Through the increasing interconnection between various systems, the need for confidential systems is increasing. Confidential systems share data only with authorized entities. However, estimating the confidentiality of a system is complex, and adjusting an already deployed software is costly. Thus, it is helpful to have confidentiality analyses, which can estimate the confidentiality already at design time. Based on an existing data-flow-based confidentiality analysis concept, we reimplemented a data flow analysis as a Java-based tool. The tool uses the software architecture to identify access violations based on the data flow. The evaluation for our tool indicates that we can analyze similar scenarios and scale for certain scenarios better than the existing analysis.

翻译：随着各种系统间互联程度的日益加深，对机密系统的需求也在不断增加。机密系统仅与授权实体共享数据。然而，评估系统的机密性十分复杂，且调整已部署的软件成本高昂。因此，能够在设计阶段预先评估机密性的分析方法具有重要价值。基于现有的数据流驱动的机密性分析概念，我们重新实现了一个基于Java的数据流分析工具。该工具利用软件架构，通过识别数据流中的访问违规行为来评估系统机密性。实验评估表明，该工具能够分析相似的场景，并在某些场景下相比现有分析方法具有更好的可扩展性。