Embed Size (px)
DESCRIPTION
Enhancing Security in Ultra-Large Scale (ULS) Systems using Domain-specific Modeling. Joe Hoffert, Akshay Dabholkar, Aniruddha Gokhale, and Doug Schmidt Institute for Software Integrated Systems (ISIS) Vanderbilt University. Trustworthiness Challenges for Ultra-Large Scale (ULS) Systems. - PowerPoint PPT Presentation
Citation preview
TRUST NSF Site Visit, Berkeley, April 27th- 28th, 2006
Enhancing Security in Ultra-Large Scale (ULS) Systems using Domain-specific Modeling
Joe Hoffert, Akshay Dabholkar, Aniruddha Gokhale, and Doug Schmidt
Institute for Software Integrated Systems (ISIS)
Vanderbilt University
TRUST NSF Site Visit, Berkeley, April 27th – 28th, 2006
Trustworthiness Challenges for Ultra-Large Scale (ULS) Systems
Homeland Defense
National/International Power Grid
Air Traffic Management
Constellations of Satellites
Challenges:• Trustworthiness concerns
tangled across different middleware layers
• Multiple different middleware technologies
Approach:Use Model Driven Engineering (MDE) for
• Separation of concerns• Analysis for correctness• Automated synthesis of
QoS metadata
Traits:• Systems of systems• Pub-Sub paradigm• Multiple QoS needs• Ultra-large in # of components,
connections, lines of code, etc.
TRUST NSF Site Visit, Berkeley, April 27th – 28th, 2006
DataReader
"Enhancing Security in Enterprise DRE Systems using DSMLs", Joe Hoffert 3
Enhancing Security for ULS Systems
Interface Security QoS
Domain-Specific Security Policy
Component Security QoS
Planner1
Conforms to Policy
SQML uses aspect-oriented design to modularize security at various layers of the system
DQML uses constraint-checking
for analysis and generates intended
QoS metadata
DataWriter
Durability-Volatile
Durability-Transient
Reliability- Best Effort
Reliability- Reliable
Deadline-10ms
Deadline-20ms
Liveliness-Manual By Topic
Topic
Timebased-15ms
Liveliness-Automatic
TRUST NSF Site Visit, Berkeley, April 27th – 28th, 2006"Enhancing Security in Enterprise DRE Systems using DSMLs", Joe Hoffert 4
Ongoing Research
Map SQML security onto DQML
Platform Independent Model (PIM) for Security
DQML input
Researching:1. Integration of SQML and DQML with other analysis/benchmarking tools
2. Development of higher level DDS services (e.g., fault-tolerance, real-time data, security)
3. Creation of Security Platform Independent Model (PIM) applicable across technologies
(http://www.dre.vanderbilt.edu/CoSMIC)
Planner1
SQML in
put
