基于组合测试的云连接工业控制系统安全性分析

Proceedings of the 17th ACM-IEEE International Conference on Formal Methods and Models for System Design Pub Date : 2019-10-09 DOI:10.1145/3359986.3361211

P. Tran-Jørgensen, T. Kulik, Jalil Boudjadar, P. Larsen

{"title":"基于组合测试的云连接工业控制系统安全性分析","authors":"P. Tran-Jørgensen, T. Kulik, Jalil Boudjadar, P. Larsen","doi":"10.1145/3359986.3361211","DOIUrl":null,"url":null,"abstract":"Industrial control systems are moving from monolithic to distributed and cloud-connected architectures, which increases system complexity and vulnerability, thus complicates security analysis. When exhaustive verification accounts for this complexity the state space being sought grows drastically as the system model evolves and more details are considered. Eventually this may lead to state space explosion, which makes exhaustive verification infeasible. To address this, we use VDM-SL's combinatorial testing feature to generate security attacks that are executed against the model to verify whether the system has the desired security properties. We demonstrate our approach using a cloud-connected industrial control system that is responsible for performing safety-critical tasks and handling client requests sent to the control network. Although the approach is not exhaustive it enables verification of mitigation strategies for a large number of attacks and complex systems within reasonable time.","PeriodicalId":331904,"journal":{"name":"Proceedings of the 17th ACM-IEEE International Conference on Formal Methods and Models for System Design","volume":"22 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-10-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Security analysis of cloud-connected industrial control systems using combinatorial testing\",\"authors\":\"P. Tran-Jørgensen, T. Kulik, Jalil Boudjadar, P. Larsen\",\"doi\":\"10.1145/3359986.3361211\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Industrial control systems are moving from monolithic to distributed and cloud-connected architectures, which increases system complexity and vulnerability, thus complicates security analysis. When exhaustive verification accounts for this complexity the state space being sought grows drastically as the system model evolves and more details are considered. Eventually this may lead to state space explosion, which makes exhaustive verification infeasible. To address this, we use VDM-SL's combinatorial testing feature to generate security attacks that are executed against the model to verify whether the system has the desired security properties. We demonstrate our approach using a cloud-connected industrial control system that is responsible for performing safety-critical tasks and handling client requests sent to the control network. Although the approach is not exhaustive it enables verification of mitigation strategies for a large number of attacks and complex systems within reasonable time.\",\"PeriodicalId\":331904,\"journal\":{\"name\":\"Proceedings of the 17th ACM-IEEE International Conference on Formal Methods and Models for System Design\",\"volume\":\"22 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-10-09\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 17th ACM-IEEE International Conference on Formal Methods and Models for System Design\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3359986.3361211\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 17th ACM-IEEE International Conference on Formal Methods and Models for System Design","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3359986.3361211","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

工业控制系统正从单片架构转向分布式和云连接架构，这增加了系统的复杂性和脆弱性，从而使安全分析复杂化。当详尽的验证说明了这种复杂性时，所寻求的状态空间会随着系统模型的发展和更多细节的考虑而急剧增长。最终，这可能导致状态空间爆炸，这使得详尽的验证是不可行的。为了解决这个问题，我们使用VDM-SL的组合测试特性来生成针对模型执行的安全攻击，以验证系统是否具有所需的安全属性。我们使用云连接的工业控制系统来演示我们的方法，该系统负责执行安全关键任务并处理发送到控制网络的客户端请求。虽然该方法并非详尽无遗，但它能够在合理的时间内验证针对大量攻击和复杂系统的缓解策略。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Security analysis of cloud-connected industrial control systems using combinatorial testing

Industrial control systems are moving from monolithic to distributed and cloud-connected architectures, which increases system complexity and vulnerability, thus complicates security analysis. When exhaustive verification accounts for this complexity the state space being sought grows drastically as the system model evolves and more details are considered. Eventually this may lead to state space explosion, which makes exhaustive verification infeasible. To address this, we use VDM-SL's combinatorial testing feature to generate security attacks that are executed against the model to verify whether the system has the desired security properties. We demonstrate our approach using a cloud-connected industrial control system that is responsible for performing safety-critical tasks and handling client requests sent to the control network. Although the approach is not exhaustive it enables verification of mitigation strategies for a large number of attacks and complex systems within reasonable time.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 17th ACM-IEEE International Conference on Formal Methods and Models for System Design

自引率

0.00%

发文量