Showing papers by "Gregorio Díaz published in 2007"

Model Checking Wireless Sensor Network Security Protocols: TinySec + LEAP

Abstract: In this paper, a formal analysis of security protocols in the field of wireless sensor networks is presented. Two complementary protocols, TinySec and LEAP, are modelled using the high-level formal language HLPSL, and verified using the model checking tool Avispa, where two main security properties are checked: authenticity and confidentiality of messages. As a result of this analysis, two attacks have been found: a man-in-the-middle- attack and a type flaw attack. In both cases confidentiality is compromised and an intruder may obtain confidential data from a node in the network. Two solutions to these attacks are proposed in the paper.

Using UML Diagrams to Model Real-Time Web Services

Abstract: In this paper we show how we can use a classical UML diagram, the sequence diagram, for the description of business process behavior based on Web services with time constraints. More specifically, we see how these diagrams can capture the main elements of the Web services business process execution language (WS-BPEL), and then, how we can translate these diagrams into Web services business process execution language.

Model Checking Techniques applied to the design of Web Services

Abstract: In previous work we have presented the generation of WS-CDL and WS-BPEL documents. In this paper we show the unification of both generations. The aim is to generate correct WS-BPEL skeleton documents from WS-CDL documents by using the Timed Automata as an intermediary model in order to check the correctness of the generated Web Services with Model Checking Techniques. The model checker used is UPPAAL, a well known tool in theoretical and industrial cases that performs the verification and validation of Timed Automata. Note that our interest is focused on Web services where the time constraints play a critical role.

Using RT-UML for modelling web services

Abstract: RT-UML is a UML Profile for modeling Real Time Systems, which can be used in particular to describe Web Services Orchestration with time constraints. For that purpose, we can use a classical UML diagram, namely, the sequence diagram. Our goal in this paper is the design of Web Services with time restriction by using RT-UML. We introduce a translation of the main elements of RT-UML into Web Services Business Process Execution Language.

Analysis of Web Services Secure Conversation with Formal Methods

Abstract: Web services secure conversation extends Web services trust to provide mechanisms for establishing security contexts. A security context is an abstract concept that refers an authenticated state where the participants have derived secure session keys for multiples request/response exchanges. In this paper we model this protocol with the HLPSL language and we analyse it with the AVISPA toolbox.

Does ROSA provide a good view of the Memorizing Process

Abstract: In this paper we have used the Markovian process algebra ROSA to both specify and analyze the memorizing process. ROSA, reasoning on stochastic algebras, is an algebraic language for the description of probabilistic and non-deterministic processes, which allows us to evaluate performance indexes and to check some temporal requirements.

Testing Time Goal-Driven Requirements with Model Checking Techniques

Abstract: In this paper we present the testing of time goal requirements by using model checking as an engine for test generation. The goal model that we use to capture the time requirements is an extension of KAOS. This goal model specifies the properties that the system must satisfy and how they are tested by using the model checker engine, UPPAAL. As an illustration of this proposal we take a particular study case based on GSM cell technology