Accéder directement au contenu Accéder directement à la navigation
Article dans une revue

Formal verification of security pattern composition: application to SCADA

Fadi Obeid 1 Philippe Dhaussy 1
1 Lab-STICC_ENSTAB_ CACS_MOCS
Lab-STICC - Laboratoire des sciences et techniques de l'information, de la communication et de la connaissance
Abstract : Information security was initially required in specific applications, however, nowadays, most companies and even individuals are interested in securing their information assets. The new requirement can be costly, especially with the high demand on security solutions and security experts. Security patterns are reusable security solutions that prove to be efficient and can help developers achieve some security goals without the need for expertise in the security domain. Some security pattern combinations can be beneficial while others are inconsistent. Model checking can be used to verify the production of combining multiple security patterns with an architecture. Supervisory control and data acquisition (SCADA) systems control many of our critical industrial infrastructures. Due to their limitations, and their augmented connectivity, SCADA systems have many unresolved security issues. In this paper, we demonstrate how we can automatically generate a secure SCADA model based on an insecure one and how to verify the generated model.
Liste complète des métadonnées

https://hal.archives-ouvertes.fr/hal-02638911
Contributeur : Marie Briec <>
Soumis le : jeudi 28 mai 2020 - 11:03:59
Dernière modification le : mercredi 24 juin 2020 - 16:19:56

Identifiants

Citation

Fadi Obeid, Philippe Dhaussy. Formal verification of security pattern composition: application to SCADA. COMPUTING AND INFORMATICS, 2019, 38, pp.1149-1180. ⟨10.31577/cai.2019.5.1149⟩. ⟨hal-02638911⟩

Partager

Métriques

Consultations de la notice

27