Applying the Isabelle Insider Framework to Airplane Security

by   Florian Kammüller, et al.

Avionics is one of the fields in which verification methods have been pioneered and brought a new level of reliability to systems used in safety critical environments. Tragedies, like the 2015 insider attack on a German airplane, in which all 150 people on board died, show that safety and security crucially depend not only on the well functioning of systems but also on the way how humans interact with the systems. Policies are a way to describe how humans should behave in their interactions with technical systems, formal reasoning about such policies requires integrating the human factor into the verification process. In this paper, we report on our work on using logical modelling and analysis of infrastructure models and policies with actors to scrutinize security policies in the presence of insiders. We model insider attacks on airplanes in the Isabelle Insider framework. This application motivates the use of an extension of the framework with Kripke structures and the temporal logic CTL to enable reasoning on dynamic system states. Furthermore, we illustrate that Isabelle modelling and invariant reasoning reveal subtle security assumptions. We summarize by providing a methodology for the development of policies that satisfy stated properties.



There are no comments yet.


page 1

page 2

page 3

page 4


A Formal Development Cycle for Security Engineering in Isabelle

In this paper, we show a security engineering process based on a formal ...

Reasoning About Safety-Critical Information Flow Between Pilot and Computer

This paper presents research results that develop a dynamic logic for re...

Natural Hoare Logic: Towards formal verification of programs from logical forms of natural language specifications

Formal verification provides strong guarantees of correctness of softwar...

A Survey of Practical Formal Methods for Security

In today's world, critical infrastructure is often controlled by computi...

Data Driven Vulnerability Exploration for Design Phase System Analysis

Applying security as a lifecycle practice is becoming increasingly impor...

Explanation by Automated Reasoning Using the Isabelle Infrastructure Framework

In this paper, we propose the use of interactive theorem proving for exp...

An Assurance Framework for Independent Co-assurance of Safety and Security

Integrated safety and security assurance for complex systems is difficul...
This week in AI

Get the week's most popular data science and artificial intelligence research sent straight to your inbox every Saturday.