Using SPIN and eclipse for optimized high-level modeling and analysis of computer network attack models
作者: Gerrit Rothmaier , Tobias Kneiphoff , Heiko Krumm
DOI: 10.1007/11537328_19
关键词: Attack model 、 Model checking 、 Process Specification Language 、 Algorithm 、 Communications protocol 、 Compiler 、 Partial order reduction 、 Eclipse 、 High-level programming language 、 Distributed computing 、 Promela 、 Computer science 、 Formal methods
摘要: Advanced attack sequences combine different kinds of steps (e.g. attacker, protocol, and administration steps) on multiple networked systems. We propose a SPIN based approach for formal modeling analysis such scenarios. Our is especially suited scenarios were protocol network level aspects matter simultaneously. Typical not yet considered variants can be automatically found. The development scenario models supported by framework the use high-level process specification language cTLA. A compiler translates cTLA to Promela. This allows powerful model-checking tool employed analysis. Through integration into Eclipse platform both model are facilitated.
springer.com
core.ac.uk
sci-hub.st 参考文章(22)
Gerard Holzmann, Spin model checker, the: primer and reference manual Addison-Wesley Professional. ,(2003)
Gerrit Rothmaier, Heiko Krumm, Formale Modellierung und Analyse protokollbasierter Angriffe in TCP/IP Netzwerken am Beispiel von ARP und RIP. Sicherheit. pp. 77- 88 ,(2005)
Paolo Maggi, Riccardo Sisto, Using SPIN to Verify Security Properties of Cryptographic Protocols international workshop on model checking software. ,vol. 2318, pp. 187- 204 ,(2002) , 10.1007/3-540-46017-9_14
C.R. Ramakrishnan, R. Sekar, Model-based analysis of configuration vulnerabilities Journal of Computer Security. ,vol. 10, pp. 189- 209 ,(2002) , 10.3233/JCS-2002-101-209
R. Alur, R. K. Brayton, T. A. Henzinger, S. Qadeer, S. K. Rajamani, Partial-Order Reduction in Symbolic State Space Exploration computer aided verification. ,vol. 18, pp. 340- 351 ,(1997) , 10.1007/3-540-63166-6_34
Theodorus Cornelis Ruys, Towards effective model checking Universiteit Twente. ,(2001)
G. Leduc, O. Bonaventure, L. Léonard, E. Koerner, C. Pecheur, Model-Based Verification of a Security Protocol for Conditional Access to Services formal methods. ,vol. 14, pp. 171- 191 ,(1999) , 10.1023/A:1008683519655
Michael Balser, Wolfgang Reif, Gerhard Schellhorn, Kurt Stenzel, Andreas Thums, Formal System Development with KIV fundamental approaches to software engineering. pp. 363- 366 ,(2000) , 10.1007/3-540-46428-X_25
Ryszard Janicki, Yu-Tong He, Verifying protocols by model checking: a case study of the wireless application protocol and the model checker SPIN conference of the centre for advanced studies on collaborative research. pp. 174- 188 ,(2004)
Gerard Holzmann, The SPIN Model Checker: Primer and Reference Manual Addison-Wesley. ,(2011)