Verifying the Application of Security Measures in IoT Software Systems with Model Learning

Sébastien Salva, Elliot Blot

2020

Abstract

Most of today’s software systems log events to record the events that have occurred in the past. Such logs are particularly useful for auditing security over time. But, the growing sizes and lack of abstraction of the logs make them difficult to interpret manually. This paper proposes an approach combining model learning and model checking to help audit the security of IoT software systems. This approach takes as inputs an event log and generic security measures described with LTL formulas. It generates one formal model for every component of an IoT system and helps auditors make the security measures concrete in order to check if the models satisfy them. The LTL formula instantiation is semi-automatically performed by means of an expert system and inference rules that encode some expert knowledge, which can be applied again to the same kind of systems with less efforts. We evaluate our approach on 3 IoT systems against 11 security measures provided by the European ENISA institute.

Download


Paper Citation


in Harvard Style

Salva S. and Blot E. (2020). Verifying the Application of Security Measures in IoT Software Systems with Model Learning.In Proceedings of the 15th International Conference on Software Technologies - Volume 1: ICSOFT, ISBN 978-989-758-443-5, pages 350-360. DOI: 10.5220/0009872103500360


in Bibtex Style

@conference{icsoft20,
author={Sébastien Salva and Elliot Blot},
title={Verifying the Application of Security Measures in IoT Software Systems with Model Learning},
booktitle={Proceedings of the 15th International Conference on Software Technologies - Volume 1: ICSOFT,},
year={2020},
pages={350-360},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0009872103500360},
isbn={978-989-758-443-5},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 15th International Conference on Software Technologies - Volume 1: ICSOFT,
TI - Verifying the Application of Security Measures in IoT Software Systems with Model Learning
SN - 978-989-758-443-5
AU - Salva S.
AU - Blot E.
PY - 2020
SP - 350
EP - 360
DO - 10.5220/0009872103500360