Search papers, labs, and topics across Lattice.
xDECAF is an innovative framework designed for architecture-based data flow analysis, specifically targeting information security challenges. By integrating an extended metamodel of data flow diagrams with a domain-specific constraint language and a user-friendly browser-based editor, xDECAF enhances the analysis of labeled flows and nodes. The framework has been adopted by multiple research initiatives, demonstrating its practical utility and providing a curated dataset of over 20 example models for community use.
xDECAF transforms data flow analysis in information security with a robust framework that has already gained traction across several research lines.
xDECAF is an extensible tool for architecture-based data flow analysis with a focus on information security. It combines an extended data flow diagram metamodel of labeled flows and nodes, a domain-specific constraint language with different flow operations, and a browser-based editor backed by an analysis engine. In this paper, we present the xDECAF tool library and a curated catalog of over 20 example models with documented constraints and expected violations, intended as a reusable dataset for the community. The tool has already been adopted by several research lines, providing concrete evidence of its utility. The tool, dataset, and a hosted online editor are publicly available.