Fundamental Approaches to Software Engineering

Volume 3922 of the series Lecture Notes in Computer Science pp 33-47

Engineering Self-protection for Autonomous Systems

  • Manuel KochAffiliated withInstitut für Informatik, Freie Universität Berlin
  • , Karl PaulsAffiliated withInstitut für Informatik, Freie Universität Berlin


Security violations occur in systems even if security design is carried out or security tools are deployed. Social engineering attacks, vulnerabilities that can not be captured in the relatively abstract design model (as buffer-overflows), or unclear security requirements are only some examples of such unpredictable or unexpected vulnerabilities. One of the aims of autonomous systems is to react to these unexpected events through the system itself. Subsequently, this goal demands further research about how such behavior can be designed and sufficiently supported throughout the software development process. We present an approach to engineer self-protection rules for autonomous systems that is integrated into a model-driven software engineering process and provides concepts to formally verify that a given intrusion response model satisfies certain security requirements.