A Comprehensive Model of Secure Cyber-Physical Systems for their Design and Verification

In this paper a combined model of secure cyber-physical systems for their design and verification is proposed. Within the framework of this model, a cyber-physical system is represented as a set of blocks with various properties and relationships between them. The main challenge in such model construction is to combine various approaches to the modeling of cyber-physical systems (or their elements) within a single approach. The main goal of the proposed modeling approach is to provide the ability to convert various models into each other without losing significant data about the elements of the system, as well as taking into account the emergent properties that arise in the process of their interaction. The correctness of the proposed model is validated by the example of its use for design and verification of access control system.

security by design, cyber-physical system, security verification, system modeling, attacker model, attack actions model, comprehensive model

1. Левшун Д.С., Чечулин А.А., Котенко И.В. Проектирование безопасной среды передачи данных на примере протокола I2C // Защита информации. Инсайд. 2018. № 4 (82). С.54-62.

2. Hu F., Lu Y., Vasilakos A.V., Hao Q., Ma R., Patil Y., et al. Robust Cyber-Physical Systems: Concept, Models, and Implementation // Future Generation Computer Systems. 2016. Vol. 56. PP. 449-475. DOI:10.1016/j.future.2015.06.006

3. Canedo A., Schwarzenbach E., Faruque M.A.A. Context-sensitive synthesis of executable functional models of cyber-physical systems // Proceeding of the International Conference on Cyber-Physical Systems (ICCPS, Philadelphia, USA, 8-11 April 2013). Piscataway, NJ: IEEE, 2013. PP. 99-108. DOI:10.1145/2502524.2502539

4. Srivastava A., Morris T., Ernster T., Vellaithurai C., Pan S., Adhikari U. Modeling Cyber-Physical Vulnerability of the Smart Grid With Incomplete Information // IEEE Transactions on Smart Grid. 2013. Vol. 4. Iss. 1. PP. 235-244. DOI:10.1109/TSG.2012.2232318

5. Xinyu C., Huiqun Y., Xin X. Verification of Hybrid Chi Model for Cyber-Physical Systems Using PHAVer // Proceeding of Seventh International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing (Taichung, Taiwan, 3- 5 July 2013). Piscataway, NJ: IEEE, 2013. PP. 122-128. DOI:10.1109/IMIS.2013.29

6. Nuzzo P., Sangiovanni-Vincentelli A.L., Bresolin D., Geretti L., Villa T. A Platform-Based Design Methodology With Contracts and Related Tools for the Design of Cyber-Physical Systems // Proceedings of the IEEE. 2015. Vol. 103. Iss. 11. PP. 2104-2132. DOI:10.1109/JPROC.2015.2453253

7. Selic B. The pragmatics of model-driven development // IEEE Software. 2003. Vol. 20. Iss. 5. PP. 19-25. DOI:10.1109/MS.2003.1231146

8. Sztipanovits J., Karsai G. Model-integrated computing // Computer. 1997. Vol. 30. Iss. 4. PP. 110-111. DOI:10.1109/2.585163

9. Kelly S., Tolvanen J.-P. Domain-Specific Modeling: Enabling Full Code Generation. Hoboken: John Wiley & Sons, 2008.

10. Hehenberger P., Vogel-Heuser B., Bradley D., Eynard B., Tomiyama T., Achiche S. Design, modelling, simulation and integration of cyber physical systems: Methods and applications // Computers in Industry. 2016. Vol. 82. PP. 273-289. DOI:10.1016/j.compind.2016.05.006

11. Fritzson P. Principles of Object-Oriented Modeling and Simulation with Modelica 2.1. Hoboken: John Wiley & Sons, 2010.

12. Penas O., Plateaux R., Patalano S., Hammadi M. Multi-scale approach from mechatronic to Cyber-Physical Systems for the design of manufacturing systems // Computers in Industry. 2017. Vol. 86. PP. 52-69. DOI:10.1016/j.compind.2016.12.001

13. Friedenthal S., Alan M. and Rick S. A Practical Guide to SysML: The Systems Modeling Language. Burlington: Morgan Kaufmann, 2014.

14. Brück D., Elmqvist H., Olsson H., Mattsson S.E. Dymola for Multi-Engineering Modeling and Simulation. Proceedings of the 2nd International Modelica Conference (Oberphaffenhofen, Germany, 18-19 March 2002). 2002.

15. Estefan J.A. Survey of Model-Based Systems Engineering (MBSE) Methodologies. URL: http://www.omgsysml.org/MBSE_Methodology_Survey_RevB.pdf (Accessed 21 November 2019)

16. Rumbaugh J., Blaha M., Premerlani M., Eddy F., Lorensen W. Object-Oriented Modeling and Design. Englewood Cliffs: Prentice-Hall, 1991.

17. McGuinness D.L., van Harmelen F. OWL Web Ontology Language Overview // W3C recommendation. 2004.

18. Balasubramaniyan S., Srinivasan S., Buonopane F., Subathra B., Vain J., Ramaswamy S. Design and verification of Cyber- Physical Systems using TrueTime, evolutionary optimization and UPPAAL // Microprocessors and microsystems. 2016. Vol. 42. PP. 37-48. DOI:10.1016/j.micpro.2015.12.006

19. Ohlin M., Henriksson D., Cervin A. TrueTime 1.5 - Reference Manual. Department of Automatic Control, Lund Institute of Technology, Lund University, 2007.

20. Larsen K.G., Pettersson P., Yi W. UPPAAL in a nutshell // International Journal on Software Tools for Technology Transfer (STTT). 1997. Vol. 1. Iss. 1. PP. 134-152.

21. Seiger R., Keller C., Niebling F., Schlegel T. Modelling complex and flexible processes for smart cyber-physical environments // Journal of Computational Science. 2015. Vol. 10. PP. 137-148. DOI:10.1016/j.jocs.2014.07.001

22. Steinberg D., Budinsky F., Merks E., Paternostro M. EMF: Eclipse Modeling Framework. London: Pearson Education, 2008.

23. Srinivasan S., Buonopane F., Vain J., Ramaswamy S. Model checking response times in Networked Automation Systems using jitter bounds // Computers in Industry. 2015. Vol. 74. PP. 186-200. DOI:10.1016/j.compind.2015.06.012

24. Goldblatt R. Logics of Time and Computation. Stanford: Center for the Study of Language and Information, 1992.

25. Zainalabedin N. VHDL: Analysis and Modeling of Digital Systems. New York: McGraw-Hill, 1997.

26. Fowler M., Scott K. UML Distilled: a Brief Guide to the Standard Object Modeling Language. Boston: Addison-Wesley Professional, 2004.

27. Solovyev A., Mikheev M., Zhou L., Dutta-Moscato J., Ziraldo C., An G., et al. SPARK: a framework for multi-scale agentbased biomedical modeling // Proceedings of the Spring Simulation Multiconference (Orlando, USA, 11-15 April 2010). San Diego: Society for Computer Simulation International, 2010. DOI:10.1145/1878537.1878541

28. Torti L., Wuillemin P. O3PRM Language Specification. Technical report UPMC. 2013.

29. Schruben L.W. SIGMA - A graphical approach to teaching simulation // Journal of Computing in Higher Education. 1992. Vol. 4. DOI:10.1007/BF02940978

30. Десницкий В.А., Чечулин А.А., Котенко И.В., Левшун Д.C., Коломеец М.В. Комбинированная методика проектирования защищенных встроенных устройств на примере системы охраны периметра // Труды СПИИРАН. 2016. № 5(48). C. 5-31. DOI:10.15622/sp.48.1

31. Левшун Д.С., Чечулин А.А., Котенко И.В. Жизненный цикл разработки защищенных систем на основе встроенных устройств // Защита информации. Инсайд. 2017. № 4(76). С. 53-59.