Verifying Opacity Properties in Security Systems

Chunyan Mu; David Clark

doi:10.1109/TDSC.2022.3155323

Verifying Opacity Properties in Security Systems

Chunyan Mu^* (Corresponding Author), David Clark

^*Corresponding author for this work

Research output: Contribution to journal › Article › peer-review

6 Downloads (Pure)

Abstract

We delineate a methodology for the specification and verification of flow security properties expressible in the opacity framework. We propose a logic, opacTL, for straightforwardly expressing such properties in systems that can be modelled as partially observable labelled transition systems. We develop verification techniques for analysing property opacity with respect to observation notions. Adding a probabilistic operator to the specification language enables quantitative analysis and verification. This analysis is implemented as an extension to the PRISM model checker and illustrated via a number of examples. Finally, an alternative approach to quantifying the opacity property based on entropy is sketched.

Original language	English
Pages (from-to)	1450-1460
Number of pages	11
Journal	IEEE Transactions on Dependable and Secure Computing
Volume	20
Issue number	2
Early online date	1 Mar 2022
DOIs	https://doi.org/10.1109/TDSC.2022.3155323
Publication status	Published - 1 Mar 2022

Keywords

opacity
logic
security
verification

Access to Document

10.1109/TDSC.2022.3155323Licence: Unspecified

Mu_etal_IEEETDSC_Verifying_Opacity_Properties_AAM
© 2022 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
Accepted author manuscript, 733 KBLicence: Other
opac-ltl

Cite this

@article{7b1a38c52e4b4b108f029203ae736ade,

title = "Verifying Opacity Properties in Security Systems",

abstract = "We delineate a methodology for the specification and verification of flow security properties expressible in the opacity framework. We propose a logic, opacTL, for straightforwardly expressing such properties in systems that can be modelled as partially observable labelled transition systems. We develop verification techniques for analysing property opacity with respect to observation notions. Adding a probabilistic operator to the specification language enables quantitative analysis and verification. This analysis is implemented as an extension to the PRISM model checker and illustrated via a number of examples. Finally, an alternative approach to quantifying the opacity property based on entropy is sketched.",

keywords = "opacity, logic, security, verification",

author = "Chunyan Mu and David Clark",

year = "2022",

month = mar,

day = "1",

doi = "10.1109/TDSC.2022.3155323",

language = "English",

volume = "20",

pages = "1450--1460",

journal = "IEEE Transactions on Dependable and Secure Computing",

number = "2",

}

TY - JOUR

T1 - Verifying Opacity Properties in Security Systems

AU - Mu, Chunyan

AU - Clark, David

PY - 2022/3/1

Y1 - 2022/3/1

N2 - We delineate a methodology for the specification and verification of flow security properties expressible in the opacity framework. We propose a logic, opacTL, for straightforwardly expressing such properties in systems that can be modelled as partially observable labelled transition systems. We develop verification techniques for analysing property opacity with respect to observation notions. Adding a probabilistic operator to the specification language enables quantitative analysis and verification. This analysis is implemented as an extension to the PRISM model checker and illustrated via a number of examples. Finally, an alternative approach to quantifying the opacity property based on entropy is sketched.

AB - We delineate a methodology for the specification and verification of flow security properties expressible in the opacity framework. We propose a logic, opacTL, for straightforwardly expressing such properties in systems that can be modelled as partially observable labelled transition systems. We develop verification techniques for analysing property opacity with respect to observation notions. Adding a probabilistic operator to the specification language enables quantitative analysis and verification. This analysis is implemented as an extension to the PRISM model checker and illustrated via a number of examples. Finally, an alternative approach to quantifying the opacity property based on entropy is sketched.

KW - opacity

KW - logic

KW - security

KW - verification

U2 - 10.1109/TDSC.2022.3155323

DO - 10.1109/TDSC.2022.3155323

M3 - Article

VL - 20

SP - 1450

EP - 1460

JO - IEEE Transactions on Dependable and Secure Computing

JF - IEEE Transactions on Dependable and Secure Computing

IS - 2

ER -

Verifying Opacity Properties in Security Systems

Abstract

Keywords

Access to Document

Fingerprint

Cite this