Skip to main content
SpringerLink
Log in

A language and a pattern system for temporal property specification: advanced metering infrastructure case study

  • Regular Contribution
  • Published:
International Journal of Information Security Aims and scope Submit manuscript

Abstract

Ensuring the satisfaction of security requirements is one of the most vital needs in developing different types of systems. Therefore, it is necessary to apply a method to accurately define security requirements and then, verify them in the design phase before starting system development. One of the key information security requirements is availability of system functionalities for authorized users. This type of requirement is especially important in real-time embedded systems (RTESs) because they are associated with hard temporal needs and deadlines, and if they are not satisfied the main functionality of the system will be interrupted. To make sure that the availability properties are correctly considered in the design of a system, a language is needed to specify different temporal constraints. This language should be applicable for system designers who do not have sufficient formal and mathematical knowledge. OCL is a high-level constraint specification language (based on UML modeling language) which is widely used by system designer teams, and therefore, it is appropriate for this purpose. However, OCL does not support specification of temporal properties. In this paper, using a hybrid logic-based and pattern-based approach, a language grammar based on OCL, named RTSL has been proposed. RTSL is able to specify different real-time temporal properties. To achieve this goal, we developed a comprehensive property specification pattern system which considers all qualitative, quantitative and probabilistic property patterns that is used as a guideline for property specification and language development.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Fig. 1
Fig. 2
Fig. 3
Fig. 4
Fig. 5

Similar content being viewed by others

References

  1. Object Management Group: Unified Modeling Language (UML) Specification. Version 2.5 (2015). OMG document formal/01 March 2015 [Online]. https://www.omg.org/spec/UML/2.5.1

  2. Object Management Group: Object Constraint Language (OCL) Specification. Version 2.4 (2014). OMG document formal/03 February 2014 [Online]. https://www.omg.org/spec/OCL/2.4/

  3. Jantsch, A.: Modeling embedded systems and SoC’s: concurrency and time in models of computation. Morgan Kaufmann, Burlington (2004)

    Google Scholar 

  4. Lee, E.A., Sangiovanni-Vincentelli, A.: A framework for comparing models of computation. IEEE Trans. Comput. Aided Des. Integr. Circuits Syst. 17(12), 1217–1229 (1998)

    Article  Google Scholar 

  5. Jantsch, A.: Models of Computation for Distributed Embedded Systems, pp. 1–3. CRC Press, Boca Raton (2009)

    Google Scholar 

  6. Furia, C.A., Mandrioli, D., Morzenti, A., Rossi, M.: Modeling time in computing: a taxonomy and a comparative survey. ACM Comput. Surv. 42(2), 6 (2010)

    Article  Google Scholar 

  7. Object Management Group: UML Profile for MARTE Specification. Version 1.2 (2019). OMG document formal/01 April 2019 [Online]. https://www.omg.org/spec/MARTE/1.2/

  8. Latif, K.A., Rauf, A., Nadeem, A.: Evaluation of UML-real time profiles for industrial control systems. In: International Conference on Information and Emerging Technologies (ICIET), pp. 1–5 (2010)

  9. Zhang, M., Mallet, F.: An executable semantics of clock constraint specification language and its applications. In: International Workshop on Formal Techniques for Safety-Critical Systems, pp. 37–51. Springer International Publishing (2015)

  10. André, C.: Syntax and semantics of the clock constraint specification language (CCSL). Ph.D. diss., INRIA (2009)

  11. Deantoni, J., André, C., Gascon, R.: CCSL denotational semantics. Ph.D. diss., Array (2014)

  12. Mallet, F., Millo, J.-V., Romenska, Y.: State-based representation of CCSL operators. Ph.D. diss., INRIA (2013)

  13. Mallet, F.: UML profile for MARTE: time model and CCSL. In: ICTERI, pp. 289–294 (2013)

  14. Deantoni, J., Mallet, F.: ECL: the event constraint language, an extension of OCL with events. Ph.D. diss., INRIA (2012)

  15. Kanso, B., Taha, S.: Temporal constraint support for OCL. In: International Conference on Software Language Engineering, pp. 83–103. Springer Berlin Heidelberg (2012)

  16. Dwyer, M.B., Avrunin, G.S., Corbett, J.C.: Patterns in property specifications for finite-state verification. In: Proceedings of the 21st International Conference on Software Programming, pp. 411–420 (1999)

  17. Dou, W., Bianculli, D., Briand, L.: OCLR: a more expressive, pattern-based temporal extension of OCL. In: European Conference on Modelling Foundations and Applications, pp. 51–66. Springer International Publishing (2014)

  18. Konrad, S., Cheng, B.H.: Real-time specification patterns. In: 27th International Conference on Software Engineering, 2005. ICSE 2005. Proceedings (pp. 372–381). IEEE (2005)

  19. Konrad, S., Cheng, B.H.C.: Defining and using real-time specification patterns for embedded systems. Technical Report of Michigan State University, MSUCSE-04-37, Revision of March 2006 (2006)

  20. Gruhn, V., Laue, R.: Patterns for timed property specifications. Electron. Notes Theor. Comput. Sci. 153(2), 117–133 (2006)

    Article  Google Scholar 

  21. Bellini, P., Nesi, P., Rogai, D.: Expressing and organizing real-time specification patterns via temporal logics. J. Syst. Softw. 82(2), 183–196 (2009)

    Article  Google Scholar 

  22. Grunske, L.: Specification patterns for probabilistic quality properties. In: ACM/IEEE 30th International Conference on Software Engineering, 2008. ICSE’08, pp. 31–40. IEEE (2008)

  23. Kwiatkowska, M.: Model checking for probability and time: from theory to practice. In: 18th Annual IEEE Symposium on Logic in Computer Science, 2003. Proceedings, pp. 351–360. IEEE (2003)

  24. Autili, M., Grunske, L., Lumpe, M., Pelliccione, P., Tang, A.: Aligning qualitative, real-time, and probabilistic property specification patterns using a structured English grammar. IEEE Trans. Softw. Eng. 41(7), 620–638 (2015)

    Article  Google Scholar 

  25. Ben-Ari, M.: Mathematical Logic for Computer Science. Springer, Berlin (2012)

    Book  Google Scholar 

  26. Bellini, P., Mattolini, R., Nesi, P.: Temporal logics for real-time system specification. ACM Comput. Surv. 32(1), 12–42 (2000)

    Article  Google Scholar 

  27. Alur, R., Henzinger, T.A.: Logics and models of real time: a survey. In: Workshop/School/Symposium of the REX Project (Research and Education in Concurrent Systems), pp. 74–106. Springer, Berlin (1991)

  28. Pnueli, A.: The temporal logic of programs. In: 18th Annual Symposium on Foundations of Computer Science, 1977, pp. 46–57. IEEE (1977)

  29. Clarke, E.M., Emerson, E.A.: Design and synthesis of synchronization skeletons using branching time temporal logic. In: Workshop on Logic of Programs, pp. 52–71. Springer, Berlin (1981)

  30. Ouaknine, J., Worrell, J.: Safety metric temporal logic is fully decidable. In: International Conference on Tools and Algorithms for the Construction and Analysis of Systems, pp. 411–425. Springer, Berlin (2006)

  31. Hunter, P., Ouaknine, J., Worrell, J.: When is metric temporal logic expressively complete? arXiv preprint arXiv:1209.0516 (2012)

  32. Bouyer, P.: Model-checking timed temporal logics. Electron. Notes Theor. Comput. Sci. 231, 323–341 (2009)

    Article  MathSciNet  Google Scholar 

  33. Baier, C., Katoen, J.-P., Larsen, K.G.: Principles of Model Checking. MIT Press, Cambridge (2008)

    MATH  Google Scholar 

  34. Baier, C., Haverkort, B., Hermanns, H., Katoen, J.-P.: Model-checking algorithms for continuous-time Markov chains. IEEE Trans. Softw. Eng. 29(6), 524–541 (2003)

    Article  Google Scholar 

  35. Mattolini, R., Nesi, P.: An interval logic for real-time system specification. IEEE Trans. Softw. Eng. 27(3), 208–227 (2001)

    Article  Google Scholar 

  36. Moszkowski, B.C.: Reasoning about digital circuits. No. STAN-CS-83-970. Department of Computer Science, Stanford University, CA (1983)

  37. Halpern, J., Manna, Z., Moszkowski, B.: A hardware semantics based on temporal intervals. In: International Colloquium on Automata. Languages, and Programming, pp. 278–291. Springer, Berlin (1983)

  38. Greer, C., Wollman, D.A., Prochaska, D.E., Boynton, P.A., Mazer, J.A., Nguyen, C.T., FitzPatrick, G.J., Nelson, T.L., Koepke, G.H., Hefner, A.R., et al.: Nist framework and roadmap for smart grid interoperability standards release 3.0, US National Institute of Standards and Technology. Technical report (2014)

  39. The Advanced Security Acceleration Project, “Security profile for advanced metering infrastructure,” OpenSG Users Group (2009) [online]. http://osgug.ucaiug.org/utilisec/amisec/Shared%20Documents/AMI%20Security%20Profile%20(ASAP-SG)/AMI%20Security%20Profile%20-%20v1_0.pdf

  40. Nhlabatsi, A., Nuseibeh, B., Yu, Y.: Security requirements engineering for evolving software systems: a survey. In: Security-Aware Systems Applications and Software Development Methods, pp. 108–128. IGI Global (2012)

  41. Ramesh, M.R.R., Reddy, C.S.: A survey on security requirement elicitation methods: classification, merits and demerits. Int. J. Appl. Eng. Res. 11(1), 64–70 (2016)

    Google Scholar 

  42. Muñante, D., Chiprianov, V., Gallon, L., Aniorté, P.: A review of security requirements engineering methods with respect to risk analysis and model-driven engineering. In: International Conference on Availability. Reliability, and Security, pp. 79–93. Springer, Cham (2014)

  43. Pub, F.I.P.S.: Standards for Security Categorization of Federal Information and Information Systems. NIST FIPS-199 (2004)

  44. Deng, Y., Shukla, S.: A distributed real-time event correlation architecture for SCADA security. In: International Conference on Critical Infrastructure Protection, pp. 81–93. Springer, Berlin (2013)

  45. SAE ARP4754A/EUROCAE ED-79A, Guidelines for Development of Civil Aircraft and Systems, December 21 (2010)

  46. SAE ARP 4761, Guidelines and Methods for Conducting the Safety Assessment Process on Civil Airborne Systems (1996)

  47. Bozzano, M., Cimatti, A., Pires, A.F., Jones, D., Kimberly, G., Petri, T., Robinson, R., Tonetta, S.: Formal design and safety analysis of AIR6110 wheel brake system. In: International Conference on Computer Aided Verification, pp. 518–535. Springer, Cham (2015)

  48. De Salvo, P., Fogarty, D.: Safety Issues with Requirements Definition, Validation, and Verification Processes. Federal Aviation Administration, Aviation Research Division, Springfield (2014)

    Google Scholar 

  49. Berhens, H.: Specification, design and implementation of a flight control unit for an unmanned aerial vehicle. Ph.D. diss., Stellenbosch University, Stellenbosch (2015)

  50. Tao, X., Zhu, Y., Mao, Y., Song, H., Liu, M., Liu, X., Sheng, W., Shi, W.: Designing ARINC653 partition constrained scheduling for secure real time embedded avionics. In: 2015 IEEE 2nd International Conference on Cyber Security and Cloud Computing, pp. 213–217. IEEE (2015)

  51. Gupta, A., Chandra, A.K., Luksch, P.: Real-Time and Distributed Real-Time Systems: Theory and Applications. CRC Press, Boca Raton (2016)

    Book  Google Scholar 

  52. Cazorla, F.J., Quiñones, E., Vardanega, T., Cucu, L., Triquet, B., Bernat, G., Berger, E., et al.: Proartis: probabilistically analyzable real-time systems. ACM Trans. Embed. Comput. Syst. 12(2s), 94 (2013)

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Amirkabir University of Technology, Tehran, Iran

    Tina Tavizi & Mehdi Shajari

Authors
  1. Tina Tavizi
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Mehdi Shajari
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Mehdi Shajari.

Ethics declarations

Conflict of interest

The authors declare that they have no conflict of interest.

Ethical approval

This article does not contain any studies with human participants or animals performed by any of the authors.

Additional information

Publisher's Note

Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.

Rights and permissions

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Tavizi, T., Shajari, M. A language and a pattern system for temporal property specification: advanced metering infrastructure case study. Int. J. Inf. Secur. 19, 695–710 (2020). https://doi.org/10.1007/s10207-019-00483-6

Download citation

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s10207-019-00483-6

Keywords

Search

Navigation