A Framework for Threat-Driven Cyber Security Verification of IoT Systems
| Title | A Framework for Threat-Driven Cyber Security Verification of IoT Systems |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Kulik, T., Tran-Jørgensen, P. W. V., Boudjadar, J., Schultz, C. |
| Conference Name | 2018 IEEE International Conference on Software Testing, Verification and Validation Workshops (ICSTW) |
| ISBN Number | 978-1-5386-6352-3 |
| Keywords | alloy, Analytical models, attack patterns, Communication channels, compositionality, control systems, distributed control, distributed industrial control systems, formal verification, industrial control, industrial IoT infrastructures, Internet of Things, IoT, IoT systems, Metals, Metrics, mitigation strategies, model checking-based formal analysis, Modeling, Object oriented modeling, production engineering computing, pubcrawl, resilience, Resiliency, Scalability, scalable verification, security, security of data, security properties, Silicon, system deployment, system security, threat-driven cyber security verification |
| Abstract | Industrial control systems are changing from monolithic to distributed and interconnected architectures, entering the era of industrial IoT. One fundamental issue is that security properties of such distributed control systems are typically only verified empirically, during development and after system deployment. We propose a novel modelling framework for the security verification of distributed industrial control systems, with the goal of moving towards early design stage formal verification. In our framework we model industrial IoT infrastructures, attack patterns, and mitigation strategies for countering attacks. We conduct model checking-based formal analysis of system security through scenario execution, where the analysed system is exposed to attacks and implement mitigation strategies. We study the applicability of our framework for large systems using a scalability analysis. |
| URL | https://ieeexplore.ieee.org/document/8411736 |
| DOI | 10.1109/ICSTW.2018.00033 |
| Citation Key | kulik_framework_2018 |
- scalable verification
- model checking-based formal analysis
- modeling
- Object oriented modeling
- production engineering computing
- pubcrawl
- resilience
- Resiliency
- Scalability
- mitigation strategies
- security
- security of data
- Security Properties
- Silicon
- system deployment
- system security
- threat-driven cyber security verification
- Alloy
- Metrics
- Metals
- IoT systems
- IoT
- Internet of Things
- industrial IoT infrastructures
- industrial control
- formal verification
- distributed industrial control systems
- distributed control
- control systems
- Compositionality
- Communication channels
- attack patterns
- Analytical models