www.prismmodelchecker.org
[KP24] Narges Khakpour and David Parker. Partially-Observable Security Games for Attack-Defence Analysis in Software Systems. In Proc. 22nd International Conference on Software Engineering and Formal Methods (SEFM'24), Springer. To appear. November 2024. [pdf] [bib] [Develops techniques for threat analysis and defence synthesis using stochastic games and PRISM-games.]
Downloads:  pdf pdf (981 KB)  bib bib
Notes: An extended version of this paper, with proofs, can be found at https://arxiv.org/abs/2211.01508. The original publication is available at link.springer.com.
Links: [Google] [Google Scholar]
Abstract. Given the presence of residual vulnerabilities in software systems, it is critical to apply suitable countermeasures in order to minimize the likelihood of an attack. In this paper we propose a formal approach, based on stochastic games, to threat analysis and synthesis of defence strategies for protecting systems with vulnerabilities. Crucially, we support analysis under partial observation, where some of the attacker's activities are unobservable or undetectable by the defender. We construct a one-sided partially observable security game and transform it into a perfect game, for which formal analysis is feasible. We prove that this transformation is sound for a sub-class of security games and a subset of objectives specified in the temporal logic rPATL. We implement our approach and evaluate it by applying it to a real-life example.

Publications