kth.sePublications KTH
EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Analysing the Impact of Security Attacks on Safety Using SysML and Event-B
KTH, School of Electrical Engineering and Computer Science (EECS), Computer Science, Network and Systems Engineering.ORCID iD: 0000-0002-5259-8839
KTH, School of Electrical Engineering and Computer Science (EECS), Computer Science, Theoretical Computer Science, TCS.ORCID iD: 0009-0000-3916-1707
KTH, School of Electrical Engineering and Computer Science (EECS), Computer Science, Network and Systems Engineering.ORCID iD: 0000-0002-4876-0223
2022 (English)In: MODEL-BASED SAFETY AND ASSESSMENT, IMBSA 2022 / [ed] Seguin, C Zeller, M Prosvirnova, T, Springer Nature , 2022, Vol. 13525, p. 170-185Conference paper, Published paper (Refereed)
Abstract [en]

Safety-critical control systems increasingly rely on networking technologies, which makes these systems vulnerable to cyber attacks that can potentially jeopardise system safety. To achieve safe- and secure-by-construction development, the designers should analyse the impact of security attacks already at the modelling stage. Since SysML is often used for modelling safety-critical systems, in this paper, we propose to integrate modelling in SysML and Event-B to enable reasoning about safety-security interactions at system modelling stage. Our approach combines the benefits of graphical modelling in SysML with the mathematical rigor of Event-B to visualise and formalise the analysis of the impact of security attacks on system safety.
Place, publisher, year, edition, pages
Springer Nature , 2022. Vol. 13525, p. 170-185
Series
Lecture Notes in Computer Science, ISSN 0302-9743
Keywords [en]
Safety-security interactions, Integrated approach, Formal specification and verification, Graphical modelling
National Category
Computer Systems Reliability and Maintenance
Identifiers
URN: urn:nbn:se:kth:diva-320677DOI: 10.1007/978-3-031-15842-1_13ISI: 000867007800013Scopus ID: 2-s2.0-85138807083OAI: oai:DiVA.org:kth-320677DiVA, id: diva2:1707272
Conference
8th International Symposium on Model-Based Safety and Assessment (IMBSA), SEP 05-07, 2022, Munich, GERMANY
Note

Part of proceedings: ISBN 978-3-031-15842-1, ISBN 978-3-031-15841-4

QC 20221031

Available from: 2022-10-31 Created: 2022-10-31 Last updated: 2025-04-17Bibliographically approved
In thesis
1. Formal Modelling of the Impact of Cyberattacks on Safety of Networked Control Systems
Open this publication in new window or tab >>Formal Modelling of the Impact of Cyberattacks on Safety of Networked Control Systems
2025 (English)Doctoral thesis, comprehensive summary (Other academic)
Abstract [en]

Modern control systems provide services that are indispensable for society, e.g., transportation, energy production, healthcare etc. Hence, it is important to guarantee safe and reliable functioning of such systems. However, they are increasingly relying on networking technologies, which makes them susceptible to cyberattacks that could potentially jeopardise their safety. Moreover, such systems typically have a complex distributed architecture and dynamic behaviour. Hence, it is hard to ensure correctness and safety of their design. Formal methods are used to tackle system complexity and guarantee correctness of the design via abstract mathematical modelling and rigorous verification. Various formal modelling techniques have been successfully used in the design of safety-critical systems in different domains. However, they primarily focused on modelling and verification of system safety. Since modern safety-critical systems are increasingly becoming the subject of cyberattacks, formal modelling techniques should be extended to address the emerging problem of safety-security interactions. In this thesis, we propose a rigorous approach to modelling the impact of cyberattacks on safety of networked control systems. Our approach integrates graphical modelling in Systems Modelling Language – SysML and formal specification and verification in the Event-B framework. Graphical models provide support in visualising system architecture and interactions between the components as well as facilitate the analysis of safety and security interactions by the interdisciplinary teams. Modelling and proof- based verification in Event-B allows us to formally identify the cyberattacks that jeopardise system safety. To bridge the gap between the graphical and formal modelling, we developed software automatically translating graphical system models into formal specifications in Event-B. We believe that this thesis makes both theoretical and practical contributions towards an integration of safety and security engineering, which is necessary for the development of modern trustworthy networked control systems.
Abstract [sv]

Moderna reglersystem tillhandahåller tjänster som är oumbärliga för samhället, t.ex. transport, energiproduktion, hälso- och sjukvård etc. Därför är det viktigt att garantera att sådana system fungerar säkert och tillförlitligt. De använder dock i allt högre grad nätverksteknik, vilket gör dem mottagliga för cyberattacker som potentiellt kan äventyra deras säkerhet. Dessutom har sådana system vanligtvis komplex distribuerad arkitektur och dynamiskt beteende. Därför är det svårt att säkerställa att deras design är korrekt och säker. Formella metoder används för att hantera systemkomplexitet och garantera att designen är korrekt via abstrakt matematisk modellering och rigorös verifiering. Olika formella modelleringstekniker har framgångsrikt använts vid design av trygghet-kritiska system inom olika domäner. För närvarande kräver användningen av nätverksteknik en utvidgning av denna teknik för att ta itu med det framväxande problemet med interaktion mellan trygghet och säkerhet. I den här avhandlingen föreslår vi ett rigoröst tillvägagångssätt för modellering av effekterna av cyberattacker på trygghet i nätverksanslutna styrsystem. Vårt tillvägagångssätt integrerar grafisk modellering i Systems Modelling Language – SysML och formell specifikation och verifiering i Event- B-ramverket. Grafiska modeller ger stöd för att visualisera systemarkitektur och interaktioner mellan komponenterna samt underlättar analysen av säkerhets- och trygghetsinteraktioner av de tvärvetenskapliga teamen. Modellering och bevisbaserad verifiering i Event-B gör det möjligt för oss att formellt identifiera de cyberattacker som äventyrar systems trygghet. För att överbrygga klyftan mellan den grafiska och formella modelleringen utvecklade vi en programvara som automatiskt översätter grafiska systemmodeller till formella specifikationer i Event-B. Vi tror att denna avhandling ger både teoretiska och praktiska bidrag till en integration av säkerhets- och trygghetsteknik, vilket är nödvändigt för utvecklingen av moderna pålitliga nätverksbaserade reglersystem.  
Place, publisher, year, edition, pages
Stockholm, Sweden: KTH Royal Institute of Technology, 2025. p. vii, 67
Series
TRITA-EECS-AVL ; 2025:39
Keywords
Cyberattacks, Safety, Networked Control Systems, Formal Methods, Event-B, SysML, Model-Based System Engineering, Model to Model Transformation, Formal Verification
National Category
Computer Sciences
Research subject
Computer Science
Identifiers
urn:nbn:se:kth:diva-362568 (URN)978-91-8106-240-3 (ISBN)
Public defence
2025-05-08, F3 (Flodis), Lindstedtsvägen 26 & 28, KTH Campus, Stockholm, 14:00 (English)
Opponent
Supervisors
Note

QC 20250417

Available from: 2025-04-17 Created: 2025-04-17 Last updated: 2025-05-09Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Poorhadi, EhsanTroubitsyna, ElenaDán, György

Search in DiVA

By author/editor
Poorhadi, EhsanTroubitsyna, ElenaDán, György
By organisation
Network and Systems EngineeringTheoretical Computer Science, TCS
Computer SystemsReliability and Maintenance

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 157 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
WCAG
|
KTH Library
|
DiVA support
|
Register in DiVA
|
Posting your thesis
|
SwePub
|
About Open Access