CHIST-ERA RESEARCH PROJECT SECURE ACCESSIBILITY FOR THE INTERNET OF THINGS (SUCCESS)

References

Jaime Arias, Carlos E. Budde, Wojciech Penczek, Laure Petrucci, and Mariëlle Stoelinga. Hackers vs. security: Attack-defence trees as asynchronous multi-agent systems, 2019. (Sub-mitted to Petri Nets 2020).arXiv:1906.05283.

D. Beaulaton, I. Cristescu, A. Legay, and J. Quilbeuf. A modeling language for securitythreats of iot systems. In F. Howar and J. Barnat, editors, Formal Methods for Industrial Critical Systems, pages 258–268, Cham, 2018. Springer International Publishing.

D. Beaulaton, N. B. Said, I. Cristescu, A. Legay, and J. Quilbeuf. Security enforcement in iot systems using attack trees. work in progress.

D. Beaulaton, N. B. Said, I. Cristescu, and S. Sadou. Security analysis of iot systems using attack trees. In M. Albanese, R. Horne, and C. W. Probst, editors, Graphical Models for Security - 6th International Workshop, GraMSec@CSF 2019, Hoboken, NJ, USA, June 24,2019, Revised Papers, volume 11720 of Lecture Notes in Computer Science, pages 68–94.Springer, 2019.

Carlos E. Budde, Marco Biagi, Raúl E. Monti, Pedro R. D’Argenio, and Mariëlle Stoelinga. Rare event simulation for non-Markovian repairable fault trees. In TACAS 2020, volume (to appear) of LNCS, 2020.

Carlos E. Budde. FIG: the Finite Improbability Generator. In TACAS 2020, volume (to appear) of LNCS, 2020.

Carlos E. Budde and Mariëlle Stoelinga. Automated rare event simulation for fault tree analysis via minimal cut sets. In MMB 2020, volume 12040 of LNCS, pages 1–19. Springer Nature, 2020. (doi still inactive). doi:10.1007/978-3-030-43024-5_16.

Carlos E. Budde and Mariëlle Stoelinga. Modeling of degradation cycles via Fault Maintenance Trees. (Abstract accepted for poster presentation in the joint conference ES-REL 2020 | PSAM 15), 2020. URL:https://www.esrel2020-psam15.org/overview.html.

I.-D. Cristesc, J. G. Giménez, and J. C. Augusto. Assessing vulnerabilities in iot-based ambient assisted living systems. In J. Hernandez Ramos and A. Skarmeta, editors, Security and Privacy in Internet of Things: Challenges and Solutions. IOS Press, Oxford, 2019.

M. Gerhold and M. Stoelinga. Model-based testing of probabilistic systems with stochastic time. In E. Broch Johnsen, editor, Tests and Proofs, Lecture notes in computer science, pages 77–97. Springer, 6 2017

F. Kammüller. Formal modeling and analysis with humans in infrastructures for iot healthcare systems. In5th Int. Conf. on Human Aspects of Security, Privacy and Trust, HCII-HAS2017, volume 10292 of LNCS, pages 339–352. Springer, 2017.

F. Kammüller. Human centric security and privacy for the iot using formal techniques. In 3d International Conference on Human Factors in Cybersecurity, affiliated with AHFE’2017,volume 593 of AISC, pages 106–116. Springer, 2017.

F. Kammüller. A proof calculus for attack trees in isabelle. In Data Privacy Management, DPM’17, 12th Int. Workshop, co-located with ESORICS’17, volume 10436 of LNCS. Springer, 2017.

F. Kammüller. Attack trees in isabelle. In20th International Conference on Informationand Communications Security, volume 11149 of LNCS. Springer, 2018.

F. Kammüller. Formal modeling and analysis of data protection for gdpr compliance of iot healthcare systems. In IEEE Systems, Man, and Cybernetics, IEEE SMC’18. IEEE, 2018.

F. Kammüller. Attack trees in isabelle extended with probabilities for quantum cryptography, 2019. Special Issue of Computers & Security Elsevier. Extended Version of ICICS2018 paper.

F. Kammüller. Combining secure system design with risk assessment for iot healthcare systems, 2019. Workshop of Security, Privacy, and Trust in the IoT, SPTIoT’19, collocated with IEEE PerCom’19.

F. Kammüller. A formal development cycle for security engineering in isabelle. Technical report, Cornell University, 2020. arxive.org.

F. Kammüller, J. C. Augusto, and S. Jones. Security and privacy requirements engineering for human centric iot systems using efriend and isabelle. In IEEE/ACIS 15th International Conference on Software Engineering Research, Management and Application, SERA2017,CPS. IEEE, 2017.

F. Kammüller, A. Legay, and S. Schivo. Masterminding change by combining secure system design with security risk assessment. Springer, 2020. Special Issue of International Journal on Software Tools for Technology Transfer (STTT) from selected papers of ETAPS-SPIoT workshop 2019.

R. Kumar, A. Rensink, and M. Stoelinga. Locks: A property specification language for security goals. In Proceedings of the 33rd Annual ACM Symposium on Applied Computing, SAC ’18, pages 1907–1915, New York, NY, USA, 2018. ACM.

R. Kumar, S. Schivo, E. Ruijters, B. M. Yildiz, D. Huistra, J. Brandt, A. Rensink, and M. Stoelinga. Effective analysis of attack trees: A model-driven approach. In A. Russo and A. Schürr, editors, Fundamental Approaches to Software Engineering, 21st International Conference, FASE 2018, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2018, Thessaloniki, Greece, April 14-20, 2018, Proceedings., volume 10802 of Lecture Notes in Computer Science, pages 56–73. Springer, 2018.

B. L. Mediouni and M. Bozga. Smart hospital case study - security assessment with sbip. Technical report, Verimag, August 2019. internal project report.

B. L. Mediouni, A. Nouri, M. Bozga, M. Dellabani, A. Legay, and S. Bensalem. SBIP 2.0: Statistical model checking stochastic real-time systems. In S. K. Lahiri and C. Wang, editors, Automated Technology for Verification and Analysis - 16th International Symposium, ATVA 2018, Los Angeles, CA, USA, October 7-10, 2018, Proceedings, volume 11138 of Lecture Notes in Computer Science, pages 536–542. Springer, 2018.

B. L. Mediouni, A. Nouri, M. Bozga, A. Legay, and S. Bensalem. Mitigating security risks through attack strategies exploration. In T. Margaria and B. Steffen, editors, Leveraging Applications of Formal Methods, Verification and Validation. Verification, pages 392–413, Cham, 2018. Springer International Publishing.

Raul E. Monti, Pedro R. D’Argenio, and Carlos E. Budde. A compositional semantics for Repairable Fault Trees with general distributions, 2019. (Submitted to LPAR 2020). arXiv:1910.10507.

M. Nauta, D. Bucur, and M. Stoelinga. Lift: Learning fault trees from observational data. In A. McIver and A. Horvath, editors, Quantitative Evaluation of Systems, Lecture Notes in Computer Science. Springer, 2018.

A. Nouri, B. L. Mediouni, M. Bozga, J. Combaz, A. Legay, and S. Bensalem. Performance evaluation of stochastic real-time systems with the sbip framework. Technical Report TR-2017-6, Verimag, 2017.Paper available at https://www.h2020-esrocos.eu/wp-content/uploads/UGA_SBIP_IJCCBS18.pdfSBIP tool athttp://www-verimag.imag.fr/BIP-SMC-A-Statistical-Model-Checking.

E. Ruijters, D. Reijsbergen, P.-T. de Boer, and M. Stoelinga. Rare event simulation for dynamic fault trees. In S. Tonetta, E. Schoitsch, and F. Bitsch, editors, Computer Safety, Reliability, and Security, pages 20–35, Cham, 2017. Springer International Publishing.

Enno Ruijters, Carlos E. Budde, Muhammad C. Nakhaee, Mariëlle Stoelinga, Doina Bucur, Djoerd Hiemstra, and Stefano Schivo. FFORT: A benchmark suite for fault tree analysis. InESREL 2019, pages 878–885. Singapore : Research Publishing, 2019.doi:10.3850/978-981-11-2724-3_0641-cd.

S. Schivo, B. M. Yildiz, E. Ruijters, C. Gerking, R. Kumar, S. Dziwok, A. Rensink, and M. Stoelinga. How to efficiently build a front-end tool for uppaal: A model-driven approach. In K. G. Larsen, O. Sokolsky, and J. Wang, editors, Dependable Software Engineering. Theories, Tools, and Applications, pages 319–336, Cham, 2017. Springer International Publishing.

H. Sözer, M. Stoelinga, H. Boudali, and M. Aksit. Availability analysis of software architecture decomposition alternatives for local recovery. Software Quality Journal,25(2): 553–579, June 2017.