Xusheng Li,Zhisheng Hu,Haizhou Wang,Yiwei Fu,Ping Chen,Minghui Zhu,Peng Liu

DOI: https://doi.org/10.48550/arXiv.1807.11110

2024-02-13

Abstract:Return-oriented programming (ROP) is a code reuse attack that chains short snippets of existing code to perform arbitrary operations on target machines. Existing detection methods against ROP exhibit unsatisfactory detection accuracy and/or have high runtime overhead. In this paper, we present ROPNN, which innovatively combines address space layout guided disassembly and deep neural networks to detect ROP payloads. The disassembler treats application input data as code pointers and aims to find any potential gadget chains, which are then classified by a deep neural network as benign or malicious. Our experiments show that ROPNN has high detection rate (99.3%) and a very low false positive rate (0.01%). ROPNN successfully detects all of the 100 real-world ROP exploits that are collected in-the-wild, created manually or created by ROP exploit generation tools. Additionally, ROPNN detects all 10 ROP exploits that can bypass Bin-CFI. ROPNN is non-intrusive and does not incur any runtime overhead to the protected program.

Cryptography and Security

Jiajun Shen,Dongqin Feng

DOI: https://doi.org/10.1109/hpcc.2014.115

2014-01-01

Abstract:With the development of the industrial informatization, the problems of security in field device layer have been gradually exposed, which mainly involves specified industrial communication protocols. Clock synchronization protocol, as one of the most important industrial communication protocols, ensures the real-time performance of industrial control system. Considering that the related researches have not yet formed a mature system, we propose a new method for analyzing the vulnerability of clock synchronization protocol in this article. In this method, SPN(stochastic petri net) is introduced as a modeling tool, while IEEE 1588 PTP clock synchronization protocol is regarded as the research object. An SPN(stochastic petri net) model is strictly built according to the protocol. Then, steady-state probability expressions are obtained by the isomorphic Markov chain. Through changing trigger rate of transitions of several pivotal states which are related to vulnerability, the influences of each parameter has on the model could be quantitatively reflected in the result of simulation in order to analyze vulnerability of clock synchronization protocol by determining the critical factors that affect protocol's vulnerability.

LIU Sen-sen,CHEN Wei-hua,JIANG Quan-yuan

DOI: https://doi.org/10.3785/j.issn.1008-973x.2009.03.036

2009-01-01

Abstract:The risk theory was applied to static security analysis of power system,and a power system risk model with obvious parallel processing was built.A novel parallel processing approach of risk assessment of power system was presented based on the parallel model.The approach was implemented by PC cluster.In the implementation of specific parallel computing,the PC cluster technology was used.The New England 10-machine 39-node system was used to verify power system static security risk assessment methodology based on parallel computing.System's N-1 breaking accidents were used as the system's expected accident set.The risk of line power overload and that of bus low voltage were used as the two risk indicators to describe static security.The performance of parallel computing algorithm based on indicators and that of parallel computing algorithm based on static incidents allocation were compared.

Yueli Dong,Bin Sun,Gang Wang

DOI: https://doi.org/10.1016/j.egyr.2021.10.030

IF: 5.2

2021-11-01

Energy Reports

Abstract:A modeling method of security risk assessment for power system network is presented in this paper. The modeling method is divided into three steps. Firstly, Object-oriented Bayesian network(OOBN) is used for structural modeling to avoid the state explosion caused by the large scale of the network. Secondly, Combined with expert knowledge, an effective parameter modeling method is proposed. Based on the OOBN model, the parallel computing reasoning method of OOBN subnet is studied to reduce the complexity of joint probability calculation and improve the calculation timeliness. Finally, the prototype of power information test system is designed to verify the effectiveness of the model. The results show that the method can be used in the security risk assessment for power system network efficiently.

energy & fuels

Ye Zhang,Guoqiang Cai,Limin Jia,Fu Wei

2005-01-01

Abstract:An accurate and reliable Railway Driving Safety System has to be adaptable and flexible for changing requirements coming from various safety-protecting devices. Petri Net with Object (PNO) is introduced to model this system in order to overcome the disadvantages using traditional modeling techniques. The structure of the PNO possesses the characteristics of small scale and flexibility, modularization and operability, so that system model can be partitioned and modeled in separate dynamic active objects according to process approach. Workflow among these objects can be dynamically adaptive allowing for the subsystem change. Some examples suggest the advantages of this contribution.

Qiang YAN,Hua-ying SHU,Zhong CHEN,Yun-suo DUAN

DOI: https://doi.org/10.3969/j.issn.1007-5321.2005.04.017

2005-01-01

Abstract:Security evaluation is an important approach for the security risk management of the information system. But there are lack of effective methods and tools for security evaluation. To resolve the problem, an object model of security evaluation is established based on the object oriented technology. The concepts of correlation test and dependency test are introduced and a set of tools is also developed according to the model. The practical application indicates that the object oriented technology can improve the efficiency of security evaluation, and the correlation test and dependency test also improve the penetration testing effects.

Xiuzhen Chen,Qinghua Zheng,Xiaohong Guan

DOI: https://doi.org/10.1007/s10796-008-9111-6

2008-01-01

Information Systems Frontiers

Abstract:Many security problems are caused by vulnerabilities hidden in enterprise computer networks. It is very important for system administrators to have knowledge about the security vulnerabilities. However, current vulnerability assessment methods may encounter the issues of high false positive rates, long computational time, and requirement of developing attack codes. Moreover, they are only capable of locating individual vulnerabilities on a single host without considering correlated effect of these vulnerabilities on a host or a section of network with the vulnerabilities possibly distributed among different hosts. To address these issues, an active vulnerability assessment system NetScope with C/S architecture is developed for evaluating computer network security based on open vulnerability assessment language instead of simulating attacks. The vulnerabilities and known attacks with their prerequisites and consequences are modeled based on predicate logic theory and are correlated so as to automatically construct potential attack paths with strong operation power of relational database management system. The testing results from a series of experiments show that this system has the advantages of a low false positive rate, short running periods, and little impact on the performance of audited systems and good scalability. The security vulnerabilities, undetectable if assessed individually in a network, are discovered without the need to simulate attacks. It is shown that the NetScope system is well suited for vulnerability assessment of large-scale computer networks such as campus networks and enterprise networks. Moreover, it can also be easily integrated with other security tools based on relational databases.

chienchia chen,chuti lin,henhsen huang,shihwei huang,chinyu huang

DOI: https://doi.org/10.1109/TENCON.2006.344182

2006-01-01

Abstract:With the growth of complexity in the software system, to deliver reliable software products on time becomes a critical issue. Many software reliability growth models (SRGMs) have been proposed in the past three decades. However, most software reliability assessment processes and parameter estimations of models depend on the computations of the general-purposed numerical software. In this paper, we will present a powerful computer-aided reliability assessment tool for software based on object-oriented analysis and design-CARATS. CARATS can use both traditional SRGMs and neural-network methods to assess software reliability. This would greatly help project managers to make decisions during software development life cycle. Due to the characteristics of the special-purposed and object-oriented design, CARATS can analyze the software reliability easily, and is also more flexible to adopt different SRGMs than other existing software reliability analysis tools

Xinyu Wang,Yuancheng Li,Jiexuan Yuan,Hao Luo

DOI: https://doi.org/10.2174/0123520965254438231102050325

2023-11-21

Abstract:Background:: Under the "Dual Carbon" strategy, the new-type power system integrates various complex equipment, especially the addition of wind power, photovoltaic power generation, distributed energy storage and other systems, which not only brings clean and efficient energy to the power system, but also leads to potential risks in the power grid. Objective:: Traditional methods for assessing the risks of power systems mainly focus on the characteristics of traditional power grids. With the emergence of new features in the new power system, these traditional assessment methods are no longer effective, which could affect the safe and stable operation of the power system. To address this issue, this article proposes a new vulnerability index system for power systems. It also introduces the analytic hierarchy based on Moody's order graph (MAHP) quantification analysis method, and develops the Tabular data risk assessment methodology(TabRAM) risk assessment model based on an improved Transformer method. Method:: MAHP is a comprehensive evaluation method combining Moody's Chart and Analytic Hierarchy (AHP), which has high comprehensiveness and operability. TabRAM uses Bayesian neural networks (BNN) to complete prior data fitting and model complex feature dependencies and potential causal mechanisms on tabular data. The network is trained using an improved Transformer, and after pre-training, it can approximate new prior probabilistic inference in a forward pass to achieve prediction and classification tasks for new datasets. Results:: After multiple rounds of iterations and parameter adjustments, the model achieved the desired performance and was successfully applied to the risk assessment of the new power system. Conclusion:: According to the experimental results, the proposed TabRAM model demonstrates superior performance in the field of risk assessment for the new-type power system, as compared to traditional deep learning and machine learning algorithms.

Chien-Chia Chen,Hen-Hsen Huang,Shih-Wei Huang,Chu-Ti Lin,Chin-Yu Huang

2006-01-01

Abstract:With the growth of software project scale, how to deliver reliable software products on time becomes a critical issue. Although many related software reliability theories have been proposed in the past few decades, most of software reliability analysis processes still depend on the powerful computations of the general-purposed numerical software. Hence, to develop a user-friendly special-purposed software reliability assessment tool is extremely meaningful for both research and business application. For these reasons, this paper presents the design and implement of Computer-Aided Reliability Assessment Tool for Software (CARATS). CARATS is an object-oriented software reliability assessment tool using software reliability growth models (SRGMs) with period failure count data and neural networks to assessment the software reliability. Due to the characteristics of the special-purposed and object-oriented design, CARATS can analyze the software reliability easily. Besides, it is more flexible to adopt different SRGMs than traditional tools.

Dinghao Liu,Qiushi Wu,Shouling Ji,Kangjie Lu,Zhenguang Liu,Jianhai Chen,Qinming He

DOI: https://doi.org/10.1145/3460120.3485373

2021-01-01

Abstract:Missing a security operation such as a bound check has been a major cause of security-critical bugs. Automatically checking whether the code misses a security operation in large programs is challenging since it has to understand whether the security operation is indeed necessary in the context. Recent methods typically employ cross-checking to identify deviations as security bugs, which collects functionally similar program slices and infers missed security operations through majority-voting. An inherent limitation of such approaches is that they heavily rely on a substantial number of similar code pieces to enable cross-checking. In practice, many code pieces are unique, and thus we may be unable to find adequate similar code snippets to utilize cross-checking. In this paper, we present IPPO (Inconsistent Path Pairs as a bug Oracle), a static analysis framework for detecting security bugs based on differential checking. IPPO defines several novel rules to identify code paths that share similar semantics with respect to an object, and collects them as similar-path pairs. It then investigates the path pairs for identifying inconsistent security operations with respect to the object. If one path in a path pair enforces a security operation while the other does not, IPPO reports it as a potential security bug. By utilizing on object-based path-similarity analysis, IPPO achieves a higher precision, compared to conventional code-similarity analysis methods. Through differential checking of a similar-path pair, IPPO eliminates the requirement of constructing a large number of similar code pieces, addressing the limitation of traditional cross-checking approaches. We implemented IPPO and extensively evaluated it on four widely used open-source programs: Linux kernel, OpenSSL library, FreeBSD kernel, and PHP. IPPO found 154, 5, 1, and 1 new security bugs in the above systems, respectively. We have submitted patches for all these bugs, and 136 of them have been accepted by corresponding maintainers. The results confirm the effectiveness and usefulness of IPPO in practice.

Mark Moir,Srikanth Ramamurthy

DOI: https://doi.org/10.1109/REAL.1999.818857

1999-12-01

Abstract:This paper concerns the problem of scheduling sets of preemptable, periodic tasks on multiple resources. We consider a task model that allows arbitrary mixes of fixed and migratable tasks, and prove the existence of an optimal pfair scheduler in this model. Fixed tasks must always be scheduled on a given resource, while migratable tasks can be scheduled on different resources at different times. A pfair scheduler produces a periodic schedule in which the times each task is allocated a processor are approximately evenly spread throughout its period. This paper extends work of Baruah et al., who proved a similar result for systems in which all tasks are migratable.

Jinxin Xu,Yue Wang,Ruisi Li,Ziyue Wang,Qian Zhao

2024-06-30

Abstract:For one to guarantee higher-quality software development processes, risk management is essential. Furthermore, risks are those that could negatively impact an organization's operations or a project's progress. The appropriate prioritisation of software project risks is a crucial factor in ascertaining the software project's performance features and eventual success. They can be used harmoniously with the same training samples and have good complement and compatibility. We carried out in-depth tests on four benchmark datasets to confirm the efficacy of our CIA approach in closed-world and open-world scenarios, with and without defence. We also present a sequential augmentation parameter optimisation technique that captures the interdependencies of the latest deep learning state-of-the-art WF attack models. To achieve precise software risk assessment, the enhanced crow search algorithm (ECSA) is used to modify the ANFIS settings. Solutions that very slightly alter the local optimum and stay inside it are extracted using the ECSA. ANFIS variable when utilising the ANFIS technique. An experimental validation with NASA 93 dataset and 93 software project values was performed. This method's output presents a clear image of the software risk elements that are essential to achieving project performance. The results of our experiments show that, when compared to other current methods, our integrative fuzzy techniques may perform more accurately and effectively in the evaluation of software project risks.

Software Engineering,Machine Learning

Minhui Zou,Zhenhua Zhu,Yi Cai,Junlong Zhou,Chengliang Wang,Yu Wang

DOI: https://doi.org/10.23919/DATE48585.2020.9116549

2020-01-01

Abstract:Neural networks (NN) have gained great success in visual object recognition and natural language processing, but this kind of data-intensive applications requires huge data movements between computing units and memory. Emerging resistive random-access memory (RRAM) computing systems have demonstrated great potential in avoiding the huge data movements by performing matrix-vector-multiplications in memory. However, the nonvolatility of the RRAM devices may lead to potential stealing of the NN weights stored in crossbars and the adversary could extract the NN models from the stolen weights. This paper proposes an effective security enhancing method for RRAM computing systems to thwart this sort of piracy attack. We first analyze the theft methods of the NN weights. Then we propose an efficient security enhancing technique based on obfuscating the row connections between positive crossbars and their pairing negative crossbars. Two heuristic techniques are also presented to optimize the hardware overhead of the obfuscation module. Compared with existing NN security work, our method eliminates the additional RRAM writing operations used for encryption/decryption, without shortening the lifetime of RRAM computing systems. The experiment results show that the proposed methods ensure the trial times of brute-force attack are more than (16!)(17) and the classification accuracy of the incorrectly extracted NN models is less than 20%, with minimal area overhead.

Reng Yin,Hao Hu,Jidong Ge,Jian Lue

DOI: https://doi.org/10.1109/aspec.2007.26

2007-01-01

Abstract:The value-based software process (VBSP) is gaining more and more attention. However, the quantitative analysis techniques for VBSPs could not closely follow up the fast developing paces of the modeling techniques. In this paper, we proposes a decision-based stochastic extension of object petri nets (OPN) to resolve the issues. OPNs are well suited for modeling VBSPs and stochastic object petri nets (SOPN) combine the benefits of OPNs and the stochastic theory. The decision-based stochastic object petri net (DB-SOPN) model is economics driven and links value creation with decision making, multi-stakeholder satisfying, and risk management. It includes two levels: the high level models the guideline of the software process life cycle; and the low-level represents the different stakeholder's perspectives of the process. Some activities of a process have candidate policies that will produce different value reward. Our model simulates the entire software process, and compares various combinations of candidate policies to make the value reward of the process maximum.

Inbal Yahav,Ron S. Kenett,Xiaoying Bai

DOI: https://doi.org/10.1109/COMPSACW.2014.107

2014-01-01

Abstract:Open Source Software (OSS) has become a strategic asset for a number of reasons, such as its short time-to-market software service and product delivery, reduced development and maintenance costs, introduction of innovative features and its customization capabilities. By 2016 an estimated 95% of all commercial software packages will include OSS components. This pervasive adoption is not without risks for an industry that has experienced significant failures in product quality, timelines and delivery costs. Exhaustive testing of any software system and, specifically, of open source software components is usually not feasible due to limitations in time and resources. In risk-based testing approach test cases are selected and scheduled based on software risk analysis. This research introduces the strategy of risk-based adaptive testing of OSS by combining information on the OSS community ecosystem with risk-driven tests selection and scheduling strategy. A key feature of the proposed approach is the monitoring and analysis of OSS community dynamics, including chats and email communications, blogs, repositories of bugs and fixes, and more. The community and its dynamics are then monitored to detect anomaly communication between the community members. Our approach is demonstrated in the XWiki OSS, a Java-based environment that allows for the storing of structured data and the execution of server side scripts within the wiki interface. We illustrate our concepts, methods and approach behind risk based testing.

Cataldo Basile,Bjorn De Sutter,Daniele Canavese,Leonardo Regano,Bart Coppens

DOI: https://doi.org/10.48550/arXiv.2303.15033

2023-03-27

Abstract:The last years have seen an increase in Man-at-the-End (MATE) attacks against software applications, both in number and severity. However, software protection, which aims at mitigating MATE attacks, is dominated by fuzzy concepts and security-through-obscurity. This paper presents a rationale for adopting and standardizing the protection of software as a risk management process according to the NIST SP800-39 approach. We examine the relevant constructs, models, and methods needed for formalizing and automating the activities in this process in the context of MATE software protection. We highlight the open issues that the research community still has to address. We discuss the benefits that such an approach can bring to all stakeholders. In addition, we present a Proof of Concept (PoC) decision support system that instantiates many of the discussed construct, models, and methods and automates many activities in the risk analysis methodology for the protection of software. Despite being a prototype, the PoC's validation with industry experts indicated that several aspects of the proposed risk management process can already be formalized and automated with our existing toolbox and that it can actually assist decision-making in industrially relevant settings.

Software Engineering,Cryptography and Security

XiaoLin Cui,Xiaobin Tan,Yong Zhang,Hongsheng Xi

DOI: https://doi.org/10.1109/CSSE.2008.949

2008-01-01

Abstract:Risk assessment is a very important tool to acquire a present and future security status of the network information system. Many risk assessment approaches consider the present system security status, while the future security status, which also has an impact on assessing the system risk, is not taken into consideration. In this paper we propose a novel risk assessment model based on Markov game theory. In this model, all of the possible risk in the future will impact on the present risk assessment. The farther away from now, the smaller impact on the risk assessment it has. After acquiring the system security status, we proposed an automatic generated reinforcement scheme which will provide a great convenience to the system administrator. A software tool is developed to demonstrate the performance of the risk assessment of a network information system and a simulation example shows the effectiveness of the proposed model. © 2008 IEEE.

WANG Wei,LI Chun-ping,LI Jian-bin

DOI: https://doi.org/10.16208/j.issn1000-7024.2007.14.060

2007-01-01

Abstract:Safe field in the information,the risk assessment is foundation and premises that builds up the safe system of the information system,but the risk assessment method rises to the usefulness of the assessment prominent function.The risk assessment method contain a lot of kinds,each method have it the place of the shortage.The risk assessment method adopted threat tree model and analytical hierarchy process that method combine together,made use of two kinds of vantages that assessment method,made up the shortage of the one risk assessment method,the aim is search into a kind of more valid,more reasonable and more accurate risk assessment method.

Xiaoliang Wang,Faming Lu,MengChu Zhou,Qingtian Zeng

DOI: https://doi.org/10.1016/j.eswa.2022.117037

IF: 8.5

2022-08-01

Expert Systems with Applications

Abstract:As a graphical knowledge representation and reasoning tool, fuzzy Petri net (FPN) is widely used in risk assessment, fault diagnosis and many other fields. It can express the complex causal relationships among events and make fuzzy reasoning about them. In practical applications, there may be synergy effects among events, i.e., the occurrence of event a may increase or decrease the truth degree of event b. Traditional FPNs fail to express such effects, thus neglecting them during their reasoning procedure. To address this issue, this study proposes an FPN considering them for the first time. Firstly, this study illustrates the concept of synergy effects via practical application examples. Secondly, it develops the transition enabling conditions and truth degree calculation rules incorporated with synergy effects. Then, it formally defines a synergy-effect-incorporated fuzzy Petri net (SFPN). On this basis, it presents the production rules, transition firing rules and reasoning algorithm of SFPN to perform knowledge representation and reasoning for knowledge-based systems affected by synergy effects. Finally, it takes the risk assessment of equipment failure caused by corrosion as a running case to validate its feasibility and advantages.

computer science, artificial intelligence,engineering, electrical & electronic,operations research & management science