More Web Proxy on the site http://driver.im/

Article

Security check: a formal yet practical framework for secure software architecture

Author:

Arnab RayAuthors Info & Claims

NSPW '03: Proceedings of the 2003 workshop on New security paradigms

Pages 59 - 65

https://doi.org/10.1145/986655.986665

Published: 13 August 2003 Publication History

Abstract

With security becoming an important concern for both users as well as designers of large-scale software systems, it is necessary to introduce security considerations very early in the system development life-cycle namely in the modeling phase itself. But the main problem in the widespread adoption of security modeling has been that representations of even moderate-size systems consume so much memory (due to the infamous state space explosion problem) that designers are loathe to spend time increasing the complexity of their models by introducing security aspects in the design phase itself. In this paper we propose a technique called security check which entails taking small units of a system, putting them in a "security harness" that exercises relevant executions appropriately within the unit, and then model checking these more tractable units. For most systems whose security requirements are localized to individual system components or interactions between small numbers of components, security check offers a means of coping with state explosion. Another major benefit of security check is that it enables us to detect system vulnerabilities even when the attack behavior is not known. And for known attack patterns security check can provide models of suspicious behavior which can then be used for intrusion detection at a later stage.

References

[1]

B. Alpern and F. Schneider. Recognizing safety and liveness. Distributed Computing, 2(3): 117--126, 1987.]]

Digital Library

[2]

Thomas Ball and Sriram K. Rajamani. Bebop: A symbolic model checker for boolean programs. SPIN 2000 Workshop on Model Checking of Software, 2000.]]

Digital Library

[3]

E. M. Clarke, O. Grumberg, and D. A. Peled. Model Checking. MIT Press, Cambridge, Massachusetts, 2000.]]

Digital Library

[4]

R. Cleaveland, E. Madelaine, and S. Sims. A front-end generator for verification tools, pages 153--173.]]

[5]

R. Cleaveland, J. Parrow, and B. Steffen. The Concurrency Workbench: A semantics-based tool for the verification of finite-state systems. ACM Transactions on Programming Languages and Systems, 15(1):36--72, January 1993.]]

Digital Library

[6]

R. Cleaveland and S. Sims. The NCSU Concurrency Workbench. pages 394--397.]]

[7]

D. Harel. Statecharts:a visual formalism for complex systems. Science of Computer Programming,8, pages 231--274, 1987.]]

Digital Library

[8]

Dawson Engler, Benjamin Chelf, Andy Chou, and Seth Hallem. Checking system rules using system-specific, programmer-written compiler extensions. Operating Systems Design and Implementation, 2002.]]

[9]

David Evans, John Guttag, Jim Horning, and Yang Meng Tan. Lclint: A tool for using specifications to check code. SIGSOFT Symposium on the Foundations of Software Engineering, December 1994.]]

Digital Library

[10]

J.-C. Fernandez. An implementation of an efficient algorithm for bisimulation equivalence. Science of Computer Programming, 13:219--236, 1989/1990.]]

Digital Library

[11]

R. Focardi and R. Gorrieri. The compositional security checker:a tool for the verification of information flow security policies. IEEE Transactions on Software Engineering 23(9):550--571, September 1997.]]

Digital Library

[12]

Thomas A. Henzinger, Ranjit Jhala, Rupak Majumdar, and Gregoire Sutre. Lazy abstraction. ACM Principles Of Programming Languages, 2002.]]

Digital Library

[13]

P. Kanellakis and S. A. Smolka. CCS expressions, finite state processes, and three problems of equivalence. Information and Computation, 86(1):43--68, May 1990.]]

Digital Library

[14]

D. Kozen. Results on the propositional μ-calculus. Theoretical Computer Science, 27(3):333--354, December 1983.]]

[15]

Z. Manna and A. Pnueli. The Temporal Logic of Reactive and Concurrent Systems. Springer-Verlag, Berlin, 1992.]]

Digital Library

[16]

Faron Moller and Chris Tofts. A temporal calculus of communicating systems. Proceedings of CONCUR'90, 1990.]]

Digital Library

[17]

R. Paige and R. E. Tarjan. Three partition refinement algorithms. SIAM Journal of Computing, 16(6):973--989, December 1987.]]

Digital Library

[18]

G. D. Plotkin. A structural approach to operational semantics. Technical Report DAIMI-FN-19, Computer Science Department, Aarhus University, Aarhus, Denmark, 1981.]]

[19]

A. Pnueli. The temporal logic of programs. In 18th Annual Symposium on Foundations of Computer Science, pages 46--57, Providence, Rhode Island, October/November 1977. IEEE.]]

Digital Library

[20]

Arnab Ray and Rance Cleavel and. Unit verification: The cara experiences. To be published in Software Tools For Technology Transfer.]]

Digital Library

[21]

R. Cleaveland and S. Sims. Generic tools for verifying concurrent systems. Science of Computer Programming, 41(1):39--47, 2002.]]

[22]

R. Milner. A calculus of communicating systems. Lecture Notes in Computer Science, 1980.]]

Digital Library

[23]

Fred Schneider. A language-based approach to security. informatics: 10 years back, 10 years ahead. Lecture Notes in Computer Science, Volume 2000 (Reihnard Wilhelm, ed.), Springer-Verlag, 2000.]]

Digital Library

[24]

Fred Schneider. Enforcable security policies. ACM Transactions on Information and System Security, January 2000.]]

Digital Library

[25]

R. Sekar and P. Uppuluri. Synthesizing fast intrusion detection/prevention systems from high-level specifications. USENIX Security Symposium, 1999.]]

Digital Library

[26]

F. Simon. Aggregation and separation as non-interference properties. The Journal Of Computer Security, 1(2):159--188, 1992., 1992.]]

Cited By

Ouchani SDebbabi M(2018)Specification, verification, and quantification of security in model-based systemsComputing10.1007/s00607-015-0445-x97:7(691-711)Online publication date: 31-Dec-2018
https://dl.acm.org/doi/10.1007/s00607-015-0445-x
Heyman TScandariato RJoosen W(2009)Risk-Driven Architectural Decomposition2009 International Conference on Availability, Reliability and Security10.1109/ARES.2009.32(363-368)Online publication date: Mar-2009
https://doi.org/10.1109/ARES.2009.32

Security check: a formal yet practical framework for secure software architecture
1. Software and its engineering
  1. Software creation and management
    1. Software verification and validation
  2. Software organization and properties
    1. Software functional properties
      1. Formal methods

Recommendations

Check Point NGX R65 Security Administration
IoT Security: Practical guide book
Internet of Things security

The Internet of things (IoT) has recently become an important research topic because it integrates various sensors and objects to communicate directly with one another without human intervention. The requirements for the large-scale deployment of the IoT ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Conferences

NSPW '03: Proceedings of the 2003 workshop on New security paradigms

August 2003

127 pages

ISBN:1581138806

DOI:10.1145/986655

Editors:
Christian F. Hempelmann,
Victor Raskin,
General Chair:
O. Sami Saydjari,
Program Chairs:
Simon Foley,
R. Sekar

Copyright © 2003 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGSAC: ACM Special Interest Group on Security, Audit, and Control
ACSA: Applied Computing Security Assoc

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 13 August 2003

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Qualifiers

Article

Conference

NSPW03

Sponsor:

SIGSAC
ACSA

NSPW03: New Security Paradigms and Workshop

August 18 - 21, 2003

Ascona, Switzerland

Acceptance Rates

Overall Acceptance Rate 98 of 265 submissions, 37%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
791
Total Downloads

Downloads (Last 12 months)2
Downloads (Last 6 weeks)0

Reflects downloads up to 11 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

Ouchani SDebbabi M(2018)Specification, verification, and quantification of security in model-based systemsComputing10.1007/s00607-015-0445-x97:7(691-711)Online publication date: 31-Dec-2018
https://dl.acm.org/doi/10.1007/s00607-015-0445-x
Heyman TScandariato RJoosen W(2009)Risk-Driven Architectural Decomposition2009 International Conference on Availability, Reliability and Security10.1109/ARES.2009.32(363-368)Online publication date: Mar-2009
https://doi.org/10.1109/ARES.2009.32

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents