Modeling security in cyber–physical systems

International Journal of Critical Infrastructure Protection - Tập 5 - Trang 118-126 - 2012
Mike Burmester1, Emmanouil Magkos2, Vassilis Chrissikopoulos2
1Department of Computer Science, Florida State University, Tallahassee, Florida 32306-4530, USA
2Department of Informatics, Ionian University, Tsirigoti Square 7, 49100 Corfu, Greece

Tài liệu tham khảo

Akella, 2010, Analysis of information flow security in cyber–physical systems, International Journal of Critical Infrastructure Protection, 3, 157, 10.1016/j.ijcip.2010.09.001

Alur, 1993, Hybrid automata, 209

Alur, 1994, A theory of timed automata, Theoretical Computer Science, 126, 183, 10.1016/0304-3975(94)90010-8

Babaoglu, 1987, On the reliability of consensus-based fault-tolerant distributed computing systems, ACM Transactions on Computer Systems, 5, 394, 10.1145/29868.31332

Baeten, 2008, Model-based engineering of embedded systems using the hybrid process algebra Chi, Electronic Notes in Theoretical Computer Science, 209, 21, 10.1016/j.entcs.2008.04.003

Bengio, 1991, Secure implementations of identification systems, Journal of Cryptology, 4, 175, 10.1007/BF00196726

Bengtsson, 2003, Timed automata, 87

Blanke, 2006

D. Boneh, The decision Diffie-Hellman problem, in: Proceedings of the Third International Symposium on Algorithmic Number Theory, 1998, pp. 48–63.

M. Burmester, Y. Desmedt, T. Itoh, K. Sakurai, H. Shizuya, M. Yung, A progress report on subliminal-free channels, in: Proceedings of the First International Workshop on Information Hiding, 1996, pp. 157–168.

Burmester, 2009, Universally composable RFID identification and authentication protocols, ACM Transactions on Information and System Security, 12, 1, 10.1145/1513601.1513603

Butts, 2010, Modeling control system failures and attacks—The Waterloo campaign to oil pipelines, 43

A. Cardenas, S. Amin, Z. Lin, Y. Huang, C. Huang, S. Sastry, Attacks against process control systems: risk assessment, detection and response, in: Proceedings of the Sixth ACM Symposium on Information, Computer and Communications Security, 2011, pp. 355–366.

A. Cardenas, S. Amin, S. Sastry, Secure control: towards survivable cyber–physical systems, in: Proceedings of the Twenty-Eighth IEEE International Conference on Distributed Computing Systems Workshops, 2008, pp. 495–500.

Cardenas, 2009, Rethinking security properties, threat models and the design space in sensor networks, Ad Hoc Networks, 7, 1434, 10.1016/j.adhoc.2009.04.012

S. Cheung, U. Lindqvist, M. Fong, Modeling multistep cyber attacks for scenario recognition, in: Proceedings of the Third DARPA Information Survivability Conference and Exposition, 2003, pp. 284–292.

Chow, 2009, Where East meets West, Washington Quarterly (Center for Strategic and International Studies), 32, 77, 10.1080/01636600802552247

Cuijpers, 2008, Constitutive hybrid processes, Simulation, 84, 339, 10.1177/0037549708097215

Department of Homeland Security and Centre for the Protection of the National Infrastructure, Cyber Security Assessments of Industrial Control Systems, Washington, DC 〈www.us-cert.gov/control_systems/pdf/Cyber_Security_Assessments_of_Industrial_Control_Systems.pdf〉, 2010.

Diffie, 1995, The national security establishment and the development of public-key cryptography, Designs, Codes and Cryptography, 7, 9, 10.1023/A:1018032210651

Dolev, 1982, The Byzantine generals strike again, Journal of Algorithms, 3, 14, 10.1016/0196-6774(82)90004-9

J. Eisenhauer, P. Donnelly, M. Ellis, M. O'Brien, Roadmap to Secure Control Systems in the Energy Sector, Energetics, Columbia, MD, 2006.

R. Ellison, D. Fisher, R. Linger, H. Lipson, T. Longstaff, N. Mead, Survivable Network Systems: An Emerging Discipline, Technical Report CMU/SEI-97-TR-013, Software Engineering Institute, Carnegie Mellon University, Pittsburgh, PA, 1997.

N. Falliere, L. Murchu, E. Chien, W32. Stuxnet Dossier, Symantec, Mountain View, California, 2011.

Fleury, 2008, Towards a taxonomy of attacks against energy control systems, 71

T. Gamage and B. McMillin, Enforcing information flow properties using compensating events, in: Proceedings of the Forty-Second Hawaii International Conference on System Sciences, 2009.

T. Gamage, B. McMillin, T. Roth, Enforcing information flow security properties in cyber–physical systems: a generalized framework based on compensation, in: Proceedings of the Thirty-Fourth Annual IEEE Computer Software and Applications Conference, 2010, pp. 158–163.

Hamlen, 2006, Computability classes for enforcement mechanisms, ACM Transactions on Programming Languages and Systems, 28, 175, 10.1145/1111596.1111601

T. Henzinger, The theory of hybrid automata, in: Proceedings of the Eleventh Annual IEEE Symposium on Logic in Computer Science, 1996, pp. 278–292.

A. Herzberg, S. Jarecki, H. Krawczyk, M. Yung, Proactive secret sharing or: How to cope with perpetual leakage, in: Proceedings of the Fifteenth Annual International Cryptology Conference on Advances in Cryptology, 1995, pp. 339–352.

T. Johnson, Fault-Tolerant Distributed Cyber–Physical Systems: Two Case Studies, M.S. Thesis, Department of Electrical and Computer Engineering, University of Illinois, Urbana, IL, 2010.

D. Kaynor, N. Lynch, R. Segala, F. Vaandrager, The theory of timed I/O automata, in: Synthesis Lectures on Distributed Computing Theory, vol. 1(1), 2010, p. 1–137.

C. Kim, G. Avoine, F. Koeune, F. Standaert, O. Pereira, The Swiss-knife RFID distance bounding protocol, in: Proceedings of the Eleventh International Conference on Information Security and Cryptology, 2008, pp. 98–115.

R. Kisner, W. Manges, T. Mcintyre, J. Nutaro, J. Munro, P. Ewing, M. Howlader, P. Kuruganti, M. Olama, Cybersecurity Through Real-Time Distributed Control Systems, Technical Report ORNL/TM-2010/30, Oak Ridge National Laboratory, Oak Ridge, TN, 2010.

Koza, 1992

Lamport, 1997, Proving the correctness of multiprocess programs, IEEE Transactions on Software Engineering, 3, 125, 10.1109/TSE.1977.229904

Lamport, 1998, Proving possibility properties, Theoretical Computer Science, 206, 341, 10.1016/S0304-3975(98)00129-7

L. Lamport, Real-time model checking is really simple, in: Proceedings of the Thirteenth Advanced Research Working Conference on Correct Hardware Design and Verification Methods, 2005, pp. 162–175.

Levy, 2003, Crossover, IEEE Security and Privacy, 1, 71, 10.1109/MSECP.2003.1253573

N. Lynch, R. Segala, F. Vaandrager and H. Weinberg, Hybrid I/O automata, in: Proceedings of the DIMACS Workshop on Verification and Control of Hybrid Systems, 1995, pp. 496–510.

C. Ma, N. Rao and D. Yau, A game theoretic study of attack and defense in cyber–physical systems, in: Proceedings of the First IEEE International Workshop on Cyber–Physical Networking Systems, 2011, pp. 708–713.

Mangard, 2007

B. McMillin, Personal communication, 2012.

Y. Mo, B. Sinopoli, Secure control against replay attacks, in: Proceedings of the Forty-Seventh Annual Allerton Conference on Communication, Control and Computing, 2009, pp. 911–918.

I. Roychoudhury, M. Daigle, P. Mosterman, G. Biswas, X. Koutsoukos, A method for the efficient simulation of hybrid bond graphs, in: Proceedings of the International Conference on Bond Graph Modeling, 2007, pp. 177–184.

Schneier, 1999, Attack trees, Dr. Dobb's Journal, 24, 21

Seo, 2003, Toward an automated design method for multi-domain dynamic systems using bond graph and genetic programming, Mechatronics, 13, 851, 10.1016/S0957-4158(03)00006-0

G. Simmons, Personal communication, 1993.

Slay, 2007, Lessons learned from the Maroochy water breach, 73

H. Tang, B. McMillin, Security property violation in CPS through timing, in: Proceedings of the Twenty-Eighth International Conference on Distributed Computing Systems, 2008, pp. 519–524.

Ten, 2008, Vulnerability assessment of cybersecurity for SCADA systems, IEEE Transactions on Power Systems, 23, 1836, 10.1109/TPWRS.2008.2002298

R. Wu, W. Li, H. Huang, An attack modeling based on hierarchical colored Petri nets, in: Proceedings of the First International Conference on Computer and Electrical Engineering, 2008, pp. 918–921.

K. Xiao, S. Ren, K. Kwiat, Retrofitting cyber physical systems for survivability through external coordination, in: Proceedings of the Forty-First Hawaii International Conference on Systems Science, 2008, p. 465.

Thông tin
Thông tin xuất bản

International Journal of Critical Infrastructure Protection

Tập 5

118-126

Thông tin tác giả