Modeling Requirements for Security-enhanced Design of Embedded Systems

Ferrante, Alberto; Kaitovic, Igor; Milošević, Jelena

doi:10.5220/0005050003150320

Cited by 5 publications

(2 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To the best of our knowledge, only the works of References [31,32] and Reference [33] are similar to what we propose in terms of aiming at incorporating security as an objective that can be traded off with other objectives in the process of early DSE. In References [31,32], the authors introduce an UML-based approach in which application security requirements can be described together with security 'capabilities'-in addition to other extra-functional aspects such as performance and power consumption-of system components stored in a library. This then allows for a DSE process during which the application requirements are matched with the component capabilities.…”

Section: Related Workmentioning

confidence: 99%

A Case for Security-Aware Design-Space Exploration of Embedded Systems

Pimentel¹

2020

JLPEA

View full text Add to dashboard Cite

As modern embedded systems are becoming more and more ubiquitous and interconnected, they attract a world-wide attention of attackers and the security aspect is more important than ever during the design of those systems. Moreover, given the ever-increasing complexity of the applications that run on these systems, it becomes increasingly difficult to meet all security criteria. While extra-functional design objectives such as performance and power/energy consumption are typically taken into account already during the very early stages of embedded systems design, system security is still mostly considered as an afterthought. That is, security is usually not regarded in the process of (early) design-space exploration of embedded systems, which is the critical process of multi-objective optimization that aims at optimizing the extra-functional behavior of a design. This position paper argues for the development of techniques for quantifying the ’degree of secureness’ of embedded system design instances such that these can be incorporated in a multi-objective optimization process. Such technology would allow for the optimization of security aspects of embedded systems during the earliest design phases as well as for studying the trade-offs between security and the other design objectives such as performance, power consumption and cost.

show abstract

Section: Related Workmentioning

confidence: 99%

A Case for Security-Aware Design-Space Exploration of Embedded Systems

Pimentel¹

2020

JLPEA

View full text Add to dashboard Cite

show abstract

“…Ferrante et al [13] approach the issue of security requirements specification for embedded systems by defining a UML profile and developing an automatic process to generate system requirements from user requirements.…”

Section: Related Workmentioning

confidence: 99%

Formalization and co-simulation of attacks on cyber-physical systems

Bernardeschi

Domenici

Palmieri

2020

J Comput Virol Hack Tech

View full text Add to dashboard Cite

This paper presents a methodology for the formal modeling of security attacks on cyber-physical systems, and the analysis of their effects on the system using logic theories. We consider attacks only on sensors and actuators. A simulated attack can be triggered internally by the simulation algorithm or interactively by the user, and the effect of the attack is a set of assignments to the variables defined in the Controller. The global effects of the attacks are studied by injecting attacks in the system model and co-simulating the overall system, including the system dynamics and the control part. Interesting properties of the behaviour of the system under attack can also be formally proved by theorem proving. The INTO-CPS framework has been used for co-simulation, and the methodology is applied to the Line follower robot case study of the INTO-CPS project. The theorem prover of PVS has been used for deriving formal proofs of invariants of the system under attack.

show abstract

A framework for evaluating security risk in system design

Wortman

Chandy

2022

Discov Internet Things

View full text Add to dashboard Cite

Design and development of ubiquitous computer network systems has become increasingly difficult as technology continues to grow. From the introduction of new technologies to the discovery of existing threats, weaknesses, and vulnerabilities there is a constantly changing landscape of potential risks and rewards. The cyber security community, and industry at large, is learning to account for these increasing threats by including protections and mitigations from the beginning of the design V process. However, issues still come from limitations in time for thoroughly exploring a potential design space and the knowledge base required to easily account for potential vulnerabilities in each. To address this problem we propose the G-T-S framework, which is an automated tool that allows a user to provide a set of inputs relating to the desired design space and returns a monetary security risk evaluation of each. This methodology first generates a series of potential designs, then dissects their contents to associate possible vulnerabilities to device elements, and finally evaluates the security risk poised to a central asset of importance. We exemplify the tools, provide methodologies for required background research, and discuss the results in evaluating a series of IoT Home models using the GTS framework. Through implementation of our framework we simplify the information an individual will require to begin the design process, lower the bar for entry to perform evaluating security risk, and present the risk as an easily understood monetary metric.

show abstract

Modeling Requirements for Security-enhanced Design of Embedded Systems

Cited by 5 publications

References 10 publications

A Case for Security-Aware Design-Space Exploration of Embedded Systems

A Case for Security-Aware Design-Space Exploration of Embedded Systems

Formalization and co-simulation of attacks on cyber-physical systems

A framework for evaluating security risk in system design

Contact Info

Product

Resources

About