Correct-by-Construction Implementation of Runtime Monitors Using Stepwise Refinement

Zhang, Teng; Wiegley, John; Giannakopoulos, Theophilos; Eakman, Gregory; Pit-Claudel, Clément; Lee, Insup; Sokolsky, Oleg

doi:10.1007/978-3-319-99933-3_3

Cited by 6 publications

(4 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Aside from these methods, many existing approaches have utilized variants of the UML/SysML-style sequence diagram (e.g., Action Sequence Charts (ASCs) [21], Modal Sequence Diagram (MSD) [17,18]), semi-formal diagrams (e.g., process mining for scenario discovery [47]), and formal modeling languages (e.g., Petri Nets (PNs) [13], Hybrid Automata (HA) [6], and Extended Finite State Machine (EFSM) [52]).…”

Section: General-purpose Scenario Development Methodsmentioning

confidence: 99%

Literature Review to Collect Conceptual Variables of Scenario Methods for Establishing a Conceptual Scenario Framework

Baek¹,

Cho²,

Shin³

et al. 2022

Preprint

View full text Add to dashboard Cite

Over recent decades, scenarios and scenario-based software/system engineering have been actively employed as essential tools to handle intricate problems, validate requirements, and support stakeholders' communication. However, despite the widespread use of scenarios, there have been several challenges for engineers to more willingly utilize scenario-based engineering approaches (i.e., scenario methods) in their projects. First, the term scenario has numerous published definitions, thus lacking in a well-established shared understanding of scenarios and scenario methods. Second, the conceptual basis for engineers developing or employing scenarios is missing. To establish shared understanding and to find common denominators of scenario methods, this study leverages well-defined metamodeling and conceptualization that systematically investigate the concepts under analysis and define core entities and their relations. By conducting a semi-systematic literature review, conceptual variables are collected and conceptualized as a conceptual meta-model. As a result, this study introduces scenario variables (SVs) that represent constructs/semantics of scenario descriptions, according to 4 levels of constructs of a scenario method. To evaluate the comprehensibility and applicability of the defined variables, we analyze five existing scenario methods and their instances in automated driving system (ADS) domains. The results showed that our conceptual model and its constituent scenario variables adequately support the understanding of a scenario method and provide a means for comparative analysis between different scenario methods.

show abstract

Section: General-purpose Scenario Development Methodsmentioning

confidence: 99%

Literature Review to Collect Conceptual Variables of Scenario Methods for Establishing a Conceptual Scenario Framework

Baek¹,

Cho²,

Shin³

et al. 2022

Preprint

View full text Add to dashboard Cite

show abstract

“…When compared to the state of the art run-time monitoring techniques (e.g. [27], [28], [29]), ML-RSM demonstrates a number of improvements. Existing approaches support temporal logic to describe various behavioural properties of ICPS, which usually can model time-related properties observing historical data and cannot be directly associated with various implementation modules of ICPS to detect computational deviation attacks.…”

Section: Run-time Multi-layer Security Monitor Designmentioning

confidence: 99%

Securing Industrial Cyber–Physical Systems: A Run-Time Multilayer Monitoring

Khan

Tomić

2021

IEEE Trans. Ind. Inf.

View full text Add to dashboard Cite

Industrial Cyber-Physical Systems (ICPSs) are widely deployed in monitoring and control of the nation's critical industrial processes such as water distribution networks and power grids. ICPSs are the tight integration of cyber (software) and physical entities connected via communication networks. Communication networks are typically realised via wireless channels to reduce the cost of wires and installation. However, they are also inherently unreliable, easy to disrupt and subvert, which makes them a potential target for cyber attacks. The failure of communication can cause data loss or delays, which can compromise system functionality and have catastrophic consequences due to the strict real-time requirements of ICPSs. Current run-time security monitors protect ICPSs either at communication level (through network intrusion monitors) or application level (through threat detection monitors). Such monitors are layer-specific and thus fail to detect advanced threats arising from the multi-layer disruption. In this paper, we present a multi-layer run-time security monitor that can detect discrepancies caused by interdependent application and communication layer attacks and prevent their propagation into the system's control loops. We demonstrate the effectiveness of the approach via an example of the ICPS used for control and monitoring of a water distribution network.

show abstract

“…Primitive data types, arithmetic and logical operations are supported in SMEDL. The reader can refer to [13] for detailed description and formal semantics.…”

Section: Preliminariesmentioning

confidence: 99%

Overhead-Aware Deployment of Runtime Monitors

Zhang

Eakman

Lee

et al. 2019

Runtime Verification

Self Cite

View full text Add to dashboard Cite

One important issue needed to be handled when applying runtime verification is the time overhead introduced by online monitors. According to how monitors are deployed with the system to be monitored, the overhead may come from the execution of monitoring logic or asynchronous communication. In this paper, we present a method for deciding how to deploy runtime monitors with awareness of minimizing the overhead. We first propose a parametric model to estimate the overhead given the prior knowledge on the distribution of incoming events and the time cost of sending a message and executing monitoring logic. Then, we will discuss how to statically decide the boundary of synchronous and asynchronous monitors such that the lowest overhead can be obtained.

show abstract

Correct-by-Construction Implementation of Runtime Monitors Using Stepwise Refinement

Cited by 6 publications

References 30 publications

Literature Review to Collect Conceptual Variables of Scenario Methods for Establishing a Conceptual Scenario Framework

Literature Review to Collect Conceptual Variables of Scenario Methods for Establishing a Conceptual Scenario Framework

Securing Industrial Cyber–Physical Systems: A Run-Time Multilayer Monitoring

Overhead-Aware Deployment of Runtime Monitors

Contact Info

Product

Resources

About