Autonomous systems are often complex and prone to software failures and cyber-attacks. We introduce RVAFTs, an extension of Attack-Fault Trees (AFTs) with runtime events that can be used to construct runtime monitors. These monitors are able to detect when failures, that can be caused either by an attack or by a fault, occur. The safety and security properties monitored are, in turn, derived from the hierarchical decomposition of RVAFTs. Our approach not only provides further use of AFTs, but also improves the process of instrumentation often required in runtime verification. We explain the principles and provide a simple case study demonstrating how RVAFTs can be used in practice. Through this we are also able to evaluate the detection of faults and attacks as well as assessing the computational overhead of the monitors.
翻译:自动系统往往很复杂,容易发生软件故障和网络攻击。我们引入了RVAFT系统,这是攻击性断层树(AFTs)的延伸,其运行时间可以用来建立运行时间监测器。这些监测器能够检测出何时发生故障,可以是攻击造成的,也可以是过失造成的。所监测的安全和安保性质反过来来自RVAFTs的等级分解。我们的方法不仅进一步使用AFT,而且还改进运行时核查中经常需要的仪器操作程序。我们解释了原则,并提供了简单的案例研究,说明如何在实践中使用RVAFTs。我们通过这一方法还能够评估发现故障和攻击的情况,并评估监测器的计算间接费用。
相关内容
- Today (iOS and OS X): widgets for the Today view of Notification Center
- Share (iOS and OS X): post content to web services or share content with others
- Actions (iOS and OS X): app extensions to view or manipulate inside another app
- Photo Editing (iOS): edit a photo or video in Apple's Photos app with extensions from a third-party apps
- Finder Sync (OS X): remote file storage in the Finder with support for Finder content annotation
- Storage Provider (iOS): an interface between files inside an app and other apps on a user's device
- Custom Keyboard (iOS): system-wide alternative keyboards
Source: iOS 8 Extensions: Apple’s Plan for a Powerful App Ecosystem
微信扫码咨询专知VIP会员