Visible to the public A Framework for Threat-Driven Cyber Security Verification of IoT Systems

TitleA Framework for Threat-Driven Cyber Security Verification of IoT Systems
Publication TypeConference Paper
Year of Publication2018
AuthorsKulik, T., Tran-Jørgensen, P. W. V., Boudjadar, J., Schultz, C.
Conference Name2018 IEEE International Conference on Software Testing, Verification and Validation Workshops (ICSTW)
ISBN Number978-1-5386-6352-3
Keywordsalloy, Analytical models, attack patterns, Communication channels, compositionality, control systems, distributed control, distributed industrial control systems, formal verification, industrial control, industrial IoT infrastructures, Internet of Things, IoT, IoT systems, Metals, Metrics, mitigation strategies, model checking-based formal analysis, Modeling, Object oriented modeling, production engineering computing, pubcrawl, resilience, Resiliency, Scalability, scalable verification, security, security of data, security properties, Silicon, system deployment, system security, threat-driven cyber security verification

Industrial control systems are changing from monolithic to distributed and interconnected architectures, entering the era of industrial IoT. One fundamental issue is that security properties of such distributed control systems are typically only verified empirically, during development and after system deployment. We propose a novel modelling framework for the security verification of distributed industrial control systems, with the goal of moving towards early design stage formal verification. In our framework we model industrial IoT infrastructures, attack patterns, and mitigation strategies for countering attacks. We conduct model checking-based formal analysis of system security through scenario execution, where the analysed system is exposed to attacks and implement mitigation strategies. We study the applicability of our framework for large systems using a scalability analysis.

Citation Keykulik_framework_2018