Predictive runtime enforcement

被引：0

作者：

Srinivas Pinisetty

Viorel Preoteasa

Stavros Tripakis

Thierry Jéron

Yliès Falcone

Hervé Marchand

机构：

[1] Aalto University,Laboratoire d’Informatique de Grenoble

[2] University of California,undefined

[3] Berkeley,undefined

[4] INRIA Rennes - Bretagne Atlantique,undefined

[5] Univ. Grenoble Alpes,undefined

[6] Inria,undefined

[7] LIG,undefined

来源：

Formal Methods in System Design | 2017年 / 51卷

关键词：

Runtime monitoring; Runtime enforcement; Automata; Timed automata; Monitor synthesis;

D O I：

暂无

中图分类号：

学科分类号：

摘要：

Runtime enforcement (RE) is a technique to ensure that the (untrustworthy) output of a black-box system satisfies some desired properties. In RE, the output of the running system, modeled as a sequence of events, is fed into an enforcer. The enforcer ensures that the sequence complies with a certain property, by delaying or modifying events if necessary. This paper deals with predictive runtime enforcement, where the system is not entirely black-box, but we know something about its behavior. This a priori knowledge about the system allows to output some events immediately, instead of delaying them until more events are observed, or even blocking them permanently. This in turn results in better enforcement policies. We also show that if we have no knowledge about the system, then the proposed enforcement mechanism reduces to standard (non-predictive) runtime enforcement. All our results related to predictive RE of untimed properties are also formalized and proved in the Isabelle theorem prover. We also discuss how our predictive runtime enforcement framework can be extended to enforce timed properties.

引用

页码：154 / 199

页数：45

共 40 条

[1]

Alur R(1994)A theory of timed automata Theor Comput Sci 126 183-235

[2]

Dill DL(2011)Extending the enforcement power of truncation monitors using static analysis Comput Secur 30 194-207

[3]

Chabot H(2015)Modeling runtime enforcement with mandatory results automata Int J Inf Secur 14 47-60

[4]

Khoury R(2008)A survey of automated techniques for formal software verification IEEE Trans CAD Integr Circuits Syst 27 1165-1178

[5]

Tawbi N(2002)Improving security using extensible lightweight static analysis IEEE Softw 19 42-51

[6]

Dolzhenko E(2012)What can you verify and enforce at runtime? STTT 14 349-382

[7]

Ligatti J(2011)Runtime enforcement monitors: composition, synthesis, and enforcement abilities Form Methods Syst Des 38 223-262

[8]

Reddy S(2016)Runtime enforcement of regular timed properties by suppressing and delaying events Sci Comput Program 123 2-41

[9]

D’Silva V(2009)Run-time enforcement of nonsafety policies ACM Trans Inf Syst Secur 12 19:1-19:41

[10]

Kroening D(2014)Runtime enforcement of timed properties revisited Form Methods Syst Des 45 381-422

← 1 2 3 4 →