securify a compositional approach of building security
play

SECURIFY: A COMPOSITIONAL APPROACH OF BUILDING SECURITY VERIFIED - PowerPoint PPT Presentation

Nov 17, 2023 •281 likes •418 views

1 SECURIFY: A COMPOSITIONAL APPROACH OF BUILDING SECURITY VERIFIED SYSTEM Liu Yang, Associate Professor, NTU SG-CRC 2018 28 March 2018 2 Securify Approach Compositional Security Securify Architecture Reasoning with Untrusted Components

  1. 1 SECURIFY: A COMPOSITIONAL APPROACH OF BUILDING SECURITY VERIFIED SYSTEM Liu Yang, Associate Professor, NTU SG-CRC 2018 28 March 2018

  2. 2 Securify Approach Compositional Security Securify Architecture Reasoning with Untrusted Components Model-based Automatic Secure Code Program Applications Generation Verification Security- Enhanced Libraries Library Runtime Verification Security Verification Secure Micro- OS / Micro Kernel Kernel Verification Hardware-aided Hardware Dynamic Hardware Security Verification Analysis

  3. 3 Research Highlights • Detection of errors in the ARINC-653 standard for safety of partitioning systems. • Recognized by the ARINC-653 Committee and revised according to our proposed fixes. • Multi-Core separation micro-kernel Verification • Building demos using the verified micro-kernels • Library Verification and Safe Code Generation • Collaboration on generating secure libraries for Linux kernel and critical components in autonomous vehicles • Runtime verification • Attack detection in CANBUS and Android for malware detection • Vulnerability Reported • 100+ CVE reported in commercial software with 100K USD bug bounties

  4. 4 Internet of Things Communication Defense Devices Smart Home Attack Isolation Dynamic Monitoring Aerospace Isolated Critical back- ends from Non-secure Front-ends Smart Nation Fault Contemption Foundational Secure Architecture Banking Devices Medical Devices Embedded Systems ITS High Assurance Systems

  5. 5 Approaching Devices Security by Construction Current Non-secure Architecture Proposed Secure Architecture Processes Processes Truly Isolated Call to Buggy System/Library Functional and memory safety correctness using safe code generation from specification Linux (Monolithic Kernel) Security Monitor • Drivers (Bugs) Runtime monitor for dynamic security • Libraries (Bugs) • Security Mechanisms (NX, ASLR, etc.) (Bugs) Separation Micro-Kernel • Control Access Mechanisms (Bugs). Necessary and Sufficient set of verified services providing Spatial and temporal isolation HW HW

  6. 6 Approaching Devices Security by Construction Security Monitor Runtime monitor for dynamic security Scheduling Process Communication Illegal Legal Actions Actions Actions System Call System Call Verified Kernel Interface Verified Separation Micro-Kernel Necessary and Sufficient set of verified services providing Spatial and temporal isolation HW

  7. 7 Monolithic Approach in AV Self-Driving User Interface System GPS CAN adaptor Camera Driver Driver Driver Steering Brake WiFi Bluetooth ECU ECU Driver Driver Linux Acceleration CAN BUS ECU

  8. 8 Monolithic Approach in AV Self-Driving Vulnerable System User Interface GPS CAN adaptor Camera Driver Driver Driver Steering Brake WiFi Bluetooth ECU ECU Driver Driver Linux CAN BUS Acceleration ECU CAN BUS easily accessible AV easy to hijack!!!

  9. 9 A separation approach for AV Security Malicius Bluetooth Isolated Components Driver User Interface • Malicious Agents Camera do not have Driver access to other WiFi domains Driver Self-Driving CAN adaptor GPS System Driver Driver Security Monitor Steering Brake Separation ECU ECU Micro-Kernel Acceleration CAN BUS ECU

  10. 10 A separation approach for AV Security Malicius Bluetooth Verified Micro Kernel Driver User Interface ensures that there are Camera no kernel exploits Driver able to affect the WiFi information flow. Driver Self-Driving CAN adaptor GPS System Driver Driver Security Monitor Steering Brake Separation ECU ECU Micro-Kernel Acceleration CAN BUS ECU

  11. 11 A separation approach for AV Security Malicius Bluetooth Indirect access can Driver User Interface be controlled: Camera • limited Driver communication in WiFi the channel Driver • Security Monitor can control the Self-Driving CAN adaptor GPS information sent System Driver Driver between domains Security Monitor Steering Brake Separation ECU ECU Micro-Kernel Acceleration CAN BUS ECU

  12. 12 Summary • Securify provides a secure architecture by construction with a verified secure Separation kernel and run-time monitoring for dynamic security. • Separation Kernel provides a secure architecture for high assurance systems. • Security can be enhanced with a trusted privileged system run- time monitor. • Securify foundations can be used to provide a secure architecture for IoT devices and IST, which naturally fixes most of the problems of monolithic approaches.

  13. 13 Thanks for your attention!

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Securify: Practical Security Analysis of Smart Contracts https://securify.ch Dana Martin Petar

Securify: Practical Security Analysis of Smart Contracts https://securify.ch Dana Martin Petar

Securify: Practical Security Analysis of Smart Contracts https://securify.ch Dana Martin Petar Andrei Arthur Florian Drachsler- Vechev Tsankov Dan Gervais Bnzli Cohen Grant: Startup: What is a smart contract? mapping(address

518 views • 35 slides
Securify: Practical Security Analysis of Smart Contracts https://securify.ch Dr. Petar Tsankov

Securify: Practical Security Analysis of Smart Contracts https://securify.ch Dr. Petar Tsankov

Securify: Practical Security Analysis of Smart Contracts https://securify.ch Dr. Petar Tsankov Scientific Researcher, ICE center, ETH Zurich Co-founder and Chief Scientist, ChainSecurity AG http://www.ptsankov.com/ @ptsankov

407 views • 39 slides
Compositional Security Evaluation: The MILS approach John Rushby and Rance DeLong Computer

Compositional Security Evaluation: The MILS approach John Rushby and Rance DeLong Computer

Compositional Security Evaluation: The MILS approach John Rushby and Rance DeLong Computer Science Laboratory SRI International Menlo Park CA USA Primary affiliation: LynuxWorks John Rushby, Rance DeLong, SR I Compositional Security

466 views • 25 slides
Building Structured Web Community Portals: A Top-Down, Compositional, and Incremental Approach

Building Structured Web Community Portals: A Top-Down, Compositional, and Incremental Approach

Building Structured Web Community Portals: A Top-Down, Compositional, and Incremental Approach Pedro DeRose University of Wisconsin-Madison Joint work with Warren Shen, Fei Chen, AnHai Doan, and Raghu Ramakrishnan 1 Structured Web Community

528 views • 26 slides
Security analysis of smart contracts in Datalog https://securify.ch Dr. Petar Tsankov Senior

Security analysis of smart contracts in Datalog https://securify.ch Dr. Petar Tsankov Senior

Security analysis of smart contracts in Datalog https://securify.ch Dr. Petar Tsankov Senior researcher, SRI lab, ETH Zurich Co-founder and Chief Scientist, ChainSecurity Inter-disciplinary research at Next-generation blockchain security ETH

1.22k views • 32 slides
Declarative Static Analysis of Smart Contracts securify.ch Quentin Hibon Blockchain Security

Declarative Static Analysis of Smart Contracts securify.ch Quentin Hibon Blockchain Security

Declarative Static Analysis of Smart Contracts securify.ch Quentin Hibon Blockchain Security Engineer, ChainSecurity Smart Contract Bugs in the News Low-level Code High-level languages Solidity Vyper compilation Low-level code

306 views • 28 slides
Synonymy in an approach to combined distributional and compositional semantics Ann Copestake and

Synonymy in an approach to combined distributional and compositional semantics Ann Copestake and

Synonymy in an approach to combined distributional and compositional semantics Synonymy in an approach to combined distributional and compositional semantics Ann Copestake and Aurlie Herbelot Computer Laboratory University of Cambridge

736 views • 21 slides
Compositional Approach to Suspension and Other Improvements to LTL Translation s Babiak 1 Thomas

Compositional Approach to Suspension and Other Improvements to LTL Translation s Babiak 1 Thomas

Compositional Approach to Suspension and Other Improvements to LTL Translation s Babiak 1 Thomas Badie 2 Alexandre Duret-Lutz 2 Tom a y 1 cek 1 Mojm r K ret nsk Jan Strej 1 Faculty of Informatics, Masaryk University, Brno,

657 views • 51 slides
A Compositional Logic A Compositional Logic for Control Flow for Control Flow Gang Tan, Boston

A Compositional Logic A Compositional Logic for Control Flow for Control Flow Gang Tan, Boston

A Compositional Logic A Compositional Logic for Control Flow for Control Flow Gang Tan, Boston College g , g Andrew W. Appel, Princeton University Jan 8 2006 Jan 8, 2006 1 Mobile Code Security Protect trusted system against

561 views • 26 slides
COMPOSITIONAL APPROACH TO PROGRAM FORMALIZATION AND VERIFICATION (methodological introduction)

COMPOSITIONAL APPROACH TO PROGRAM FORMALIZATION AND VERIFICATION (methodological introduction)

COMPOSITIONAL APPROACH TO PROGRAM FORMALIZATION AND VERIFICATION (methodological introduction) Mykola (Nikolaj) S. Nikitchenko Taras Shevchenko National University of Kyiv Linz, JKU, November 08-19, 2012 1 Contents Introduction

783 views • 40 slides
Compositional Security Modelling: Structure, Economics, and Behaviour Tristan Caulfield 1 David

Compositional Security Modelling: Structure, Economics, and Behaviour Tristan Caulfield 1 David

Compositional Security Modelling: Structure, Economics, and Behaviour Tristan Caulfield 1 David Pym 1 Julian Williams 2 1 Department of Computer Science, University College London 2 Business School, University of Durham 26th June 2014 Security

439 views • 10 slides
park ber Enforcing Verifiable Object Abstractions for Automated Compositional Security

park ber Enforcing Verifiable Object Abstractions for Automated Compositional Security

park ber Enforcing Verifiable Object Abstractions for Automated Compositional Security Analysis of a Hypervisor Amit Vasudevan (CyLab-CMU), Sagar Chaki (SEI-CMU), Petros Maniatis (Google Inc.), Limin Jia, Anupam Datta (ECE/CSD-CMU)

517 views • 24 slides
A compositional approach to statistical computing, machine learning, and probabilistic

A compositional approach to statistical computing, machine learning, and probabilistic

A compositional approach to statistical computing, machine learning, and probabilistic programming Darren Wilkinson @darrenjw darrenjw.github.io Newcastle University, UK / The Alan Turing Institute Bristol Data Science Seminar Bristol

687 views • 45 slides
A compositional approach to networks Brendan Fong, University of Oxford Southampton ECS Seminar

A compositional approach to networks Brendan Fong, University of Oxford Southampton ECS Seminar

A compositional approach to networks Brendan Fong, University of Oxford Southampton ECS Seminar 4 February 2015 The big picture Network-style diagrammatic languages have developed to represent and reason about many different sciences: Why?

874 views • 62 slides
Compositional Verification of Security Properties for Embedded Execution Platforms Christoph

Compositional Verification of Security Properties for Embedded Execution Platforms Christoph

Compositional Verification of Security Properties for Embedded Execution Platforms Christoph Baumann , Oliver Schwarz , Mads Dam KTH Royal Institute of Technology, Stockholm, Sweden RISE.SICS, Kista, Sweden cbaumann@kth.se

903 views • 65 slides
Safety control with performance guarantees of cooperative systems using compositional abstractions

Safety control with performance guarantees of cooperative systems using compositional abstractions

Cooperative systems Centralized symbolic control Compositional approach Safety control with performance guarantees of cooperative systems using compositional abstractions Pierre-Jean Meyer Antoine Girard Emmanuel Witrant Universit e

849 views • 45 slides
Announcements Lecture #6: Recursion Computer-Science Mentors (CSM) will be opening section

Announcements Lecture #6: Recursion Computer-Science Mentors (CSM) will be opening section

Announcements Lecture #6: Recursion Computer-Science Mentors (CSM) will be opening section signups tonight (Monday, Jan. 30) at 8pm. Details will appear on Piazza. Starting this Friday, Ill start a series of extra lectures for those

293 views • 3 slides
Algebraic Fields and Computable Categoricity Russell Miller & Alexandra Shlapentokh Queens

Algebraic Fields and Computable Categoricity Russell Miller & Alexandra Shlapentokh Queens

Algebraic Fields and Computable Categoricity Russell Miller & Alexandra Shlapentokh Queens College & CUNY Graduate Center East Carolina University New York, NY Greenville, NC. George Washington University Logic Seminar 19 November

520 views • 31 slides
Photo 1. Looking north from south end of Slide 1. No significant change in the backscarp since

Photo 1. Looking north from south end of Slide 1. No significant change in the backscarp since

Photo 1. Looking north from south end of Slide 1. No significant change in the backscarp since 2014. Photo 2. Looking south from north end of Slide 1. No significant change since 2014. \\H\15\16-305 2014 PH12 Inspection Photos Photo 3.

387 views • 4 slides
The evolu9on of infra-systems The challenge of

The evolu9on of infra-systems The challenge of

The evolu9on of infra-systems The challenge of interoperability across borders How was it solved? Johan Schot Professor SPRU , University of Sussex

364 views • 12 slides
CPS Applications Heechul Yun Note: Some slides are adopted from Prof. Pellizzoni 1 Outline

CPS Applications Heechul Yun Note: Some slides are adopted from Prof. Pellizzoni 1 Outline

CPS Applications Heechul Yun Note: Some slides are adopted from Prof. Pellizzoni 1 Outline Avionics Automotive Systems Other CPS Applications 2 Avionics Electronic systems on an aircraft Avionics = Aviation + electronics

1.15k views • 79 slides
A Formal Model: Media Access Control and Frame and Symbol Processing FlexRay Seminar Peter

A Formal Model: Media Access Control and Frame and Symbol Processing FlexRay Seminar Peter

A Formal Model: Media Access Control and Frame and Symbol Processing FlexRay Seminar Peter Bhm, 21.10.2005 Overview The Model Architecture Clock Synchronization Schedule Main Theorem Proof of Theorem Peter Bhm 2

529 views • 22 slides
Security and Privacy on the Road Janne Lindqvist WINLAB Research Review May 14, 2015 Very Hard

Security and Privacy on the Road Janne Lindqvist WINLAB Research Review May 14, 2015 Very Hard

Security and Privacy on the Road Janne Lindqvist WINLAB Research Review May 14, 2015 Very Hard (and Fun!) Problem Is it possible to track you when we just know your: Starting location and Your driving speed with timestamps? Elastic

324 views • 17 slides
Formal Verification of Gate-Level Computer Systems: ECU Sergey Tverdyshev Saarland University,

Formal Verification of Gate-Level Computer Systems: ECU Sergey Tverdyshev Saarland University,

Introduction Computer System Computer System Examples Summary Formal Verification of Gate-Level Computer Systems: ECU Sergey Tverdyshev Saarland University, Saarbruecken, Germany November 18, 2009 Introduction Computer System Computer

655 views • 40 slides

More recommend