Copyright Information
The documents distributed by this server have been provided by the contributing authors as a means to ensure timely dissemination of
scholarly and technical work on a noncommercial basis. Copyright and all rights therein are maintained by the authors or by other
copyright holders, notwithstanding that they have offered their works here electronically. It is understood that all persons copying
this information will adhere to the terms and constraints invoked by each author's copyright. These works may not be reposted without
the explicit permission of the copyright holder.
Sensoria Bibliography Site An extensible analysable system model
Christian W. Probst, René Rydhof Hansen
abstract:
Analysing real-world systems for vulnerabilities with respect to security and safety threats
is a difficult undertaking, not least due to a lack of availability of formalisations for those
systems. While both formalisations and analyses can be found for artificial systems such
as software, this does not hold for real physical systems. Approaches such as threat
modelling try to target the formalisation of the real-world domain, but still are far from the
rigid techniques available in security research. Many currently available approaches to
assurance of critical infrastructure security are based on (quite successful) ad-hoc techniques.
We believe they can be significantly improved beyond the state-of-the-art by
pairing them with static analyses techniques.
In this paper we present an approach to both formalising those real-world systems, as well
as providing an underlying semantics, which allows for easy development of analyses for
the abstracted systems. We briefly present one application of our approach, namely the
analysis of systems for potential insider threats.