search menu icon-carat-right cmu-wordmark

Automated Assurance of Security Policy Enforcement (2017)

Poster for a research project on safety-critical system security policy enforcement

Software Engineering Institute


As DoD mission and safety-critical systems become increasingly connected, exposure due to security infractions is likewise increasing. This project developed techniques to detect vulnerabilities early in the lifecycle in architecture models by producing tools to

  • detect security policy violations early
  • assure that the system implementation enforces the policies and that no security risks are introduced by the runtime architecture
  • automate the execution of security assurance plans

Tools produced in this project have been released under an open-source license and are available on the SEI Github code repository (