research-article

A Formal Approach to Constructing Secure Air Vehicle Software

Authors:

Michael W. Whalen,

Michal Podhradsky,

June Andronick,

Douglas StuartAuthors Info & Claims

Computer, Volume 51, Issue 11

Pages 14 - 23

https://doi.org/10.1109/MC.2018.2876051

Published: 01 November 2018 Publication History

Abstract

Current approaches to cyber resiliency rely on patching systems after a vulnerability is discovered. What is needed is a clean-slate, mathematically based approach for building secure software. We developed new tools based on formal methods for building software for unmanned air vehicles that is provably secure against cyberattacks.

References

[1]

C. Stephen, D. MCoy, K. Brian, A. Danny, S. Hovav, S. Stefan, K. Karl, C. Alexei, R. Franziska, and K. Tadayoshi, “ Comprehensive experimental analyses of automotive attack surfaces,” in Proc. 20th USENIX Security Symp., San Francisco, CA, 2011.

Digital Library

[2]

H. Teso, “ Aircraft hacking: Practical aero series 2013,” <institution>HITB</institution>. Accessed on: <date-in-citation>, <day>15</day>, 2018</date-in-citation>. {Online}. Available: https://conference.hitb.org/hitbsecconf2013ams/hugo-teso/

[3]

K. Zetter. (2015). Feds say that banned researcher commandeered a plane. Wired . {Online}. Available: https://www.wired.com/2015/05/feds-say-banned-researcher-commandeered-plane/

[4]

R. Santamarta, Last Call for SATCOM Security . Las Vegas, NV: Black Hat, 2018.

[5]

G. Warwick (2017). DARPA blocks cyberattacks on Unmanned Little Bird in flight . <institution>Aerospace Daily & Defense Report</institution>.

[6]

P. Feiler and D. Gluch, Model-Based Engineering with AADL: An Introduction to the SAE Architecture Analysis & Design Language, 1st ed. Reading, MA: Addison-Wesley, 2012.

Digital Library

[7]

M. W. Whalen, A. Gacek, D. D. Cofer, A. Murugesan, M. Per Erik Heimdahl, and S. Rayadurgam, “ Your “what” is my “how”: Iteration and hierarchy in system design,” IEEE Softw., vol. Volume 30, no. Issue 2, pp. 54–60, 2013.

Digital Library

[8]

A. Gacek, et al., “ Resolute: An assurance case language for architecture models,” in Proc. HILT 2014, ACM, New York, pages pp.19–28.

Digital Library

[9]

A Cimatti, M Dorigatti, S Tonetta, “ OCRA: A tool for checking the refinement of temporal contracts,” in Proc. ASE, 2013, pp. 702–705.

Digital Library

[10]

A. Gacek, J. Backes, M. Whalen, L. G. Wagner, and E. Ghassabani, “ The JKind Model Checker,” CAV, no. Issue 2, pp. 20–27, 2018.

[11]

<std> GSN Working Group, <std-organization>GSN community</std-organization> standard </std>, 2011.

[12]

P. Graydon, J. Knight, and E. Strunk. “ Assurance based development of critical systems,” in Proc. 2007 Int. Symp. Dependable Systems and Networks (DSN).

Digital Library

[13]

P. Hickey, et al. “ Building embedded systems with embedded DSLs (experience report),” in Proc. Int. Conf. Functional Programming (ICFP), ACM, 2014.

Digital Library

[14]

, “ JPL institutional coding standard for the C programming language ” <institution>Jet Propulsion Lab.</institution>, Rep., 2009.

[15]

G. Klein, J. Andronick, K. Elphinstone, T. Murray, T. Sewell, R. Kolanski, and G. Heiser, “ Comprehensive formal verification of an OS microkernel,” ACM Trans. Comput. Syst., vol. Volume 32, no. Issue 1, pp. 2:1–2:70, 2014.

Digital Library

[16]

T. Nipkow, et al. Isabelle/HOL – A Proof Assistant for Higher-Order Logic, vol. 2283 of LNCS. Heidelberg: Springer, 2002.

Digital Library

[17]

D. Cofer, A. Gacek, J. Backes, and K. Slind. “ High-assurance cyber military systems (HACMS), 2017 .” <institution>Rockwell Collins</institution>. Accessed on: <date-in-citation>, <day>15</day>, 2018</date-in-citation>. {Online}. Available: https://insights.rockwellcollins.com/2017/07/06/video-high-assurance-cyber-military-systems-hacms/

Cited By

Belt JHatcliff JRobby Shackleton JCarciofini JCarpenter TMercer EAmundson IBabar JCofer DHardin DHoech KSlind KKuz IMcleod K(2023)Model-driven development for the seL4 microkernel using the HAMR frameworkJournal of Systems Architecture: the EUROMICRO Journal10.1016/j.sysarc.2022.102789134:COnline publication date: 1-Jan-2023
https://dl.acm.org/doi/10.1016/j.sysarc.2022.102789
Kulik TDongol BLarsen PMacedo HSchneider STran-Jørgensen PWoodcock J(2022)A Survey of Practical Formal Methods for SecurityFormal Aspects of Computing10.1145/352258234:1(1-39)Online publication date: 5-Jul-2022
https://dl.acm.org/doi/10.1145/3522582
Cock DRamdas ASchwyn DGiardino MTurowski AHe ZHossle NKorolija DLicciardello MMartsenko KAchermann RAlonso GRoscoe TFalsafi BFerdman MLu SWenisch T(2022)Enzian: an open, general, CPU/FPGA platform for systems software researchProceedings of the 27th ACM International Conference on Architectural Support for Programming Languages and Operating Systems10.1145/3503222.3507742(434-451)Online publication date: 28-Feb-2022
https://dl.acm.org/doi/10.1145/3503222.3507742
Show More Cited By

Recommendations

Design and Implementation of Hovering Flapping Wing Micro Air Vehicle
Intelligent Robotics and Applications
Abstract
In this paper, a prototype of a hovering flapping wing micro air vehicle is developed. The aerodynamic force of the prototype at different flapping frequencies and pitch angles is measured, and a hovering flight control scheme for the vehicle is ...
Formal Methods in Air Traffic Management: The Case of Unmanned Aircraft Systems Invited Lecture
Proceedings of the 12th International Colloquium on Theoretical Aspects of Computing - ICTAC 2015 - Volume 9399

As the technological and operational capabilities of unmanned aircraft systems UAS continue to grow, so too does the need to introduce these systems into civil airspace. Unmanned Aircraft Systems Integration in the National Airspace System is a NASA ...
Secure Software Engineering: Learning from the Past to Address Future Challenges

This paper provides a taxonomy of secure software systems engineering (SSE) by surveying and organizing relevant SSE research and presents current trends in SSE, on-going challenges, and models for reasoning about threats and vulnerabilities. Several ...

Comments

Information & Contributors

Information

Published In

cover image Computer

Computer Volume 51, Issue 11

November 2018

108 pages

ISSN:0018-9162

Issue’s Table of Contents

Copyright © 2018.

Publisher

IEEE Computer Society Press

Washington, DC, United States

Publication History

Published: 01 November 2018

Qualifiers

Research-article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

9
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 28 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

Belt JHatcliff JRobby Shackleton JCarciofini JCarpenter TMercer EAmundson IBabar JCofer DHardin DHoech KSlind KKuz IMcleod K(2023)Model-driven development for the seL4 microkernel using the HAMR frameworkJournal of Systems Architecture: the EUROMICRO Journal10.1016/j.sysarc.2022.102789134:COnline publication date: 1-Jan-2023
https://dl.acm.org/doi/10.1016/j.sysarc.2022.102789
Kulik TDongol BLarsen PMacedo HSchneider STran-Jørgensen PWoodcock J(2022)A Survey of Practical Formal Methods for SecurityFormal Aspects of Computing10.1145/352258234:1(1-39)Online publication date: 5-Jul-2022
https://dl.acm.org/doi/10.1145/3522582
Cock DRamdas ASchwyn DGiardino MTurowski AHe ZHossle NKorolija DLicciardello MMartsenko KAchermann RAlonso GRoscoe TFalsafi BFerdman MLu SWenisch T(2022)Enzian: an open, general, CPU/FPGA platform for systems software researchProceedings of the 27th ACM International Conference on Architectural Support for Programming Languages and Operating Systems10.1145/3503222.3507742(434-451)Online publication date: 28-Feb-2022
https://dl.acm.org/doi/10.1145/3503222.3507742
Liu CBabar JAmundson IHoech KCofer DMercer E(2022)Assume-Guarantee Reasoning with Scheduled ComponentsNASA Formal Methods10.1007/978-3-031-06773-0_19(355-372)Online publication date: 24-May-2022
https://dl.acm.org/doi/10.1007/978-3-031-06773-0_19
Amundson ICofer DZhu QDubey APinto A(2021)Resolute assurance arguments for cyber assured systems engineeringProceedings of the Workshop on Design Automation for CPS and IoT10.1145/3445034.3460507(7-12)Online publication date: 18-May-2021
https://dl.acm.org/doi/10.1145/3445034.3460507
Cofer DAmundson ISattigeri RPassi ABoggs CSmith EGilham LByun TRayadurgam S(2020)Run-Time Assurance for Learning-Enabled SystemsNASA Formal Methods10.1007/978-3-030-55754-6_21(361-368)Online publication date: 11-May-2020
https://dl.acm.org/doi/10.1007/978-3-030-55754-6_21
Robles GSteinmacher IAdams PTreude C(2019)Twenty Years of Open Source Software: From Skepticism to MainstreamIEEE Software10.1109/MS.2019.293367236:6(12-15)Online publication date: 22-Oct-2019
https://dl.acm.org/doi/10.1109/MS.2019.2933672
Backes JBolignano PCook BGacek ALuckow KRungta NSchaef MSchlesinger CTanash RVarming CWhalen M(2019)One-Click Formal MethodsIEEE Software10.1109/MS.2019.293060936:6(61-65)Online publication date: 1-Nov-2019
https://dl.acm.org/doi/10.1109/MS.2019.2930609
Czarnecki KMussbacher GAtlee JBultan T(2019)Software engineering for automated vehiclesProceedings of the 41st International Conference on Software Engineering: Companion Proceedings10.1109/ICSE-Companion.2019.00024(6-8)Online publication date: 25-May-2019
https://dl.acm.org/doi/10.1109/ICSE-Companion.2019.00024

View Options

View options

Figures

Tables

Media

View Issue’s Table of Contents