5,964 research outputs found
Demo Abstract: Contract-based Hierarchical Resilience Framework for Cyber-Physical Systems
This demonstration presents a framework for building a resilient
Cyber-Physical Systems (CPS) cyber-infrastructure through the use of
hierarchical parametric assume-guarantee contracts. A Fischertechnik Sorting
Line with Color Detection training model is used to showcase our framework.Comment: 2 pages, 5 figures, published in the Demo Session of IEEE
International Conference on Cyber-Physical Systems 2019. Publication rights
licensed to AC
Ensuring Cyber-Security in Smart Railway Surveillance with SHIELD
Modern railways feature increasingly complex embedded computing systems for surveillance, that are moving towards fully wireless smart-sensors. Those systems are aimed at monitoring system status from a physical-security viewpoint, in order to detect intrusions and other environmental anomalies. However, the same systems used for physical-security surveillance are vulnerable to cyber-security threats, since they feature distributed hardware and software architectures often interconnected by âopen networksâ, like wireless channels and the Internet. In this paper, we show how the integrated approach to Security, Privacy and Dependability (SPD) in embedded systems provided by the SHIELD framework (developed within the EU funded pSHIELD and nSHIELD research projects) can be applied to railway surveillance systems in order to measure and improve their SPD level. SHIELD implements a layered architecture (node, network, middleware and overlay) and orchestrates SPD mechanisms based on ontology models, appropriate metrics and composability. The results of prototypical application to a real-world demonstrator show the effectiveness of SHIELD and justify its practical applicability in industrial settings
Automatic Generation of Hierarchical Contracts for Resilience in Cyber-Physical Systems
With the growing scale of Cyber-Physical Systems (CPSs), it is challenging to
maintain their stability under all operating conditions. How to reduce the
downtime and locate the failures becomes a core issue in system design. In this
paper, we employ a hierarchical contract-based resilience framework to
guarantee the stability of CPS. In this framework, we use Assume Guarantee
(A-G) contracts to monitor the non-functional properties of individual
components (e.g., power and latency), and hierarchically compose such contracts
to deduce information about faults at the system level. The hierarchical
contracts enable rapid fault detection in large-scale CPS. However, due to the
vast number of components in CPS, manually designing numerous contracts and the
hierarchy becomes challenging. To address this issue, we propose a technique to
automatically decompose a root contract into multiple lower-level contracts
depending on I/O dependencies between components. We then formulate a
multi-objective optimization problem to search the optimal parameters of each
lower-level contract. This enables automatic contract refinement taking into
consideration the communication overhead between components. Finally, we use a
case study from the manufacturing domain to experimentally demonstrate the
benefits of the proposed framework.Comment: \copyright 2019 IEEE. Personal use of this material is permitted.
Permission from IEEE must be obtained for all other uses, in any current or
future media, including reprinting/republishing this material for advertising
or promotional purposes, creating new collective works, for resale or
redistribution to servers or lists, or reuse of any copyrighted component of
this work in other work
Cyber resilience meta-modelling: The railway communication case study
Recent times have demonstrated how much the modern critical infrastructures (e.g., energy, essential services, people and goods transportation) depend from the global communication networks. However, in the current Cyber-Physical World convergence, sophisticated attacks to the cyber layer can provoke severe damages to both physical structures and the operations of infrastructure affecting not only its functionality and safety, but also triggering cascade effects in other systems because of the tight interdependence of the systems that characterises the modern society. Hence, critical infrastructure must integrate the current cyber-security approach based on risk avoidance with a broader perspective provided by the emerging cyber-resilience paradigm. Cyber resilience is aimed as a way absorb the consequences of these attacks and to recover the functionality quickly and safely through adaptation. Several high-level frameworks and conceptualisations have been proposed but a formal definition capable of translating cyber resilience into an operational tool for decision makers considering all aspects of such a multifaceted concept is still missing. To this end, the present paper aims at providing an operational formalisation for cyber resilience starting from the Cyber Resilience Ontology presented in a previous work using model-driven principles. A domain model is defined to cope with the different aspects and âresilience-assuranceâ processes that it can be valid in various application domains. In this respect, an application case based on critical transportation communications systems, namely the railway communication system, is provided to prove the feasibility of the proposed approach and to identify future improvements
- âŠ