The project MoReS aims at the transfer and enhancement of existing information-flow control techniques for the development of secure systems using the example of decision support systems in the area of public security. The security requirements of these systems are not only concerned with the confidentiality or integrity of data but also formulate restrictions on processes running in the system.
In MoReS we will develop in particular a framework to deal with these different types of requirements in a uniform formal way. We will investigate how these requirements can be refined during the system development process and decomposed along the components of the underlying architecture of the system under development. In particular we will develop techniques to decompose and compose security properies within service-oriented architectures used in the decision-support systems and analyse and adapt existing verification techniques to cope with the arising security requirements.
