Model-driven Security and Privacy
Model- driven engineering (MDE) is a software development methodology that promotes the use of models during software development.
Security and privacy requirements are often neglected is the design phase. We aim at building software that is secure and privacy-aware by design. This requires: (1) integrating security and privacy into the software models; (2) implementing appropriate model transformations to generate policy enforcement mechanisms that prevent noncompliant system executions; and (3) assigning formal semantics to the models to facilitate precise documentation and automatic analysis of security and privacy policies. Main idea is to move security and privacy out of developers' way as much as possible by (re-)generating the corresponding code.
We offer Bachelor and Master projects to motivated students who are interested in one or more of the following areas: UML, OCL, first-order or temporal logics, algorithms and data structures, or metamodeling.
Desirable Prerequisites
- UML and OCL (e.g., from Software or Security Engineering course)
- Familiarity with temporal logics (e.g. from the FMFP course) and
- Familiarity with SQL and databases
Further Information
Please contact or see group's project page.