Using high-level synthesis and formal analysis to predict and preempt attacks on industrial control systems

Lerner, Lee W.; Franklin, Zane R.; Baumann, William T.; Patterson, Cameron

doi:10.1145/2554688.2554759

Cited by 6 publications

(1 citation statement)

References 1 publication

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The authors utilized semi-automatic co-verification methodology using a toolchain comprised of Boogie [34] as intermediate verification language, through Corral software verifier [160] and SMACK [210] for bit-precise checking with an ultimate goal of producing secure SoCs. The author of [165] consider that all software layers could be compromised and have developed an application specific hardware monitor based on a formally analysed C code and a junction box validated in a hardware description language with a goal to monitor the hardware controller for malicious activity. The authors model their hardware monitor in Frama-C [76] with Jessie plugin, allowing for automatic deductive verification using Why [98].…”

Section: Industrialmentioning

confidence: 99%

A Survey of Practical Formal Methods for Security

et al. 2022

View full text Add to dashboard Cite

In today’s world, critical infrastructure is often controlled by computing systems. This introduces new risks for cyber attacks, which can compromise the security and disrupt the functionality of these systems. It is therefore necessary to build such systems with strong guarantees of resiliency against cyber attacks. One way to achieve this level of assurance is using formal verification, which provides proofs of system compliance with desired cyber security properties. The use of Formal Methods (FM) in aspects of cyber security and safety-critical systems are reviewed in this article. We split FM into the three main classes: theorem proving, model checking and lightweight FM. To allow the different uses of FM to be compared, we define a common set of terms. We further develop categories based on the type of computing system FM are applied in. Solutions in each class and category are presented, discussed, compared and summarised. We describe historical highlights and developments and present a state-of-the-art review in the area of FM in cyber security. This review is presented from the point of view of FM practitioners and researchers, commenting on the trends in each of the classes and categories. This is achieved by considering all types of FM, several types of security and safety-critical systems and by structuring the taxonomy accordingly. The article hence provides a comprehensive overview of FM and techniques available to system designers of security-critical systems, simplifying the process of choosing the right tool for the task. The article concludes by summarising the discussion of the review, focusing on best practices, challenges, general future trends and directions of research within this field.

show abstract