Published September 24, 2023
| Version v1
Conference paper
Open
Attribute Repair for Threat Prevention
Creators
- 1. AIT Austrian Institute of Technology
- 2. TU Graz
Description
We propose a model-based procedure for preventing security
threats using formal models. We encode system models and threats as
satisfiability modulo theory (SMT) formulas. This model allows us to ask
security questions as satisfiability queries. We formulate threat preven-
tion as an optimization problem over the same formulas. The outcome
of our threat prevention procedure is a suggestion of model attribute
repair that eliminates threats. We implement our approach using the
state-of-the-art Z3 SMT solver and interface it with the threat analysis
tool THREATGET. We demonstrate the value of our procedure in two
case studies from automotive and smart home domains.
Files
SAFECOMP23___Threat_Repair___Zenodo.pdf
Files
(9.1 MB)
Name | Size | Download all |
---|---|---|
md5:3a25af93fb28c61b23c78e12e67a06da
|
9.1 MB | Preview Download |