Specification and verification of a topology-aware access control model for cyber-physical space

Cao, Yan; Huang, Zhiqiu; Kan, Shuanglong; Fan, Di; Yang, Yang

doi:10.26599/tst.2018.9010116

Cited by 6 publications

(3 citation statements)

References 28 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…There were also some interesting works [23][24][25] based on the BRS formalism, which is stated in our work. Authors in [23] have introduced the concept of topology configuration that captures the characteristics of cyber-physical spaces' environment.…”

Section: Related Workmentioning

confidence: 66%

“…The paper [24] continued to use the TA-CPAC model and provided a systematic solution for specifying security policies in a cyber-physical space and ensuring the satisfaction of security requirements by considering the dynamic topology of the environment. It introduces a reduction algorithm to simplify the modeling process and improve the efficiency of model checking.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

A Multidimensional Approach for Formal Modeling and Analyzing Medical Cyber-Physical Systems

Bouheroum,

Benmerzoug,

Hemam

et al. 2024

Preprint

View full text Add to dashboard Cite

The combination of integrated software controlling devices, networking capabilities, and sensing/actuation technologies in Medical Cyber-Physical Systems (M-CPS) highlights some research challenges specific to this class of Cyber-Physical Systems (CPS). The major challenge is ensuring the confidentiality of the data or resources that they handle. In this paper, we tackle this problem by proposing a formal approach that combines CA-BRS (Control Agent and Bigraphical Reactive Systems) and BPMN (Business Process Model Notation) to specify and analyze CPS in general, while respecting several dimensions. The CPS structural dimension, which represents the space (physical and cyber entities) in which agents exist and interact, is defined by the Bigraphs. Control agents constituting the virtual dimension observe and control the physical and cyber entities of their environment. The complex and adaptive behavior of a CPS (behavioral dimension) is defined through several types of rules; each manages a possible evolution of a CPS component (physical, cyber or virtual). Two distinctive perspectives are associated with the semantic interpretation of these rules: states and activities. Both perspectives are defined with a particular semantics and notations. This study focuses on the activities perspective that specifies the behavior of control agents using a BPMN activity diagram. This highlights how these two models (CA-BRS and BPMN) complement each other to assist designers in defining formal models for CPS. Additionally, it reveals how to provide the CA-BRS model with means of controlling unauthorized access to an Electronic Health Record system.

show abstract

Section: Related Workmentioning

confidence: 66%

Section: Related Workmentioning

confidence: 99%

A Multidimensional Approach for Formal Modeling and Analyzing Medical Cyber-Physical Systems

Bouheroum,

Benmerzoug,

Hemam

et al. 2024

Preprint

View full text Add to dashboard Cite

show abstract

“…To address cybersecurity and physical security issues, 47‐49 Cao et al 50p resented a topology‐aware cyber‐physical access control model (TA‐CPAC). The topology configuration and the model itself were formally modeled using bigraph language and bigraph reactive system (BRS), respectively.…”

Section: Related Workmentioning

confidence: 99%

Inter‐cloud secure data sharing and its formal verification

Zhang

Yang

et al. 2021

Trans Emerging Tel Tech

View full text Add to dashboard Cite

With the development of cloud computing, data sharing and collaboration have become increasing among cloud‐oriented organizations. In addition to trivial management work, data providers face many difficulties in managing access control policies in cloud data sharing, to prevent permission abuse and information leakage. This article mainly answers the following question: is it possible to achieve verifiably secure inter‐cloud data sharing? This article proposes an inter‐cloud data sharing (ICDS) approach based on ciphertext‐policy attribute‐based encryption (CP‐ABE) to ensure the security of ICDS. The security properties that ICDS holds are formally verified, where the information flow rules are defined and used in the verification. The information flow of the proposed ICDS is firstly modeled by use of high‐level Petri nets (HLPN) formally, then being represented in Z language, and at last the security properties of ICDS are verified by the Z3 solver. The formal analysis proves that the ICDS holds the security properties of confidentiality, authenticity, and collusion‐resistance.

show abstract

A topology and risk-aware access control framework for cyber-physical space

Cao

Huang

et al. 2020

Front. Comput. Sci.

View full text Add to dashboard Cite

Specification and verification of a topology-aware access control model for cyber-physical space

Cited by 6 publications

References 28 publications

A Multidimensional Approach for Formal Modeling and Analyzing Medical Cyber-Physical Systems

A Multidimensional Approach for Formal Modeling and Analyzing Medical Cyber-Physical Systems

Inter‐cloud secure data sharing and its formal verification

A topology and risk-aware access control framework for cyber-physical space

Contact Info

Product

Resources

About