@inproceedings{3f3a1f05967042bc8460f28ec53fafe4,
title = "Security modeling for embedded system design",
abstract = "Among the many recent cyber attacks, the Mirai botnet DDOS attacks were carried out using infected IoTs. To prevent our connected devices from being thus compromised, their security vulnerabilities should be detected and mitigated early. This paper presents how the SysML-Sec Methodology has been enhanced for the evolving graphical modeling of security through the three stages of our embedded system design methodology: Analysis, HW/SW Partitioning, and Software Analysis. The security requirements and attack graphs generated during the Analysis phase determine the sensitive data and attacker model during the HW/SW Partitioning phase. We then accordingly generate a secured model with communication protection modeled using abstract security representations, which can then be translated into a Software/System Design Model. The Software Model is intended as the final detailed model of the system. Throughout the design process, formal verification and simulation evaluate safety, security, and performance of the system.",
keywords = "Embedded systems, Formal verification, ProVerif",
author = "Li, \{Letitia W.\} and Florian Lugou and Ludovic Apvrille",
note = "Publisher Copyright: {\textcopyright} Springer International Publishing AG 2018.; 4th International Workshop on Graphical Models for Security, GraMSec 2017 ; Conference date: 21-08-2017 Through 21-08-2017",
year = "2018",
month = jan,
day = "1",
doi = "10.1007/978-3-319-74860-3\_7",
language = "English",
isbn = "9783319748597",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "99--106",
editor = "Sjouke Mauw and Peng Liu and Ketil Stolen",
booktitle = "Graphical Models for Security - 4th International Workshop, GraMSec 2017, Revised Selected Papers",
}