Dong-qin FENG,Jia-jun SHEN,Jian CHU

DOI: https://doi.org/10.13195/j.kzyjc.2013.1177

2014-01-01

Abstract:With the development of the industrial ethernet, the clock synchronization protocol which is the core technology of industrial ethernet real-time has become crucial. For the problem of the clock synchronization protocol security, a method for analyzing the clock synchronization protocol security using colored Petri net is proposed. Firstly, the protocol is modeled by using colored Petri net. Then the reachability of possible insecurity state is judged and analyzed by using the model through state equation, thus the security analysis of the clock synchronization protocol is realized. Finally, a clock synchronization protocol based on PTP and the main-clock spoofing attack aiming at this protocol are analyzed by using this method, and the result shows the effectiveness of the proposed method.

Bao-wen WANG,Bei LU,Ya-li SI,Wen-yuan LIU

DOI: https://doi.org/10.3969/j.issn.1000-1220.2013.11.036

2013-01-01

Abstract:An E-Commerce protocols analysis method based on Colored Petri Nets is proposed which has improved the timeliness disadvantage of the existing CPN methods. This method can analyze three important security properties which are accountability,fairness,and timeliness. Status color sets which represent whether an entity successfully receives another entity' s messages or not and timeliness color sets which represent the entity's self-defined time factor are established. Full consideration of timeliness is given when analyzing fairness in order to make the analysis results more accurate and effective. KZG protocol is taken as an example and a hierarchical Colored Petri Net model is established. CPN Tools are used to simulate the protocol and state space analysis and query functions are taken to analyze it. At the same time,the method we proposed has been proven to be correct and effective.

Weimin Wu,Hongye Su,Jian Chu,W. Murray Wonham

DOI: https://doi.org/10.1109/ISIC.2002.1157863

2002-01-01

Abstract:Usually, the maximally permissive control of Petri nets with an OR-logic constraint is difficult to implement. In this paper, OR-logic is easily enforced using a colored Petri net. A colored Petri net place, named colored monitor place, is designed to monitor the states of constraints. A so-called guard function of colored Petri nets that maps certain transitions into a Boolean expression is suitably defined on the colored sets. The maximally permissive control is then obtained via the guard function. In addition, a constraint transformation method for marked graphs with uncontrollable transitions is proposed.

Guoyong Cai,Ji Gao,Yong Huang

DOI: https://doi.org/10.1109/SNPD.2007.126

2007-01-01

Abstract:One of the most fundamental challenges in multi-agent system engineering is to enable predictable and reliable interaction amongst group of autonomy agents. Electronic Institution (EI) has been proposed as an important framework to deal with these challenges. A colored Petri net transducer (CPNt) approach is presented to represent an EI visually and formally. With existing CPN tools, an EI model can be simulated and verified automatically. Validated EI model serves as a fundamental mechanism to influence and constraint interactive behaviors of autonomy agents. As a result, predictable and reliable multi-agent system can be obtained. Comparing with other approaches, this approach has solid theoretic basis as it is extended from Petri net. Therefore existing engineering methodology of Petri net can be adapted to engineering electronic institution conveniently. A simple example is applied to illustrate the whole process of the proposed approach.

Shancang Li,Deyun Zhang,Zongbin Li,Fuhai Ma,Feng Wu

DOI: https://doi.org/10.1109/ICSMC.2006.385098

2006-01-01

Abstract:As a method of system modeling, coloured Petri nets occupy an essential position in the fields of discrete events and dynamic systems. Traditional coloured Petri net is defined with multi-sets that made it difficult in the modeling formalization and difficult to understand in computing. In this paper, a new method to describe coloured Petri net with formalization mathematics is presented. In this research, multi-sets can be see as the product of two matrixes and CPN is a superposed net of series of Petri nets with the same base net. In order to describe CPN with mathematics method effectively, a new concept named as 'coloured token vector' is presented. As a case, routing protocols self-switch mechanism architecture for sensor networks is outlined, the mechanism modeled on the basis of CPN; this is the first such analysis of routing protocols self-switch mechanism in sensor networks, which is simple for use and effective modeling formalization.

Xin Sun,Minri Fei,Youxian Sun

DOI: https://doi.org/10.1109/wcica.2002.1022178

2002-01-01

Abstract:In this paper, we research on a kind of high-level net system and give the basic mathematics theory of Colored Petri net system and Pr/T system. We model and analyze two processes by using the theory of Colored Petri net and Pr/T. Papermaking system is a complicated passes hot and character process, has many peculiarity such as many disturb, strong coupling, great pure lag etc. The papermaking model can be ease built by utilizing the theory. So the theory of Colored Petri is advantage for model of complex industry system. Finally, we represent a new analyse method for papermaking process.

Wen-yuan LIU,Gang WEI,Ya-li SI

DOI: https://doi.org/10.3969/j.issn.1001-3695.2012.05.026

2012-01-01

Abstract:At this stage,the process of electronic commerce protocol formal analysis is chaotic;description have low versatility and accuracy,usually has some unreasonable assumptions.This paper presented a model—knowledge and faith model—used modern theory of morden modal logic according to knowledge and faith.The model contained the security environment,knowledge sets,faith sets,capability set,the tangent point and toknowledge.The model put forward a good solution to those problems,could formal descript different electronic commerce protocols precisely,and provided a support for different analysis method.

Jinqi Zhu,Ming Liu,Jiazhi Zeng

DOI: https://doi.org/10.1142/9789812799524_0265

2008-01-01

Abstract:Sliding window protocol (SWP) is the most widely used flow and error control procedure in network. How to describe its dynamic activity in a formal modeling way poses a considerable challenge to us. After analyzing the SWP, we proposed an improved Colored Petri Nets (CPN) model to show how this protocol works. The construction of the CPN model and its analysis are given in detail in this paper. Furthermore, unlike traditional modeling method, CPN are inscriptions are fully used in our paper to represent system states and simplify the model, so that our method is not only more automated and simpler than previously known CPN modeling method, but also thoroughly avoid the traditionally manual trouble of CPN hierarchy.

Jianming Shi,Tao Feng,Lu Zheng,Yi Wu

DOI: https://doi.org/10.3390/sym16121612

2024-12-06

Symmetry

Abstract:The NC-Link protocol, as an integrated communication protocol in the Computerized Numerical Control (CNC) machine tool industry, has drawn significant attention regarding its security since its inception. Although there have been studies proposing improvements to address security issues related to key management and message transmission, systematic security analysis of the protocol remains relatively weak. To better investigate and enhance the security of the NC-Link protocol, our research introduces a formal modeling and analysis method based on Colored Petri Nets (CPN). By establishing a CPN model of the protocol, we analyze the security issues present during communication and propose improvement measures for verification and analysis. First, we developed a CPN model for the NC-Link protocol and verified the model's feasibility through simulation analysis. Subsequently, we introduced an attacker model to analyze the protocol's authentication interaction process, revealing security issues, such as authentication vulnerabilities and key management flaws. Finally, we proposed an improved scheme addressing these issues and conducted a security validation and cost analysis of this scheme. The results show that the improved protocol reduces the computational overhead by 75% during the connection and interaction phases. This indicates that the improved protocol can achieve interactions at a faster speed while maintaining higher security and reliability. The implementation of this scheme provides new reference ideas for related research.

multidisciplinary sciences

MA Sheng,SI Ya-li,HOU Gui-bin

2013-01-01

Abstract:This paper presented an extended DFA,and based on the extended DFA and Qing-Zhou logic presented a new formal method which can be used to analyze security properties such as accountability,fairness and timeliness.This method which combined the advantages of model-checking and logical analysis can accurately and vividly describe the running process of protocols,and can correctly analyze the property when the replay attack occurs.Using this method,the state transition diagram of the improved version of ZG protocol presented by Kim was gave,accountability,fairness and timeliness were analyzed to be satisfied in this protocol,and found there were no replay attacks in this protocol.In the end,the model-checking tool UPPAAL was used to verify that the model of DFA was correct and the analysis of timeliness was effective.

Ying-jiu GUO,Chuang LIN,Hao YIN,Li-qin TIAN

DOI: https://doi.org/10.3321/j.issn:0372-2112.2009.05.022

2009-01-01

Tien Tzu Hsueh Pao/Acta Electronica Sinica

Abstract:The formal proof of the security protocol becomes a hot and hard issue. Taking the Digital Media Distribution Protocol as an example, the Petri Net model is adopted which combined with the process algebra and the logical induction methods to formally prove the present security protocol and can avoid the state explosion problem. In this proof an equality principle is used to transform the security protocols to guarantee the simplicity of the proof. At the same time, the completeness of the proof is discussed and what we have done shows the validity of proving the security of protocol with a Petri Net model.

Wen-bin ZHAI,Jie ZHANG,Jun-qi YAN,Deng-zhe MA

DOI: https://doi.org/10.3321/j.issn:1006-2467.2005.07.029

2005-01-01

Abstract:An agent-oriented colored petri-net (AOCPN) modeling technology for multi-agent interaction protocol was proposed. In the view of modeling method, the transforming rule from AUML (agent unified modeling language) to AOCPN was given, which maps the AUML model to AOCPN model. In the view of analysis method, the reduction rule of CPN was extended, which is integrated with the reachability graph to check the liveness and bound properties of interactive protocol model. An illustrative example of GPGP-CN based multi-agent interaction protocol of semiconductor fabrication line demonstrates the effectiveness of the approach.

ZHANG Guo-yin,LIU Ming,YAO Ai-hong,MEN Chao-guang

DOI: https://doi.org/10.3969/j.issn.1001-3695.2010.12.056

2010-01-01

Abstract:Embedded real-time system has a highly demand in timing constraint,safety and reliability,but traditional methodologies are incapable of modeling and formal verification about the real-time property and safety of system. This paper proposed real-time coloured Petri net model by extending the timing attribute of coloured Petri net so that could simulate and evaluate the timing property of system. According to the transformation rules from real-time coloured Petri net to timed automation,could complete model transformations and could formally verity real-time property,safety and reliability of system using timed computation tree logic. As a conformation of its validity,the described methodology had been successfully applied to modeling and formal verification of line redundancy control unit of train network controller device.

Clark Thomborson,Gerald Weber

2001-01-01

Abstract:Despite the flourishing research on formal modeling and analysis of privacy and authentication issues in E-commerce, little research concentrates on the possible security risk due to business logic specification. In E-commerce systems, an aspect of this logic is to promise fairness. As the feature ensuring parties conduct their business to their mutual moral standards, fairness is one of the paramount features for E-commerce payment systems. In this case study of the AARN payment system, we apply form-oriented analysis to formally model the simple business logic behind this way of arranging payment. The model solves a fair exchange issue for security purposes at the business logic level, which changes further design and implementation for the payment system. It is the first time that Data Type Interchange Model diagram and other models in form-oriented analysis method have been applied in security analysis. This form-oriented analysis method helps designers not only on security analysis, but also on understanding and communication between business experts and software designers.

Huafeng Zhang,Hehua Zhang,Ming Gu,Jiaguang Sun

DOI: https://doi.org/10.1155/2014/943094

2014-01-01

Journal of Applied Mathematics

Abstract:Embedded devices are everywhere now and, unlike personal computers, their systems differ in implementation languages and behaviors. Interactions of different devices require programmers to master programming paradigms in all related languages. So, a defect may occur if differences in systems' behaviors are ignored. In this paper, a heterogeneous system which is composed of two subsystems is introduced and we point out a potential defect in this system caused by an interface mismatch. Then, a state based approach is applied to verify our analysis of the system.

Jinze Du,Rui Tang,Tao Feng

DOI: https://doi.org/10.3390/s22186792

IF: 3.9

2022-09-09

Sensors

Abstract:The combination of in-vehicle networks and smart car devices has gradually developed into Intelligent Connected Vehicles (ICVs). Through the vehicle security protocol, ICVs can quickly realize communication transmission. However, with the more frequent connections between smart in-vehicle devices and the network, the relationship between intelligent cars and external systems is becoming more and more complicated, and in-vehicle networks are gradually facing many security issues. Strengthening the security of in-vehicle protocols has become particularly important. This paper uses the model building method based on the Colored Petri Net (CPN) theory to model the Scalable service-Oriented MiddlewarE over IP (SOME/IP) protocol of the vehicle Ethernet. The security protocol is formally verified and analyzed by combining it with the Dolev–Yao adversary model detection method. After verification, the protocol is subject to three attack vulnerabilities: replay, tampering, and deception. We introduce timestamps and random numbers to strengthen the protocol security. After the final analysis and verification, the improved scheme in this paper can effectively improve the security performance of the protocol.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Guoqiang Li,Yonggen Gu,Xiuting Tao,Jie Tao

DOI: https://doi.org/10.1109/TASE.2011.47

2011-01-01

Abstract:Exchange protocols are an important theoretic basis to make secure electronic commerce and electronic business transactions possible, in which the fairness is a crucial property. To ensure and verify the property, a specific model is proposed, based on the extensive game with imperfect information. Fairness is built in the protocol game and the corresponding game tree. To verify the property, a tree analysis method is offered, and a linear time algorithm is given. As a case study, some flaws of ASW protocol are found.

GUO Sheng-ji,QI Da-wei,LIN Ming,WANG Sheng-yuan,DONG Yuan

2008-01-01

Abstract:A MetaObject Protocol is designed and implemented for the Petri Net simulation tool Renew.This work immensely strengthen the simulation ability of Renew from four aspects:simplify the base level net model,gather information during the net simulation,change the base level net dynamically and control the process of simulation.Finally,as to verify the application of this work,we model the Banker's Rounding to show how to avoid dead lock using the MetaObject Protocol.

Qian Zhang,Ying Jiang,Liping Ding

DOI: https://doi.org/10.48550/arXiv.1507.06769

2015-07-24

Cryptography and Security

Abstract:In this work, we propose a probabilistic value-passing CCS (Calculus of Communicating System) approach to model and analyze a typical network security scenario with one attacker and one defender. By minimizing this model with respect to probabilistic bisimulation and abstracting it through graph-theoretic methods, two algorithms based on backward induction are designed to compute Nash Equilibrium strategy and Social Optimal strategy respectively. For each algorithm, the correctness is proved and an implementation is realized. Finally, this approach is illustrated by a detailed case study.

WANG Hong-ying,ZHANG Gui-xu

DOI: https://doi.org/10.3969/j.issn.1673-629x.2007.04.050

2007-01-01

Abstract:UML is widely used in software modeling which has a problem on model checking.By using formal method to analyze and check UML models,the design problems can be found in early phase so as to improve the quality of UML models.To solve the problems of model checking of UML models,introduces a high-level Petri net called object colored Petri net which is not only a graphical modeling tool but also a kind of formal method.And by invoking event token,a method of transforming UML model to object colored Petri net is improved when mapping UML statechart diagrams and collaboration diagrams to object colored Petri net.Then analysis and verification of the model are illustrated to verify a series of properties.