CASED (Center for Advanced Security Research Darmstadt)

CASED is a research center at the Technische Universität Darmstadt and deals with the security of IT systems. Researchers from different disciplines, international research centers and various commercial partners will cooperate to investigate and develop future-proof solutions for IT security. CASED is divided in three subprojects that cover different aspects of IT security. These are Secure Data, Secure Things and Secure Services.

Our research is located in the subproject Secure Things that deals with security of embedded systems. We are developing a development process, which allows automatic generation of software and hardware security monitors from specifications of the requirements phase. These monitors will be able to observe messages or system calls that are sent and received from the embedded systems to recognize possible attacks. Later, reasonable reactions to attacks should be performed that allow systems to reconstitute themselves.

The figure below shows the targeted process, based on model-based graphical languages, to generate the security monitors. First, requirements are modeled as use and misuse cases that complement to each other. Misuse cases are related with their use cases. For every use case and misuse case, one or more Live Sequence Charts (LSCs) are constructed that describe either scenarios of the use- or misuse case. These specifications should not depict the implementation of the use cases, but the general sequence of messages or system calls. In the next step, we combine the LSCs of the use and misuse cases into Petri net like intermediate language - the Monitor Petri nets (MPNs). These nets have special places and a deterministic execution semantics. After this step, the generated MPNs together with the aid of system-/platform-specific information are used by a code generator that generates the implementation in e.g. C or VHDL. Before code generation optimization techniques should be applied to the MPNs to reduce the size of the nets by removing and merging places and transitions.

 

 

Figure 1: Monitor Generation Process

Contact

Dipl.-Ing. Lars Patzina

Dipl.-Ing. Sven Patzina

Contact us

Technische Universität Darmstadt

Institute of Computer Engineering

Real-Time Systems Lab

Prof. Dr. rer. nat. Andy Schürr

Building S3|06 (3rd Floor, Room 313)

Merckstraße 25

64283 Darmstadt

+49 6151 16-6940
+49 6151 16-6942


A A A | Drucken | Impressum | Sitemap | Suche | Kontakt
Zum SeitenanfangZum Seitenanfang