CARMEN: A framework for the verification and diagnosis of the specification of security requirements in cyber-physical systems

•A transformation is provided from the security requirements to feature models.•The transformation enables the reasoning techniques (verification and diagnosis) to be applied.•A catalogue of variability models is provided for the correct configurations for security in CPS.•CARMEN is validated throug...

Full description

Saved in:
Bibliographic Details
Published in:Computers in industry 2021-11, Vol.132, p.103524, Article 103524
Main Authors: Varela-Vaca, Ángel Jesús, Rosado, David G., Sánchez, Luis E., Gómez-López, María Teresa, Gasca, Rafael M., Fernández-Medina, Eduardo
Format: Article
Language:English
Subjects:
Configuration models
Cyber-physical system
Cybersecurity
Diagnosis
Security
Security requirements
Security verification
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:•A transformation is provided from the security requirements to feature models.•The transformation enables the reasoning techniques (verification and diagnosis) to be applied.•A catalogue of variability models is provided for the correct configurations for security in CPS.•CARMEN is validated through several security requirements for an Agriculture 4.0 case study. In the last years, cyber-physical systems (CPS) are receiving substantial mainstream attention especially in industrial environments, but this popularity has been accompanied by serious security challenges. A CPS is a complex system that includes hardware and software components, with different suppliers and connection protocols, forcing complex data management and storage. For this reason, the construction, verification and diagnosis of security CPS become a major challenge, which involves a correct specification of security requirements, the verification of the correct system configurations, and if necessary, the diagnosis to detect the features to be modified to obtain a security configuration. In this paper, we propose a framework for the verification and diagnosis of security requirements, according to the possible correct configurations of the CPS. The framework is based on the specification of the security requirements and their analysis supported by Model-Driven Engineering and Software Product Line Engineering (SPLE) approaches. To illustrate the usefulness, the proposal has been applied to the security requirements in an Agriculture 4.0 scenario based on automated hydroponic cultivation.
ISSN:0166-3615
1872-6194
DOI:10.1016/j.compind.2021.103524