Accéder directement au contenu Accéder directement à la navigation
Communication dans un congrès

Security property modeling

Hiba Hnaini 1, 2 Luka Le Roux 2 Joël Champeau 2, 1 Ciprian Teodorov 1, 2
1 Lab-STICC_P4S - Equipe Processes for Safe and Secure Software and Systems
Lab-STICC - Laboratoire des sciences et techniques de l'information, de la communication et de la connaissance : UMR6285
Abstract : With the increasing number of cyber-attacks on cyber-physical systems, many security precautions and solutions have been suggested. However, most of these solutions aim to prevent the access of an adversary to the system. Though, with the increasing number of elements used in a system, and thus vulnerabilities, it is essential to study the risks introduced to the system to make the system itself efficient enough to react to the attacks once an attacker has obtained access. Analyzing and discovering the risks is the first step to making the system more resilient. This paper proposes a methodology that combines the qualitative risk analysis with formal methods (model checking) to identify the risks that were not recognized during testing or functional modeling phases. To examine this methodology, a car reservation system is modeled with an attacker, and then its security properties are verified using UPPAAL model checking tool. As a result, some risks were identified and tested for the possibility of them occurring and their effects on the system.
Type de document :
Communication dans un congrès
Liste complète des métadonnées

https://hal-ensta-bretagne.archives-ouvertes.fr/hal-03188864
Contributeur : Marie Briec <>
Soumis le : lundi 3 mai 2021 - 15:09:29
Dernière modification le : mercredi 5 mai 2021 - 09:19:56

Fichier

103882.pdf
Fichiers éditeurs autorisés sur une archive ouverte

Identifiants

Citation

Hiba Hnaini, Luka Le Roux, Joël Champeau, Ciprian Teodorov. Security property modeling. 7th International Conference on Information Systems Security and Privacy, ICISSP 2021, Feb 2021, Vienne - Virtual Online, Austria. pp.694-701, ⟨10.5220/0010388206940701⟩. ⟨hal-03188864⟩

Partager

Métriques

Consultations de la notice

58

Téléchargements de fichiers

1