MoDelSec: Modular Modeling of Delegation Security in Software Development

In this project, an approach for the security analysis of access control techniques (such as rights delegation) was developed in the context of a formal-based software development method. The approach is based on the security analysis approach "Secure Information Flow", which allows a particularly fine-grained analysis. Since this approach was originally developed in the context of the Mandatory Access Control (MAC) concept, which generally does not include user-defined delegation, this solved an open problem. Further, modular security analysis techniques were developed in this context. The approach is supported by automated verification tools and has been validated against applications.