Specification, detection, and treatment of STRIDE threats for software components: Modeling, formal methods, and tool support

Rouland, Quentin; Hamid, Brahim; Jaskolka, Jason

doi:10.1016/j.sysarc.2021.102073

Cited by 26 publications

(11 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…3) Component Layer: The Component layer meta-model defines concepts related to the engineering of components (logical/physical). In the present context, we reuse the Component-Port-Connector (CPC) model presented in [20], with message passing-based communication primitives. It provides a recognized way of visualizing the system's structural and behavioral aspects, constituting the "component view" of the model.…”

Section: A Three-layered System Meta-model 1) Mission Layermentioning

confidence: 99%

Facilitating Safety and Security Co-design and Formal Analysis in Multi-layered System Modeling

Quamara

Pedroza

Hamid

2022

2022 IEEE Intl Conf on Dependable, Autonomic and Secure Computing, Intl Conf on Pervasive Intelligence and Computing, Intl Conf

Self Cite

View full text Add to dashboard Cite

The engineering process of systems deployed in critical domains (e.g., automotive) advocates for early-stage integrated analysis of safety and security concerns, given their mutual influence. Specifically, in the design phase, safety and security requirements undergo a transition to the system architectural design across different granular and conceptual representations. However, such an enrichment process is often complex and lacks preliminary guidance to consistently break down high-level system specifications and requirements into intricate architecture and deployment. In particular, engineers require further support to interpret diverse system, safety, and security expertise and facilitate the consistent passage of knowledge pertaining to these disciplines for automated analysis. To this end, we propose an approach to facilitate the joint design and formal analysis of system safety and security concerns. Notably, the approach aims for a three-layered system modeling, integrating mission, functional and component views, and also, reusable libraries of pre-defined safety and security properties, specialize-able across them. We couple the Model-Driven Engineering (MDE) paradigm and Formal Methods (FM) for the hierarchical-precise modeling, formal interpretation, and verification of model views w.r.t. the desired properties. The accompanying tool-chain support for approach instantiation builds upon Papyrus as a modeling framework and Rodin as a formal-based tool for verification. The proposed approach is illustrated via a Connected-Driving Vehicles (CDVs) use case.

show abstract

Section: A Three-layered System Meta-model 1) Mission Layermentioning

confidence: 99%

Facilitating Safety and Security Co-design and Formal Analysis in Multi-layered System Modeling

Quamara

Pedroza

Hamid

2022

2022 IEEE Intl Conf on Dependable, Autonomic and Secure Computing, Intl Conf on Pervasive Intelligence and Computing, Intl Conf

Self Cite

View full text Add to dashboard Cite

show abstract

“…This conceptual model captures two different viewsmission specification and property specification, where the latter extends the former. Some of the representative elements constituting this model are semantically inherited from the state-of-the-art artifacts proposed for rigorously defining the missions [17]- [21] and properties [22]. The meta-models corresponding to the aforementioned views are discussed in the following sub-sections, where both are implemented as UML profiles to provide a standardized modeling environment.…”

Section: A Modeling System Missions and Safety-security Objectivesmentioning

confidence: 99%

“…In some recent efforts, formal logics, like FOL and temporal logic, are used for rigorous specification of safety and security properties [22], [34], [35]. Some of these works (e.g., [34]) are nonetheless less oriented to cover integrated specification of high-level safety and security properties.…”

Section: Related Work and Positioningmentioning

confidence: 99%

See 1 more Smart Citation

Multi-layered Model-based Design Approach towards System Safety and Security Co-engineering

Quamara

Pedroza

Hamid

2021

2021 ACM/IEEE International Conference on Model Driven Engineering Languages and Systems Companion (MODELS-C)

Self Cite

View full text Add to dashboard Cite

The integration of safety and security concerns in critical domains (e.g., Cyber-Physical Systems (CPSs)) is of utmost importance, and should be conducted in early design phases of system engineering process. Within a Model-Based System Engineering (MBSE) context, safety and security requirements cascade-down across models and views, thus contributing to the detailed missions, functions, and lastly, the architecture. Such enrichment process is often complex and lacks guidance to consistently breakdown high-level mission-centric system specifications into the detailed architecture. In particular, nonsavvy safety and security engineers require support to facilitate integration and verification of stringent safety constraints and security exigencies. In this regard, we propose a multi-layered design approach that leverages existing techniques like Model-Driven Engineering (MDE) and formal methods, to facilitate integrated verification of high-level safety and security objectives that can be further specialized across different representations (i.e. mission, functional, and architectural) of the system. The overall approach is validated based upon a Connected Driving Vehicles (CDVs) case study, and using Eclipse Papyrus and Rodin as experimentation tools.

show abstract

“…Rouland et al [14,28] continue their metamodel definition with the addition of a component action-based specification, and a component and connector property specification metamodel. They describe possible actions of components by using messages in the system and then verify the absence of threats, defined by Microsoft's STRIDE methodology, in the modelled system's communication scheme.…”

Section: Metamodel Originsmentioning

confidence: 99%

Modular Verification of Hierarchical Component-Based Software Systems

Baak¹

View full text Add to dashboard Cite

Using Component-based Software Engineering approaches with Formal Methods has seen an influx of interest in the recent decades. The joining of these two disciplines have been stifled though due to unclear component specifications and expensive formal verification techniques, which hurt the reusability and scalability of complex software systems. In this work, we expand on current component-port-connector metamodels for formally specifying a system's architectural and behavioural requirements into a hierarchical component system structure by using abstract Composite Components.The Composite Components of a system model can then utilize modular verification for isolating the verification process into modules surrounding Composite Components and generating higher level properties. We formalize our metamodel in Alloy 6 and present a template for specifying system properties for modular verification which enables the reuse of previous verification efforts on satisfied modules. We conclude with an example case study system and analysis of the modular verification strategy.iii I would like to express my sincere gratitude to Professor Jason Jaskolka whose continuous encouragement and support in this project, academic journey, and pandemic enabled me to explore my own ideas while building off of the shoulders of giants before me. I thank the members of the CyberSEA Lab at Carleton for listening and providing valuable feedback on my work and ideas that further improved my research.I would especially like to thank Quentin Rouland whose vision and support propelled the project.Of course, I wouldn't have been able to begin or finish this journey without the constant love and support from my family and friends whose encouragement drove me through this difficult yet rewarding process. I would also like to thank Ericsson and Carleton for their Fellowship opportunity which supported the project financially and provided me the chance to present my work and ideas on formal methods to Ericsson employees and fellow scholars.

show abstract

Specification, detection, and treatment of STRIDE threats for software components: Modeling, formal methods, and tool support

Cited by 26 publications

References 15 publications

Facilitating Safety and Security Co-design and Formal Analysis in Multi-layered System Modeling

Facilitating Safety and Security Co-design and Formal Analysis in Multi-layered System Modeling

Multi-layered Model-based Design Approach towards System Safety and Security Co-engineering

Modular Verification of Hierarchical Component-Based Software Systems

Contact Info

Product

Resources

About