We are organizing the second edition of the SecureMDE workshop (see our first edition: SecureMDE 2018), an international workshop on Security for and by Model-Driven Engineering. Co-located with the Models 2020 conference.
We believe there are at least two ways in which MDE and Security might be beneficially combined:
- Using MDE to support the development of secure systems (e.g. our model-based analysis of Java EE security configurations , the reverse engineering of database security policies, or the analysis of firewall configurations) and,
- Integrating security techniques in MDE (e.g. our security complaint model views, the watermarking and intellectual property of models) to give support to new development scenarios such as collaborative and distributed modeling.
In this sense, SecureMDE 2020 will provide a forum for presenting and discussing a wide range of topics related to the interplay between MDE and Security. Indeed, MDE has succeeded to play a key role in many critical tasks related to ICT security. However, new domains such as Internet of Things, Cyber-physical systems, Systems of Systems, and Blockchain-based technologies stress the limitations of previous work and pose new challenges to current model-driven security techniques. Moreover, the increased adoption of MDE in collaborative scenarios highlights the need for security for MDE itself in order to deal with requirements such as confidentiality and integrity.
The Second International Workshop on Security for and by Model-Driven Engineering seeks contributions that provide novel results, work-in-progress or experience results on the integration of security tools and techniques in MDE development. SecureMDE 2020 also looks forward to receiving papers summarizing the state-of-the art and future vision in the general field of MDE for the development and analysis of systems with security requirements.
Topics of the workshop will include (among others):
- Model-driven development of secure software and systems
- Domain-specific modeling languages (DSML) for secure software
- Modeling of access control and privacy policies
- Model-based generation of test cases for security policies
- Model-based dynamic security adaptation
- Model-based security reverse-engineering and analysis
- Model-based security evolution and co-evolution
- Model-based verification techniques for security properties
- Threats, vulnerability, and trust modeling
- Security systems and languages for MDE
- Cryptography and obfuscation for MDE
- IP protection for MDE
- Requirements for/needs in MDE security
- MDE for Block-chain technologies and Smart contracts
- Case studies and experience reports
- MDE for human/social side in security
- MDE using Artificial Intelligence to improve security
For more information and submission deadlines, check the webpage of the workshop at: https://modelia.github.io/secure-mde-workshop/
Salvador Martínez Pérez currently works at CEA-List lab (Paris) in collaboration with the SOM Research lab (Barcelona). Salvador does research in Computer Security, Reliability, Software Engineering, Software Evolution and core Model-driven engineering. Their current project is ‘Model-based Reverse Engineering.’