Designing Security-enhanced Embedded Systems: Bridging Two Islands of Expertise

Vasilevskaya, Maria

doi:10.3384/lic.diva-98213

Cited by 4 publications

(4 citation statements)

References 84 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…A similar approach is followed by Vasilevskaya, who also proposes to model security enhancements into UML diagrams, but mainly uses UML activity diagrams for visualization [41]. Since the scope is embedded systems, the diagrams model the internal behavior of suchlike systems very specifically.…”

Section: A Uml Security Extensionsmentioning

confidence: 99%

Evaluation of Visual Notations as a Basis for ICS Security Design Decisions

2023

View full text Add to dashboard Cite

For making informed security decisions during the design of industrial control systems (ICS), engineers need to process large amounts of security-relevant information outside their area of expertise. This problem moves the presentation of the security-relevant information into focus: security-relevant engineering information must be presented to security decision-makers in a way that enables them to decide upon security measures to build a defensible system. Visual representations have the potential to effectively convey suchlike information, thus saving the engineers' brain capacity for the security decision-making. However, research shows that this potential is only realized if the visualizations are carefully constructed for cognitive effectiveness. As a prerequisite for constructing a visual language for security engineering in the future, this paper explores two scientific questions: 1) what are the requirements for visualizing security-relevant engineering information in a way that enables engineers to make security decisions during ICS design? and 2) which existing visual languages meet (parts of) these requirements? The evaluation of existing visualizations reveals that there is a need for an improved, specialized visual language for security engineering that builds upon established engineering visualizations like piping and instrumentation diagrams and network maps, represents all security-relevant information as icons to achieve semantic transparency, and includes filtering mechanisms to reduce the complexity of each single diagram. The paper finishes with defining the main pillars of a future visual language that should allow ICS engineers to quickly capture security-relevant information and guide them through the process of selecting the right security measures to design a defensible ICS.INDEX TERMS Automation engineering, industrial control system security, security by design, visual language.

show abstract

Section: A Uml Security Extensionsmentioning

confidence: 99%

Evaluation of Visual Notations as a Basis for ICS Security Design Decisions

2023

View full text Add to dashboard Cite

show abstract

“…Goal-driven security decision making treats security just as functional aspects, where design goals are defined, often taking different stakeholders' perspectives, and then refined into requirements. It has been pursued to integrate security into software requirements engineering [29][30][31][32][33] and model-based systems engineering [34,35], but not for CPSs. This is probably due to the fact that goal-based engineering is popular in software engineering (so it seemed natural to extend the same principles to software security engineering), but largely unknown in CPS or ICS engineering.…”

Section: Goal-driven Security Decision Makingmentioning

confidence: 99%

Traceable Security-by-Design Decisions for Cyber-Physical Systems (CPSs) by Means of Function-Based Diagrams and Security Libraries

Fluchs,

Taştan,

Trumpf

et al. 2023

Sensors

View full text Add to dashboard Cite

“Security by design” is the term for shifting cybersecurity considerations from a system’s end users to its engineers. To reduce the end users’ workload for addressing security during the systems operation phase, security decisions need to be made during engineering, and in a way that is traceable for third parties. However, engineers of cyber-physical systems (CPSs) or, more specifically, industrial control systems (ICSs) typically neither have the security expertise nor time for security engineering. The security-by-design decisions method presented in this work aims to enable them to identify, make, and substantiate security decisions autonomously. Core features of the method are a set of function-based diagrams as well as libraries of typical functions and their security parameters. The method, implemented as a software demonstrator, is validated in a case study with the specialist for safety-related automation solutions HIMA, and the results show that the method enables engineers to identify and make security decisions they may not have made (consciously) otherwise, and quickly and with little security expertise. The method is also well suited to make security-decision-making knowledge available to less experienced engineers. This means that with the security-by-design decisions method, more people can contribute to a CPS’s security by design in less time.

show abstract

“…Mas, nem sempre isso é possível. A verificação de requisitos de segurança precisa ser feita pela sistematização de avaliações de segurança de software, com projetos especificamente elaborados para o contexto de segurança da informação (Chikh, Abulaish, Nabi, & Alghathbar, 2011;Daramola, Sindre, & Stalhane, 2012;Elahi, 2009;Massacci, Mylopoulos, Paci, Yu, & Tun, 2011;Mellado, Blanco, Sánchez, & Fernández-Medina, 2010;Mellado et al, 2007;Salini & Kanmani, 2012, 2013Souag, tornam ainda mais sujeitos a ataques, pois todas as classes de atacantes podem explorar a falha para obtenção de vantagem indevida.…”

Section: John Mcafeeunclassified

“…Definir os requisitos de segurança é um passo importante no processo de desenvolvimento. Um método para análise de requisitos com base em Security Targets Vasilevskaya (2013), com base em uma ontologia, propõe um método chamado Asset Elicitation Technique, que analisa o projeto do sistema para obter requisitos de segurança. Uma ontologia de avaliação (top-level) foi desenvolvida para capturar os resultados da avaliação de desempenho.…”

Section: Abordagens Baseadas Em Ontologiaunclassified

Hcapp-Sec

Rosa¹

View full text Add to dashboard Cite

Dedico este trabalho de maneira muito especial à minha esposa Luiza e à minha filha Isabela, que se privaram de vários momentos para que eu pudesse desenvolver este trabalho. Após tantas dificuldades, ao final, o meu maior motivador para a conclusão deste trabalho foi a certeza de que este feito servirá de exemplo de superação para a minha filha. Ela verá no futuro que qualquer obstáculo, seja ele físico, intelectual ou emocional, não podem servir de desculpa para desistir dos seus sonhos. Também devo dedicar este trabalho aos meus pais e irmãos que durante toda vida, apesar das dificuldades, me deram condições, apoio e incentivo para que eu pudesse progredir. AGRADECIMENTOSAgradeço ao meu orientador, professor Dr. Mario Jino, pela oportunidade, pelos ensinamentos, pela amizade e pela confiança atribuída a mim na elaboração deste trabalho.Foi uma grande honra para mim ser orientado por uma pessoa tão especial, uma referência na área de Engenharia de Software do nosso país.Aos membros da banca examinadora, professores Romis Ribeiro de Faissol Attux, Ivan Luiz Marques Ricarte, Carla Merkle Westphall e Edgar Toshiro Yano, pelas importantes sugestões de melhoria.Agradeço aos professores e funcionários da UNICAMP, que sempre nos atenderam prontamente, com cortesia e muita competência.Agradeço ao Centro de Tecnologia da Informação Renato Archer (CTI) e a todos os colegas servidores pela oportunidade e pelo apoio que me foram dados para que eu pudesse desenvolver este trabalho concomitantemente com minhas atividades de pesquisador e servidor público. Em especial, aos amigos

show abstract

Designing Security-enhanced Embedded Systems: Bridging Two Islands of Expertise

Cited by 4 publications

References 84 publications

Evaluation of Visual Notations as a Basis for ICS Security Design Decisions

Evaluation of Visual Notations as a Basis for ICS Security Design Decisions

Traceable Security-by-Design Decisions for Cyber-Physical Systems (CPSs) by Means of Function-Based Diagrams and Security Libraries

Hcapp-Sec

Contact Info

Product

Resources

About