Institutions | About Us | Help | Gaeilge
rian logo


Mark
Go Back
On the interplay between cyber and physical spaces for adaptive security
Tsigkanos, Christos; Pasquale, Liliana; Ghezzi, Carlo; Nuseibeh, Bashar
Ubiquitous computing is resulting in a proliferation of cyber-physical systems that host or manage valuable physical and digital assets. These assets can be harmed by malicious agents through both cyber-enabled or physically-enabled attacks, particularly ones that exploit the often ignored interplay between the cyber and physical world. The explicit representation of spatial topology is key to supporting adaptive security policies. In this paper we explore the use of Bigraphical Reactive Systems to model the topology of cyber and physical spaces and their dynamics. We utilise such models to perform speculative threat analysis through model checking to reason about the consequences of the evolution of topological configurations on the satisfaction of security requirements. We further propose an automatic planning technique to identify an adaptation strategy enacting security policies at runtime to prevent, circumvent, or mitigate possible security requirements violations. We evaluate our approach using a case study concerned with countering insider threats in a building automation system.
Keyword(s): security; topology; cloud computing; adaptation models; planning; wireless networks; servers
Publication Date:
2018
Type: Other
Peer-Reviewed: Yes
Language(s): English
Institution: University of Limerick
Funder(s): Science Foundation Ireland
Citation(s): info:eu-repo/grantAgreement/EC/FP7/227977
IEEE Transactions on Dependable and Secure Computing;15 (3), pp. 466-480
http://dx.doi.org/10.1109/TDSC.2016.2599880
227977
291652
Publisher(s): IEEE Computer Society
First Indexed: 2018-12-20 06:25:51 Last Updated: 2018-12-20 06:25:51