Model-based security engineering for cyber-physical systems: A systematic mapping study

Information and Software Technology

Volumn 83, Issue , 2017, Pages 116-135

  Nguyen, Phu H ^a   Ali, Shaukat ^a   Yue, Tao ^a,b  

^a SIMULA RESEARCH LABORATORY   (Norway)

^b UNIVERSITY OF OSLO   (Norway)

Author keywords

Cyber physical systems; Model based engineering; Security; Security engineering; Snowballing; Survey; Systematic mapping

Indexed keywords

CYBER PHYSICAL SYSTEM; DIGITAL SUBSCRIBER LINES; EMBEDDED SYSTEMS; MAPPING; MODELING LANGUAGES; PROBLEM ORIENTED LANGUAGES; SECURITY SYSTEMS; SURVEYING;

MODEL-BASED ENGINEERING; SECURITY; SECURITY ENGINEERING; SNOWBALLING; SYSTEMATIC MAPPING;

ENGINEERING RESEARCH;

EID: 85006307160     PISSN: 09505849     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.infsof.2016.11.004     Document Type: Review

References (96)

1. [1] R. Abdallah, A. Motii, N. Yakymets, A. Lanusse, Using Model Driven Engineering to Support Multi-paradigms Security Analysis, Springer, pp. 278–292.
2. [2] S. Adepu, A. Mathur, Introducing Cyber Security at the Design Stage of Public Infrastructures: A Procedure and Case Study, Springer, pp. 75–94.
3. [3] Apvrille, L., Roudier, Y., Sysml-sec: a sysml environment for the design and development of secure embedded systems. APCOSEC 2013, 2013.
4. [4] S.A. Asadollah, R. Inam, H. Hansson, A Survey on Testing for Cyber Physical System, Springer, pp. 194–207.
5. [5] B. Balaji, A. Faruque, M. Abdullah, N. Dutt, R. Gupta, Y. Agarwal, Models, abstractions, and architectures: the missing links in cyber-physical systems, in: Proceedings of the 52nd Annual Design Automation Conference, ACM, p. 82.
6. [6] Bannour, B., Escobedo, J., Gaston, C., Le Gall, P., Pedroza, G., Designing sequence diagram models for robustness to attacks. Software Testing, Verification and Validation Workshops (ICSTW) IEEE Seventh International Conference on, 2014, IEEE, 26–33.
7. [7] K. Beckers, S. Faßbender, M. Heisel, S. Suppan, A Threat Analysis Methodology for Smart Home Scenarios, Springer, pp. 94–124.
8. [8] J. Bézivin, Model Driven Engineering: An Emerging Technical Space, Springer, pp. 36–64.
9. [9] Biolchini, J., Mian, P.G., Natali, A.C.C., Travassos, G.H., Systematic review in software engineering. Technical Report ES 679.05, 2005, System Engineering and Computer Science Department COPPE/UFRJ.
10. [10] Bishop, M., Computer Security: Art and Science. 200, 2012, Addison-Wesley.
11. [11] Brambilla, M., Cabot, J., Wimmer, M., Model-Driven Software Engineering in Practice. 2012, Morgan & Claypool Publishers.
12. [12] Bruinenberg, J., Colton, L., Darmois, E., Dorn, J., Doyle, J., Elloumi, O., Englert, H., Forbes, R., Heiles, J., Hermans, P., Cen-cenelec-etsi smart grid co-ordination group smart grid reference architecture. Technical Report, 2012, CEN, CENELEC, ETSI.
13. [13] A.A. Cardenas, S. Amin, S. Sastry, Secure control: towards survivable cyber-physical systems, in: The 28th International Conference on Distributed Computing Systems Workshops, IEEE, pp. 495–500.
14. [14] B. Chen, C. Schmittner, Z. Ma, W.G. Temple, X. Dong, D.L. Jones, W.H. Sanders, Security Analysis of Urban Railway Systems: The Need for a Cyber-Physical Perspective, Springer, pp. 277–290.
15. [15] Chen, T.M., Sanchez-Aarnoutse, J.C., Buford, J., Petri net modeling of cyber-physical attacks on smart grid. IEEE Trans. Smart Grid 2:4 (2011), 741–749, 10.1109/TSG.2011.2160000.
16. [16] Cheung, H., Hamlyn, A., Mander, T., Cungang, Y., Cheung, R., Role-based model security access control for smart power-grids computer networks. Power and Energy Society General Meeting - Conversion and Delivery of Electrical Energy in the 21st Century, 2008, IEEE, 1–7 10.1109/PES.2008.4596902.
17. [17] Crnkovic, I., Sentilles, S., Vulgarakis, A., Chaudron, M.R., A classification framework for software component models. Softw. Eng., IEEE Trans. 37:5 (2011), 593–615.
18. [18] Cysneiros, J. L.M. Sampaio do Prado Leite, Non-functional requirements: from elicitation to modelling languages. Proceedings of the 24th International Conference on Software Engineering, 2002. ICSE 2002, 2002, 699–700.
19. [19] T. Dyba, T. Dingsȹyr, Strength of evidence in systematic reviews in software engineering, in: Proceedings of the Second ACM-IEEE international symposium on Empirical software engineering and measurement, ACM, pp. 178–187.
20. [20] M. Eby, J. Werner, G. Karsai, A. Ledeczi, Integrating security modeling into embedded system design, in: Engineering of Computer-Based Systems, 2007. ECBS 07. 14th Annual IEEE International Conference and Workshops on the, IEEE, pp. 221–228.
21. [21] E.B. Fernandez, Preventing and Unifying Threats in Cyberphysical Systems, IEEE, pp. 292–293.
22. [22] E.B. Fernandez, M.M. Larrondo-Petrie, Designing secure scada systems using security patterns, in: System Sciences (HICSS), 2010 43rd Hawaii International Conference on, IEEE, pp. 1–8.
23. [23] Fletcher, K.K., Liu, X., Security requirements analysis, specification, prioritization and policy development in cyber-physical systems. Secure Software Integration & Reliability Improvement Companion (SSIRI-C), 5th International Conference on, 2011, IEEE, 106–113.
24. [24] L. Forbes, H. Vu, B. Udrea, H. Hagar, X.D. Koutsoukos, M. Yampolskiy, Securecps: Defending a nanosatellite cyber-physical system, in: SPIE Defense+ Security, International Society for Optics and Photonics, pp. 90850I–90850I–15.
25. [25] Forrester, Predictions 2016: Cybersecurity Swings To Prevention. Report, 2015, Forrester.
26. [26] France, R., Ray, I., Georg, G., Ghosh, S., Aspect-oriented approach to early design modelling. IEE Proc.-Softw. 151:4 (2004), 173–185.
27. [27] Gunes, V., Peter, S., Givargis, T., Vahid, F., A survey on concepts, applications, and challenges in cyber-physical systems. KSII Trans. Internet Inf. Syst., 8(12), 2014.
28. [28] Hahn, A., Govindarasu, M., Model-based intrustion detection for the smart grid (minds). Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop CSIIRW ’13, 2013, ACM, New York, NY, USA, 27:1–27:4, 10.1145/2459976.2460007.
29. [29] T. Hartmann, F. Fouquet, J. Klein, G. Nain, Y. Le Traon, Reactive Security for Smart Grids Using Models@ Run. Time-based Simulation and Reasoning, Springer, pp. 139–153.
30. [30] I. Horvath, B.H. Gerritsen, Cyber-physical systems: concepts, technologies and implementation principles, in: Proceedings of TMCE, volume 1, pp. 7–11.
31. [31] Jauhar, S., Binbin, C., Temple, W.G., Xinshu, D., Kalbarczyk, Z., Sanders, W.H., Nicol, D.M., Model-based cybersecurity assessment with nescor smart grid failure scenarios. Dependable Computing (PRDC) IEEE 21st Pacific Rim International Symposium on, 2015, 319–324, 10.1109/PRDC.2015.37.
32. [32] J.C. Jensen, D.H. Chang, E.A. Lee, A model-based design methodology for cyber-physical systems, in: Wireless Communications and Mobile Computing Conference (IWCMC), 2011 7th International, IEEE, pp. 1666–1671.
33. [33] X. Ji, H. Yu, G. Fan, W. Fu, Attack-defense trees based cyber security analysis for CPSs, IEEE, pp. 693–698.
34. [34] E. Kang, S. Adepu, D. Jackson, A.P. Mathur, Model-based security analysis of a water treatment system, ACM, pp. 22–28.
35. [35] S. Karnouskos, Stuxnet worm impact on industrial cyber-physical system security, in: IECON 2011-37th Annual Conference on IEEE Industrial Electronics Society, IEEE, pp. 4490–4494.
36. [36] Khaitan, S.K., McCalley, J.D., Design techniques and applications of cyberphysical systems: a survey. Syst. J., IEEE 9:2 (2015), 350–365.
37. [37] Kitchenham, B., Guidelines for performing systematic literature reviews in software engineering. Technical Report, 2007, EBSE.
38. [38] Kitchenham, B.A., Budgen, D., Brereton, O.P., Using mapping studies as the basis for further research–a participant-observer case study. Inf. Softw. Technol. 53:6 (2011), 638–651.
39. [39] F. Knirsch, D. Engel, C. Neureiter, M. Frincu, V. Prasanna, Privacy Assessment of Data Flow Graphs for an Advanced Recommender System in the Smart Grid, Springer, pp. 89–106.
40. [40] Lemaire, L., Lapon, J., De Decker, B., Naessens, V., A sysml extension for security analysis of industrial control systems. Proceedings of the 2nd International Symposium on ICS & SCADA Cyber Security Research, 2014, BCS, 1–9.
41. [41] L. Lemaire, J. Vossaert, J. Jansen, V. Naessens, Extracting Vulnerabilities in Industrial Control Systems Using a Knowledge-Based System, British Computer Society, pp. 1–10.
42. [42] T. Li, E. Paja, J. Mylopoulos, J. Horkoff, K. Beckers, Security Attack Analysis Using Attack Patterns, IEEE, pp. 1–13.
43. [43] Lucio, L., Zhang, Q., Nguyen, P.H., Amrani, M., Klein, J., Vangheluwe, H., Le Traon, Y., Advances in Model-Driven Security. Advances in Computer, 2014, Elsevier.
44. [44] Y.Z. Lun, A. D Innocenzo, I. Malavolta, M.D. Di Benedetto, Cyber-physical systems security: a systematic mapping study, arXiv preprint arXiv: 1605.09641 (2016).
45. [45] M. McDowell, Understanding denial-of-service attacks, National Cyber Alert System, Cyber Security Tip ST04-015.2004 (2004).
46. [46] McGraw, G., Software Security: Building Security in. vol. 1, 2006, Addison-Wesley Professional.
47. [47] Microsoft, Security development lifecycle, http://www.microsoft.com/en-us/sdl/.
48. [48] MIT, Alloy analyzer, http://alloy.mit.edu.
49. [49] Mitchell, R., Chen, I.-R., A survey of intrusion detection techniques for cyber-physical systems. ACM Comput. Surv. (CSUR), 46(4), 2014, 55.
50. [50] M. Mori, A. Ceccarelli, P. Lollini, A. Bondavalli, B. Fr, A holistic viewpoint-based sysml profile to design systems-of-systems, IEEE, pp. 276–283.
51. [51] Mosterman, P.J., Zander, J., Cyber-physical systems challenges: a needs analysis for collaborating embedded software systems. Softw. Syst. Model., 2016, 1–12.
52. [52] Nasr, P.M., Varjani, A.Y., Petri net model of insider attacks in scada system. 2014 11th International ISC Conference on Information Security and Cryptology, ISCISC, 2014, 55–60 10.1109/ISCISC.2014.6994022.
53. [53] H. Neema, P. Volgyesi, B. Potteiger, W. Emfinger, X. Koutsoukos, G. Karsai, Y. Vorobeychik, J. Sztipanovits, Demo abstract: sure: an experimentation and evaluation testbed for cps security and resilience, IEEE, pp. 1–1.
54. [54] Neureiter, C., Eibl, G., Engel, D., Schlegel, S., Uslar, M., A concept for engineering smart grid security requirements based on sgam models. Comput. Sci.-Res. Dev., 2014, 1–7.
55. [55] Neureiter, C., Engel, D., Uslar, M., Domain specific and model based systems engineering in the smart grid as prerequesite for security by design. Electronics, 5(2), 2016, 24.
56. [56] Nguyen, P.H., Klein, J., Le Traon, Y., Kramer, M.E., A systematic review of model-driven security. 2013 20th Asia-Pacific Software Engineering Conference (APSEC), vol. 1, 2013, IEEE, 432–441.
57. [57] Nguyen, P.H., Kramer, M.E., Klein, J., Le Traon, Y., An extensive systematic review on the model-driven development of secure systems. Inf. Softw. Technol. 68 (2015), 62–81.
58. [58] Nguyen, P.H., Yskout, K., Heyman, T., Klein, J., Scandariato, R., Le Traon, Y., Sospa: a system of security design patterns for systematically engineering secure systems. Model Driven Engineering Languages and Systems (MODELS), 2015 ACM/IEEE 18th International Conference on, 2015, IEEE, 246–255.
59. [59] Nielsen, C.B., Larsen, P.G., Fitzgerald, J., Woodcock, J., Peleska, J., Systems of systems engineering: basic concepts, model-based techniques, and research directions. ACM Comput. Surv. (CSUR), 48(2), 2015, 18.
60. [60] NSF, Cyber-physical systems (cps) program solicitation, 2016 http://www.nsf.gov/pubs/2016/nsf16549/nsf16549.html.
61. [61] Oates, R., Thom, F., Herries, G., Security-aware, model-based systems engineering with sysml. Proceedings of the 1st International Symposium on ICS & SCADA Cyber Security Research, 2013, BCS, 78–87.
62. [62] Orojloo, H., Azgomi, M.A., A method for modeling and evaluation of the security of cyber-physical systems. 2014 11th International ISC Conference on Information Security and Cryptology, ISCISC, 2014, 131–136, 10.1109/ISCISC.2014.6994036.
63. [63] Pedroza, G., Apvrille, L., Knorreck, D., Avatar: a sysml environment for the formal verification of safety and security properties. New Technologies of Distributed Systems (NOTERE) 11th Annual International Conference on, 2011, IEEE, 1–10.
64. [64] G. Pedroza, P. Le Gall, C. Gaston, F. Bersey, Timed-model-based method for security analysis and testing of smart grid systems,.
65. [65] K. Petersen, R. Feldt, S. Mujtaba, M. Mattsson, Systematic mapping studies in software engineering, in: 12th International Conference on Evaluation and Assessment in Software Engineering, volume 17, sn.
66. [66] Petersen, K., Vakkalanka, S., Kuzniarz, L., Guidelines for conducting systematic mapping studies in software engineering: an update. Inf. Softw. Technol. 64 (2015), 1–18.
67. [67] B. Potteiger, G. Martins, X. Koutsoukos, Software and Attack Centric Integrated Threat Modeling for Quantitative Risk Assessment, ACM, pp. 99–108.
68. [68] R.R. Rajkumar, I. Lee, L. Sha, J. Stankovic, Cyber-physical systems: the next computing revolution, in: Proceedings of the 47th Design Automation Conference, ACM, pp. 731–736.
69. [69] Ur-Rehman, O., Zivic, N., Secure design patterns for security in smart metering systems. 9th IEEE European Modelling Symposium on Mathematical Modelling and Computer Simulation, 2015, IEEE.
70. [70] Roudier, Y., Apvrille, L., Sysml-sec: a model driven approach for designing safe and secure systems. Model-Driven Engineering and Software Development (MODELSWARD) 3rd International Conference on, 2015, IEEE, 655–664.
71. [71] Ruiz, J.F., Harjani, R., Mana, A., Desnitsky, V., Kotenko, I., Chechulin, A., A methodology for the analysis and modeling of security threats and attacks for systems of embedded components. Parallel, Distributed and Network-Based Processing (PDP) 20th Euromicro International Conference on, 2012, IEEE, 261–268.
72. [72] Saadatmand, M., Cicchetti, A., Sjödin, M., Leveque, T., Managing timing implications of security aspects in model-driven development of real-time embedded systems. Int. J. Adv. Secur. 5:3/4 (2012), 68–80.
73. [73] Saxena, N., Choi, B.J., Lu, R., Authentication and authorization scheme for various user roles and devices in smart grid. IEEE Trans. Inf. Forensics Secur. 11:5 (2016), 907–921.
74. [74] Sendall, S., Kozaczynski, W., Model transformation: the heart and soul of model-driven software development. Softw., IEEE 20:5 (2003), 42–45.
75. [75] Smart Grid Interoperability Panel Cyber Security Working Group, et al. Nist ir 7628 guidelines for smart grid cyber security. Privacy Smart Grid, 2, 2010.
76. [76] Sridhar, S., Hahn, A., Govindarasu, M., Cyber–physical system security for the electric power grid. Proc. IEEE 100:1 (2012), 210–224.
77. [77] Suleiman, H., Alqassem, I., Diabat, A., Arnautovic, E., Svetinovic, D., Integrated smart grid systems security threat model. Inf. Syst. 53 (2015), 147–160.
78. [78] Suleiman, H., Svetinovic, D., Evaluating the effectiveness of the security quality requirements engineering (square) method: a case study using smart grid advanced metering infrastructure. Requirements Eng. 18:3 (2013), 251–279.
79. [79] F.M. Tabrizi, K. Pattabiraman, A model for security analysis of smart meters, in: Proceedings of the International Conference on Dependable Systems and Networks, 10.1109/DSNW.2012.6264682.
80. [80] Tabrizi, F.M., Pattabiraman, K., A model-based intrusion detection system for smart meters. Proceedings - 2014 IEEE 15th International Symposium on High-Assurance Systems Engineering, HASE, 2014, 17–24 10.1109/HASE.2014.12.
81. [81] Vasilevskaya, M., Gunawan, L.A., Nadjm-Tehrani, S., Herrmann, P., Integrating security mechanisms into embedded systems by domainspecific modelling. Secur. Commun. Netw. 7:12 (2014), 2815–2832.
82. [82] M. Vasilevskaya, S. Nadjm-Tehrani, Quantifying Risks to Data Assets Using Formal Metrics in Embedded System Design, Springer, pp. 347–361.
83. [83] A.H. Vu, N.O. Tippenhauer, B. Chen, D.M. Nicol, Z. Kalbarczyk, CyberSAGE: A Tool for Automatic Security Assessment of Cyber-physical Systems, Springer, pp. 384–387.
84. [84] E.K. Wang, Y. Ye, X. Xu, S.-M. Yiu, L.C.K. Hui, K.-P. Chow, Security issues and challenges for cyber physical system, in: Proceedings of the 2010 IEEE/ACM Int'l Conference on Green Computing and Communications & Int'l Conference on Cyber, Physical and Social Computing, IEEE Computer Society, pp. 733–738.
85. [85] Wang, W., Lu, Z., Cyber security in the smart grid: survey and challenges. Comput. Netw. 57:5 (2013), 1344–1371.
86. [86] A. Wasicek, P. Derler, E. Lee, Aspect-oriented modeling of attacks in automotive cyber-physical systems, in: Design Automation Conference (DAC), 2014 51st ACM/EDAC/IEEE, IEEE, pp. 1–6.
87. [87] Weigert, T., Weil, F., Practical experiences in using model-driven engineering to develop trustworthy computing systems. Sensor Networks, Ubiquitous, and Trustworthy Computing IEEE International Conference on, vol. 1, 2006, IEEE, 8.
88. [88] Wieringa, R., Maiden, N., Mead, N., Rolland, C., Requirements engineering paper classification and evaluation criteria: a proposal and a discussion. Requirements Engineering 11:1 (2006), 102–107.
89. [89] C. Wohlin, Guidelines for snowballing in systematic literature studies and a replication in software engineering, in: Proceedings of the 18th International Conference on Evaluation and Assessment in Software Engineering, ACM, p. 38.
90. [90] Wohlin, C., Prikladnicki, R., Systematic literature reviews in software engineering. Inf. Softw. Technol. 55:6 (2013), 919–920.
91. [91] Wu, K., Li, Y., Chen, F., Chen, L., A method for describing industrial control system network attack using object petri net. IEEJ Trans. Electr. Electron. Eng. 11:2 (2016), 216–227.
92. [92] Yampolskiy, M., Horvath, P., Koutsoukos, X.D., Xue, Y., Sztipanovits, J., A language for describing attacks on cyber-physical systems. Int. J. Crit. Infrastruct. Prot. 8 (2015), 40–52.
93. [93] M. Yampolskiy, P. Horvath, X.D. Koutsoukos, Y. Xue, J. Sztipanovits, Systematic analysis of cyber-attacks on cps-evaluating applicability of dfd-based approach, in: Resilient Control Systems (ISRCS), 2012 5th International Symposium on, IEEE, pp. 55–62.
94. [94] Zafar, N., Arnautovic, E., Diabat, A., Svetinovic, D., System security requirements analysis: a smart grid case study. Systems Engineering 17:1 (2014), 77–88.
95. [95] Zhang, M., Selic, B., Ali, S., Yue, T., Okariz, O., Norgren, R., Understanding uncertainty in cyber-physical systems: A conceptual model. 12th European Conference on Modelling Foundations and Applications (ECMFA 2016), 2016, Springer, 247–264.
96. [96] Zheng, X., Julien, C., Kim, M., Khurshid, S., On the state of the art in verification and validation in cyber physical systems. Technical Report TR-ARiSE-2014-001, 2014, The University of Texas at Austin, The Center for Advanced Research in Software Engineering.