Abstract
Nowadays, safety-critical control systems are becoming increasingly open and interconnected. Therefore, while engineering a safety-critical system, we should guarantee that the system safety is not jeopardised by the security attacks. However, often the security requirements are not uncovered until the late design stages. Hence, there is a clear need for the modelling techniques that enable a formal reasoning about safety and security interdependencies at the early stages of the system development. In this work, we present a formal approach that allows the designers to uncover the implicit security requirements that are implied by the explicit system-level safety goals. We rely on modelling and refinement in Event-B to systematically uncover mutual interdependencies between safety and security and derive the constraints that should be imposed on the system to guarantee its safety in the presence of accidental and malicious faults.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
J.R. Abrial, Modeling in Event-B (Cambridge University Press, Cambridge, 2010)
G. Babi, Y.A. Ameur, N.K. Singh, M. Pantel, A system substitution mechanism for hybrid systems in event-B. ICFEM 2016, 106–121 (2016)
A. Cimatti, R. DeLong, D. Marcantonio, S. Tonetta, Combining MILS with contract-based design for safety and security requirements, in SAFECOMP 2015 Workshops. LNCS, vol. 9338 (Springer, Berlin, 2015), pp. 264–276
I.N. Fovino, M. Masera, A.D. Cian, Integrating cyber attacks within fault trees. Rel. Eng. Sys. Safety 94(9), 1394–1402 (2009)
A. Iliasov, A. Romanovsky, L. Laibinis, E. Troubitsyna, T. Latvala, Augmenting event-B modelling with real-time verification, in FormSERA 2012 (IEEE, Piscataway, 2012), pp. 51–57
A. Iliasov, E. Troubitsyna, L. Laibinis, l. Romanovsky, K. Varpaaniemi, D. Ilic, T. Latvala, Developing mode-rich satellite software by refinement in event-B. Sci. Comput. Program. 78(7), 884–905 (2013)
A. Iliasov, E. Troubitsyna, L. Laibinis, A. Romanovsky, Patterns for refinement automation, in FMCO 2009. LNCS, vol. 6286 (Springer, Berlin, 2010), pp. 70–88
A. Iliasov, E. Troubitsyna, L. Laibinis, A. Romanovsky, K. Varpaaniemi, D. Ilic, T. Latvala, Supporting reuse in event-B development: Modularisation approach, in ABZ 2010 (Springer, Berlin, 2010), pp. 174–188
S. Kriaa, M. Bouissou, F. Colin, Y. Halgand, L. Piètre-Cambacédès, Safety and security interactions modeling using the BDMP formalism: case study of a PipeliLeve, in SAFECOMP 2014. LNCS, vol. 8666 (Springer, Berlin, 2014), pp. 326–341
L. Laibinis, E. Troubitsyna, Fault tolerance in a layered architecture: A general specification pattern in B, in SEFM 2004 (IEEE Computer Society, Washington, D.C., 2004), pp. 346–355
L. Laibinis, E. Troubitsyna, Refinement of fault tolerant control systems in B, in Proceedings of the SAFECOMP 2004, vol. 3219 (Springer, Berlin, 2004), pp. 254–268
N.G. Leveson, Safeware: System Safety and Computers (Addison-Wesley, Boston, 1995)
A. McIver, C. Morgan, E. Troubitsyna, The probabilistic steam boiler: A case study in probabilistic data refinement, in Proceedings of the International Refinement Workshop (Springer, Berlin, 1998), pp. 250–265
D.L. Parnas, J. Madey, Functional documents for computer systems. Sci. Comput. Program. 25, 41–61 (1995)
L.M. Patcas, M. Lawford, T. Maibaum, Implementability of requirements in the four-variable model. Sci. Comput. Program. 111, 339–362 (2015)
S. Paul, L. Rioux, Over 20 years of research into cybersecurity and safety engineering: A short bibliography, in Safety and Security Engineering VI (WIT Press, Southampton, 2015), p. 335
C. Ponsard, G. Dallons, P. Massone, Goal-oriented co-engineering of security and safety requirements in cyber-physical systems, in SAFECOMP 2016 Workshops DECS (Springer International Publishing, Berlin, 2016), pp. 334–345
Y. Prokhorova, L. Laibinis, E. Troubitsyna, K. Varpaaniemi, T. Latvala, Derivation and formal verification of a mode logic for layered control systems, in 18th Asia Pacific Software Engineering Conference, APSEC 2011 (IEEE Computer Society, Washington, D.C., 2011), pp. 49–56
Rodin: Event-B Platform. http://www.event-b.org/
C. Schmittner, Z. Ma, P. Puschner, Limitation and improvement of STPA-Sec for safety and security co-analysis, in SAFECOMP Workshops 2016. LNCS, vol. 9923 (Springer, Berlin, 2016), pp. 195–209
C. Schmittner, Z. Ma, P. Smith, FMVEA for safety and security analysis of intelligent and cooperative vehicles, in SAFECOMP Workshops 2014. LNCS, vol. 8696 (Springer, Berlin, 2014), pp. 282–288
K. Sere, E. Troubitsyna, Probabilities in action systems, in Proceedings of the 8th Nordic Workshop on Programming Theory, pp. 373–387 (1996)
K. Sere, E. Troubitsyna, Safety analysis in formal specification, in FM’99 - Proceedings, Volume II. LNCS, vol. 1709 (Springer, Berlin, 1999), pp. 1564–1583
A. Tarasyuk, E. Troubitsyna, L. Laibinis, Integrating stochastic reasoning into event-b development. Formal Asp. Comput. 27(1), 53–77 (2015)
E. Troubitsyna, Elicitation and specification of safety requirements, in The Third International Conference on Systems, ICONS 2008 (IEEE Computer Society, Washington, D.C., 2008), pp. 202–207
E. Troubitsyna, Stepwise Development of Dependable Systems. Technical Report (Turku Centre for Computer Science, 2000)
Troubitsyna, E., Laibinis, L., Pereverzeva, I., Kuismin, T., Ilic, D., Latvala, T.: Towards Security-Explicit Formal Modelling of Safety-Critical Systems. In: SAFECOMP 2016, Proceedings. LNCS, vol. 9922, pp. 213–225. Springer (2016)
E. Troubitsyna, L. Laibinis, I. Pereverzeva, T. Kuismin, D. Ilic, T. Latvala, Towards security-explicit formal modelling of safety-critical systems, in SAFECOMP 2016. LNCS, vol. 9922 (Springer, Berlin, 2016), pp. 213–225
I. Vistbakka, E. Troubitsyna, T. Kuismin, T. Latvala, Co-engineering safety and security in industrial control systems: A formal outlook, in SERENE 2017, Proceedings. LNCS, vol. 10479 (Springer, Berlin, 2017), pp. 96–114
W. Young, N.G. Leveson, An integrated approach to safety and security based on systems theory. Commun. ACM 57(2), 31–35 (2014)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 Springer Nature Singapore Pte Ltd.
About this chapter
Cite this chapter
Vistbakka, I., Troubitsyna, E. (2021). Deriving Implicit Security Requirements in Safety-Explicit Formal Development of Control Systems. In: Ait-Ameur, Y., Nakajima, S., Méry, D. (eds) Implicit and Explicit Semantics Integration in Proof-Based Developments of Discrete Systems. Springer, Singapore. https://doi.org/10.1007/978-981-15-5054-6_6
Download citation
DOI: https://doi.org/10.1007/978-981-15-5054-6_6
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-15-5053-9
Online ISBN: 978-981-15-5054-6
eBook Packages: Computer ScienceComputer Science (R0)