使用系统建模语言检查可靠性和安全性的相互作用

B. Haan
{"title":"使用系统建模语言检查可靠性和安全性的相互作用","authors":"B. Haan","doi":"10.1109/RAMS.2008.4925842","DOIUrl":null,"url":null,"abstract":"System modeling language (OMG SysMLTM) is a graphical modeling language that has been developed to describe complex systems. It provides semantics and notations to describe complex systems independent of engineering tools and methodologies. The study summarized in this paper applied the SysML semantics and notation to provide a common reference for examining the interplay of reliability and security in complex systems. This paper briefly outlines elements of the articulation of reliability and security in SysML and presents general findings from the study of their interplay in the context of a hypothetical communication system. This review begins with a demonstration of defining desired system functionality using the SysML use case diagram. Additional use case diagrams are then created to model a malicious agent's desire to either disrupt or gain illegal access to a system. Because the use case can be used to define both legitimate and illegitimate functional applications of the system, reliability and security are identified as coherent concepts. Being coherent, the correlation of reliability and security will depend on their contextual separation. Contextual separation is built through associations from the use case diagram through other SysML constructs. These associations point to operating environment and operational periods linked to a particular use case and provides context for element-level reliability modeling. Functional expectations, operating conditions, and operational periods are linked to parametric diagrams that model individual facets of reliability and security. This contextually embeds reliability and security directly into the system model. The interplay between reliability and security occurs when associations to their embedded facets cross paths in the system model. It is found that the interaction is dependent on the form of the attack selected by a malicious agent. Systems that are highly reliable in the functional sense are typically secure against attacks aimed at simply halting functionality. In contrast, the security of that same system against forms of attack that exploit some system characteristic will depend on the attacker's knowledge of and access to the system.","PeriodicalId":143940,"journal":{"name":"2008 Annual Reliability and Maintainability Symposium","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2008-01-28","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Examination of the interplay of reliability and security using System Modeling Language\",\"authors\":\"B. Haan\",\"doi\":\"10.1109/RAMS.2008.4925842\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"System modeling language (OMG SysMLTM) is a graphical modeling language that has been developed to describe complex systems. It provides semantics and notations to describe complex systems independent of engineering tools and methodologies. The study summarized in this paper applied the SysML semantics and notation to provide a common reference for examining the interplay of reliability and security in complex systems. This paper briefly outlines elements of the articulation of reliability and security in SysML and presents general findings from the study of their interplay in the context of a hypothetical communication system. This review begins with a demonstration of defining desired system functionality using the SysML use case diagram. Additional use case diagrams are then created to model a malicious agent's desire to either disrupt or gain illegal access to a system. Because the use case can be used to define both legitimate and illegitimate functional applications of the system, reliability and security are identified as coherent concepts. Being coherent, the correlation of reliability and security will depend on their contextual separation. Contextual separation is built through associations from the use case diagram through other SysML constructs. These associations point to operating environment and operational periods linked to a particular use case and provides context for element-level reliability modeling. Functional expectations, operating conditions, and operational periods are linked to parametric diagrams that model individual facets of reliability and security. This contextually embeds reliability and security directly into the system model. The interplay between reliability and security occurs when associations to their embedded facets cross paths in the system model. It is found that the interaction is dependent on the form of the attack selected by a malicious agent. Systems that are highly reliable in the functional sense are typically secure against attacks aimed at simply halting functionality. In contrast, the security of that same system against forms of attack that exploit some system characteristic will depend on the attacker's knowledge of and access to the system.\",\"PeriodicalId\":143940,\"journal\":{\"name\":\"2008 Annual Reliability and Maintainability Symposium\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-01-28\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2008 Annual Reliability and Maintainability Symposium\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/RAMS.2008.4925842\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 Annual Reliability and Maintainability Symposium","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/RAMS.2008.4925842","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 1

摘要

系统建模语言(OMG SysMLTM)是一种用于描述复杂系统的图形化建模语言。它提供语义和符号来描述独立于工程工具和方法的复杂系统。本文总结的研究应用SysML语义和符号,为研究复杂系统中可靠性和安全性的相互作用提供了一个通用的参考。本文简要概述了SysML中可靠性和安全性的表达要素,并介绍了在假设的通信系统中对它们的相互作用进行研究的一般结果。这个回顾从使用SysML用例图定义所需系统功能的演示开始。然后创建额外的用例图来模拟恶意代理破坏或非法访问系统的愿望。因为用例可以用来定义系统的合法和非法的功能应用程序,所以可靠性和安全性被确定为一致的概念。由于可靠性和安全性是一致的,它们之间的相关性取决于它们的上下文分离。上下文分离是通过从用例图到其他SysML构造的关联来构建的。这些关联指向与特定用例相关联的操作环境和操作周期,并为元素级可靠性建模提供上下文。功能期望、操作条件和操作周期与参数图相关联,这些参数图对可靠性和安全性的各个方面进行建模。这在上下文中将可靠性和安全性直接嵌入到系统模型中。当与它们的嵌入式方面的关联在系统模型中交叉时,可靠性和安全性之间就会发生相互作用。发现交互依赖于恶意代理选择的攻击形式。在功能意义上高度可靠的系统通常是安全的,不会受到旨在简单停止功能的攻击。相反,同一系统抵御利用某些系统特征的各种攻击的安全性将取决于攻击者对系统的了解和访问权限。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
Examination of the interplay of reliability and security using System Modeling Language
System modeling language (OMG SysMLTM) is a graphical modeling language that has been developed to describe complex systems. It provides semantics and notations to describe complex systems independent of engineering tools and methodologies. The study summarized in this paper applied the SysML semantics and notation to provide a common reference for examining the interplay of reliability and security in complex systems. This paper briefly outlines elements of the articulation of reliability and security in SysML and presents general findings from the study of their interplay in the context of a hypothetical communication system. This review begins with a demonstration of defining desired system functionality using the SysML use case diagram. Additional use case diagrams are then created to model a malicious agent's desire to either disrupt or gain illegal access to a system. Because the use case can be used to define both legitimate and illegitimate functional applications of the system, reliability and security are identified as coherent concepts. Being coherent, the correlation of reliability and security will depend on their contextual separation. Contextual separation is built through associations from the use case diagram through other SysML constructs. These associations point to operating environment and operational periods linked to a particular use case and provides context for element-level reliability modeling. Functional expectations, operating conditions, and operational periods are linked to parametric diagrams that model individual facets of reliability and security. This contextually embeds reliability and security directly into the system model. The interplay between reliability and security occurs when associations to their embedded facets cross paths in the system model. It is found that the interaction is dependent on the form of the attack selected by a malicious agent. Systems that are highly reliable in the functional sense are typically secure against attacks aimed at simply halting functionality. In contrast, the security of that same system against forms of attack that exploit some system characteristic will depend on the attacker's knowledge of and access to the system.
求助全文
通过发布文献求助,成功后即可免费获取论文全文。 去求助
来源期刊
自引率
0.00%
发文量
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信