CNRS PICS Project MBSAR (2013-2015)

MBSAR (Model-Based Security Analysis at Runtime) is a collaboration between the Software Assurance Lab from Colorado State University and the Triskell team at IRISA. MBSAR is a 3-year project (2013-2015) funded by the CNRS in the context of the program PICS.

logo-IRISA                    logocnrs                    csulogo

The CNRS PICS project MBSAR finished in December 2015. Please, refer to the activity reports for more information (2013, 2014 and 2015).

On the Globalization at Runtime of Modeling Languages

MBSAR will focus on secure software engineering for the Future Internet. Software intensive systems for the Future Internet pervade numerous sectors in our societies (e.g., assisted living, energy). These applications assemble distributed software services and are deployed in dynamically changing and open environments, and thus they need to adapt their behavior at runtime. Developing and evolving these highly-adaptable software systems is very challenging. This, and the fact that many of these systems play critical roles in societies, highlights the need for research that aims to develop scalable runtime analysis and adaptation techniques. MBSAR will leverage the complementary expertise of CSU and IRISA to develop model-based techniques for runtime analysis and enforcement of security policies in adaptive software systems. In particular we will focus on the development of a model typing theory to support rigorous compositional adaptation, and runtime analysis of security properties.

Principal Investigators


Software intensive applications for the Future Internet assemble software services distributed over multiple devices. These software applications are deployed in dynamic and open environments. The environments are dynamic because the availability of services and support resources varies in time, and open because new clients and providers can move in and out of the environments over time. These applications are also used in sectors that provide critical services to society, for example, assisted living and energy management. Furthermore, these applications often manipulate data and resources that must be protected from unauthorized access. Model-Driven Software Development provides effective concepts and techniques for modeling and analyzing security and other system integrity concerns at design time. However, in a dynamic and open environment, software systems have to adapt to dynamic environments after deployment. This makes it necessary to analyze the system at runtime to ensure that the system still fulfills security and other integrity requirements.

System monitoring and reflection mechanisms can be used to extract and maintain abstract views (models) of a system at runtime. These models at runtime can serve to reason about runtime adaptation of software systems, as well as to analyze the changes required by an adaptation. MBSAR focuses on extending the applicability of Model-Driven Software Development to adaptive systems. In particular, we investigate the use of models at runtime to support the evolution and analysis at runtime.

The core principle of models at runtime is to include, in the running system, a set of models. Each model presents a perspective that serves specific reasoning and analysis purposes, with respect to software adaptation at runtime. For example, it is possible to embed (1) an architecture model in a running system that captures the deployed structure of the system, (2) a variability model that captures the set of features that can be used to vary behavior at runtime, and (3) a security access control policy model that determines how users access the resources of the system.

Models at runtime raise a number of difficult challenges for the design and deployment of adaptive software. MBSAR focuses on the issues related to runtime analysis. In particular we focus on three related topics:

  • Model composition and model typing ;
  • Runtime analysis of security properties ;
  • Empirical evaluation of proposed solutions.


Past events

  • September, 2015: One paper accepted in the Journal of Object Technology, and will be published in open access.
  • March, 2015: Organization of the workshop Sustainability’15 on Next Generation of Modularity Approaches for Multiple Dimensions of Sustainability (co-located with Modularity’15).
  • February, 2015: It is with considerable sadness that we learned of the passing of Prof. Robert B. France, on Sunday, February 15th, 2015 at 19h50
  • October-November, 2014: Robert B. France will spend 2 months at IRISA working on model typing and language interfaces (supported by the Inria Intl. Chair)
  • October, 2014: Organization of the Dagstuhl seminar #14412 on the globalization of Domain-Specific Languages.
  • June, 2014: One paper accepted in IEEE Computer, and will be published in the issue of June.
  • June, 2014: Benoit Combemale and Benoit Baudry will spend 1 week at CSU working on model-based security and testing
  • October, 2013: One paper accepted in the foundation track of the SLE 2013 conference, and will be published in Springer’s Lecture Notes in Computer Science series.
  • October, 2013: One paper accepted in the foundation track of the MODELS 2013 conference, and will be published in Springer’s Lecture Notes in Computer Science series.
  • June, 2013: One paper accepted in the foundation track of the ECMFA 2013 conference, and published in Springer’s Lecture Notes in Computer Science series.
  • May, 2013: Benoit Baudry will spend 1 week at CSU working on model-based security and testing
  • May, 2013: Benoit Baudry and Benoit Combemale will attend the MiSE’13 workshop, and meet together with Robert B. France
  • February, 2013: Benoit Combemale spend 2 weeks at CSU working on model typing and variability management in modeling languages
  • January, 2013: the project is accepted by the CNRS and the website is online!