://doi.org/10.1145/2430475.2430480

2012-01-01

Abstract:Compared to the traditional software architecture, Dynamic Software Architectures (DSAs) should be able to describe the changes of the system and to effect modifications during system execution, especially for dynamic evolution. To reflect the changes during system execution, we present a formalism for describing architecture structure and interaction behavior, and we also specify four evolution rules for software architecture. Our work expands the idea in three directions. The first is to formalize the architecture structure and interaction behavior including components, connectors and an architectural reference model. The second direction is that we formalize four dynamic evolution rules which DSAs should support, that is, addition, removal, replacement and reconfiguration. Another direction is that we verify software architecture consistency and integrity after dynamic evolution. We use a client/server application as a running example throughout the paper to demonstrate our approach. Our work provides a precise formal specification for software architecture and a rigorous verification for dynamic evolution.

Zhiqiang Fan,Tao Yue,Li Zhang

DOI: https://doi.org/10.1007/s10270-013-0393-x

2014-01-01

Software & Systems Modeling

Abstract:Ship command and control systems (SCCSs) are composed of large-scale, complex, real-time and software-intensive systems that complete tasks collaboratively. Open architecture has been introduced to design the architecture of SCCSs and has been refined into functional architecture (FA) and technical architecture (TA) to meet architectural requirements such as adapting fast-speed functional and technical changes. Thereby, specifying the architecture of SCCSs, based on FA and TA, becomes a key issue for stakeholders of the domain. In this paper, we propose an architecture modeling methodology (named as SAMM) for describing the architecture of SCCSs. SAMM is derived by following a systematic and generic framework—modeling Goal, domain-specific Conceptual model, architecture Viewpoint, and architecture description Language (GCVL), which guides domain experts to devise domain-specific architecture modeling methodologies of large-scale software-intensive systems. SAMM contains three viewpoints and 22 models, and a UML/SysML-based architecture description language. An industrial application of SAMM, along with the subsequent application of the derived SAMM architecture model (i.e., a deployed SCCS prototype) was conducted to evaluate SAMM. A questionnaire-based survey was also conducted to subjectively evaluate whether SAMM meets the modeling goals and its applicability. Results show that SAMM meets all modeling goals and is easy to apply.

刘钟鸣,屠建顺,杨春节,李平

DOI: https://doi.org/10.3969/j.issn.1671-7848.2002.05.001

2002-01-01

Abstract:The introduced CIMS reference model, which is composed of data layer, logic layer and controlling layer, is proved to be comprehensively instructive in system design and implementation. Based on this model, the paper analyzes the workflow and system functional partition according to the characters of the sale process in a paper mill. Furthermore, it introduces a distributed multi-layer architecture and points out the six main components in MIDAS. Finally, taking the Qingshan Paper Mill as an example, it illustrates the practical effect of this architecture.

Guoyong Cai,Ji Gao,Junyan Qian,Lingzhong Zhao

DOI: https://doi.org/10.1109/npc.2007.69

2007-01-01

Abstract:Developing distributed collaboration system is still a challenge work in an open and heterogeneous environment The paper proposes to design distributed collaboration system starting from electronic institutional model. Software architecture is designed directly based on electronic institution. The main architectural element is a scene manager. An electronic institution oriented calculus language is presented to specify the complex interaction patterns appearing in architectural design level. Through the formal defined operational semantic rules, some system norms can be verified in the designed architectural specification. A proof of concept implementation has been working out The experience shows a lot of advantages in this approach when developing such type of interaction complicated systems in open environments.

TANG Shan,ZHAO Wen-yun

DOI: https://doi.org/10.3969/j.issn.1000-7180.2006.09.011

2006-01-01

Abstract:Combining the techniques of meta-modeling and reflecting,this paper from a macroscopical perspective firstly proposes a dynamical software architecture model supporting distributional application environment,and describes how to perform dynamic evolvement to the software system,then from the microcosmic perspective,gives out a formal description to the software architecture.The authors implement this model to an online dynamical pet shop system,and prove its availability.

Liqiong Chen,Guisheng Fan,Yunxiang Liu

DOI: https://doi.org/10.4304/jsw.5.9.990-997

2010-01-01

Journal of Software

Abstract:As computer systems become increasingly inter-networked, Distributed Real-time Embedded (DRE) systems has became increasingly common and important, a challenging problem faced by researchers and developers of DRE software is devising and implementing an method that can effectively analyze requirements in varying operational conditions. In this paper, a Hierarchical Distributed Real-time Embedded net (HDRE-net) is proposed as software analysis tool. The basic task, function module and communication process are modeled by using HDRE-net, thus forming the whole application through the synthesis operation of Petri net. Time Reachability Graph is adopted to analyze the correctness of HDRE-net, the basic properties of DRE software are also considered. Finally, a specific example is given to simulate the analysis process, and the results show that the method can be a good solution to analyze DRE software.