Enhancing Security in Ultra-Large Scale (ULS) Systems using Domain-specific Modeling

1. Enhancing Security in Ultra-Large Scale (ULS) Systems using Domain-specific Modeling Joe Hoffert, Akshay Dabholkar, Aniruddha Gokhale, and Doug Schmidt Institute for Software Integrated Systems (ISIS) Vanderbilt University

2. Trustworthiness Challenges for Ultra-Large Scale (ULS) Systems National/International Power Grid Constellations of Satellites Homeland Defense Air Traffic Management • Traits: • Systems of systems • Pub-Sub paradigm • Multiple QoS needs • Ultra-large in # of components, connections, lines of code, etc. • Approach: • Use Model Driven Engineering (MDE) for • Separation of concerns • Analysis for correctness • Automated synthesis of QoS metadata • Challenges: • Trustworthiness concerns tangled across different middleware layers • Multiple different middleware technologies

3. Enhancing Security for ULS Systems Interface Security QoS Conforms to Policy Component Security QoS Domain-Specific Security Policy Durability- Volatile Durability- Transient Deadline- 20ms Deadline- 10ms Timebased- 15ms Topic DataWriter Liveliness- Manual By Topic Liveliness- Automatic Reliability- Reliable Reliability- Best Effort SQML uses aspect-oriented design to modularize security at various layers of the system DQML uses constraint-checking for analysis and generates intended QoS metadata DataReader "Enhancing Security in Enterprise DRE Systems using DSMLs", Joe Hoffert 3

4. Ongoing Research DQML input SQML input Platform Independent Model (PIM) for Security Map SQML security onto DQML • Researching: • Integration of SQML and DQML with other analysis/benchmarking tools • Development of higher level DDS services (e.g., fault-tolerance, real-time data, security) • Creation of Security Platform Independent Model (PIM) applicable across technologies • (http://www.dre.vanderbilt.edu/CoSMIC) "Enhancing Security in Enterprise DRE Systems using DSMLs", Joe Hoffert