Saved in:
Bibliographic Details
Main Authors: Ding, Yepeng, Sato, Hiroyuki
Format: Preprint
Published: 2024
Subjects:
Online Access:https://arxiv.org/abs/2406.00620
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866914819340238848
author Ding, Yepeng
Sato, Hiroyuki
author_facet Ding, Yepeng
Sato, Hiroyuki
contents Best practices of self-sovereign identity (SSI) are being intensively explored in academia and industry. Reusable solutions obtained from best practices are generalized as architectural patterns for systematic analysis and design reference, which significantly boosts productivity and increases the dependability of future implementations. For security-sensitive projects, architects make architectural decisions with careful consideration of security issues and solutions based on formal analysis and experiment results. In this paper, we propose a model-driven security analysis framework for analyzing architectural patterns of SSI systems with respect to a threat model built on our investigation of real-world security concerns. Our framework mechanizes a modeling language to formalize patterns and threats with security properties in temporal logic and automatically generates programs for verification via model checking. Besides, we present typical vulnerable patterns verified by SecureSSI, a standalone integrated development environment, integrating commonly used pattern and attacker models to practicalize our framework.
format Preprint
id arxiv_https___arxiv_org_abs_2406_00620
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle Model-Driven Security Analysis of Self-Sovereign Identity Systems
Ding, Yepeng
Sato, Hiroyuki
Cryptography and Security
Best practices of self-sovereign identity (SSI) are being intensively explored in academia and industry. Reusable solutions obtained from best practices are generalized as architectural patterns for systematic analysis and design reference, which significantly boosts productivity and increases the dependability of future implementations. For security-sensitive projects, architects make architectural decisions with careful consideration of security issues and solutions based on formal analysis and experiment results. In this paper, we propose a model-driven security analysis framework for analyzing architectural patterns of SSI systems with respect to a threat model built on our investigation of real-world security concerns. Our framework mechanizes a modeling language to formalize patterns and threats with security properties in temporal logic and automatically generates programs for verification via model checking. Besides, we present typical vulnerable patterns verified by SecureSSI, a standalone integrated development environment, integrating commonly used pattern and attacker models to practicalize our framework.
title Model-Driven Security Analysis of Self-Sovereign Identity Systems
topic Cryptography and Security
url https://arxiv.org/abs/2406.00620