Systematic Classification of Attackers via Bounded Model Checking

Eric Rothstein-Morris; Sun Jun; and Sudipta Chattopadhyay

arXiv:1911.05808·cs.CR·November 15, 2019

Systematic Classification of Attackers via Bounded Model Checking

Eric Rothstein-Morris, Sun Jun, and Sudipta Chattopadhyay

PDF

TL;DR

This paper introduces a methodology using bounded model checking to classify attackers based on which security requirements they can compromise, employing heuristics to improve scalability.

Contribution

It presents a novel approach to systematically generate and classify attackers in security verification, with heuristics to handle large models effectively.

Findings

01

Heuristics improve scalability of attacker classification

02

Methodology successfully applied to hardware benchmarks

03

Classifies attackers based on broken security requirements

Abstract

In this work, we study the problem of verification of systems in the presence of attackers using bounded model checking. Given a system and a set of security requirements, we present a methodology to generate and classify attackers, mapping them to the set of requirements that they can break. A naive approach suffers from the same shortcomings of any large model checking problem, i.e., memory shortage and exponential time. To cope with these shortcomings, we describe two sound heuristics based on cone-of-influence reduction and on learning, which we demonstrate empirically by applying our methodology to a set of hardware benchmark systems.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.