Attribute Repair for Threat Prevention

Thorsten Tarrach, Ebrahimi Masoud (Autor:in und Vortragende:r), Sandra König, Christoph Schmittner, Roderick Bloem, Dejan Nickovic (Vortragende:r)

Publikation: Beitrag in Buch oder TagungsbandVortrag mit Beitrag in TagungsbandBegutachtung

Abstract

We propose a model-based procedure for preventing security threats using formal models. We encode system models and threats as satisfiability modulo theory (SMT) formulas. This model allows us to ask security questions as satisfiability queries. We formulate threat prevention as an optimization problem over the same formulas. The outcome of our threat prevention procedure is a suggestion of model attribute repair that eliminates threats. We implement our approach using the state-of-the-art Z3 SMT solver and interface it with the threat analysis tool THREATGET. We demonstrate the value of our procedure in two case studies from automotive and smart home domains.
OriginalspracheEnglisch
TitelComputer Safety, Reliability, and Security - 42nd International Conference, SAFECOMP 2023, Toulouse, France, September 20-22, 2023, Proceedings
Seiten135-148
Seitenumfang14
Band14181
ISBN (elektronisch)978-3-031-40923-3
DOIs
PublikationsstatusVeröffentlicht - 20 Sept. 2023
VeranstaltungSAFECOMP 2023: 42nd International Conference on Computer Safety, Reliability and Security: DECSoS 2023: 18th International Workshop on Dependable Smart Embedded Cyber-Physical Systems and Systems-of-Systems - Toulouse, Toulouse, Frankreich
Dauer: 19 Sept. 202322 Sept. 2023
https://safecomp2023.cnrs.fr/workshops/

Workshop

WorkshopSAFECOMP 2023: 42nd International Conference on Computer Safety, Reliability and Security
Land/GebietFrankreich
StadtToulouse
Zeitraum19/09/2322/09/23
Internetadresse

Research Field

  • Dependable Systems Engineering

Fingerprint

Untersuchen Sie die Forschungsthemen von „Attribute Repair for Threat Prevention“. Zusammen bilden sie einen einzigartigen Fingerprint.

Diese Publikation zitieren