Formally Verified Credentials Management for Industrial Control Systems

Publikation: Bidrag til bog/antologi/rapport/proceedingKonferencebidrag i proceedingsForskningpeer review

238 Downloads (Pure)

Abstract

The field of industrial automation is experiencing growth in interconnectivity and digital interaction. This growth is slower than in a consumer segment due to often critical nature of industrial control systems. Security of such systems is an important aspect as malicious behaviors could lead to potential system malfunction, injuries or financial losses. As control networks are becoming more complex, having a robust credential management for system operators and users that could interact with the system components is an essential need. One way of assuring the robustness of the credential management is by using formal methods. In this paper we present a formally verified credential management system for use within industrial control systems. We demonstrate that the credential management can use centralized credential storage with secret passwords available only to system administrators. We use UPPAAL to formally analyze security properties based on requirements defined by our industrial partner and present the viability of formal verification to a real-world industrial case study.

OriginalsprogEngelsk
TitelProceedings - 2021 IEEE/ACM 9th International Conference on Formal Methods in Software Engineering, FormaliSE 2021 : 9th IEEE/ACM International Conference on Formal Methods in Software Engineering
Antal sider11
ForlagIEEE
Publikationsdato2021
Sider75-85
ISBN (Trykt)978-1-6654-2984-9
ISBN (Elektronisk)978-1-6654-3913-8
DOI
StatusUdgivet - 2021
BegivenhedFormaliSE 2021: International Conference on Formal Methods in Software Engineering - Virtual, Madrid, Spanien
Varighed: 22 maj 202130 maj 2021
https://www.formalise.org/

Konference

KonferenceFormaliSE 2021
LokationVirtual
Land/OmrådeSpanien
ByMadrid
Periode22/05/202130/05/2021
Internetadresse

Fingeraftryk

Dyk ned i forskningsemnerne om 'Formally Verified Credentials Management for Industrial Control Systems'. Sammen danner de et unikt fingeraftryk.

Citationsformater