ruyi wu,hong li,min yao,jinbo wang,yuhao yang

DOI: https://doi.org/10.1109/ICCET.2010.5485641

2010-01-01

Abstract:Software component plays an important role in the AUTOSAR development process. In this paper, we propose a hierarchical modeling method for AUTOSAR software components, using which developers can conveniently create an AUTOSAR system. Taking into account the various software models of AUTOSAR application layer, we provide three diagram models to properly group the software components into four layers and a component library to improve reusability of component models. In addition, the hierarchical development of the model, along with auto-generation of XML description, is demonstrated based on the application case study of a door light control system.

张鑫,顾庆,陈道蓄

DOI: https://doi.org/10.3969/j.issn.1002-137x.2009.09.032

2009-01-01

Computer Science

Abstract:Quality of protection can be seen as the security target of security modules when doing their security treatments,which can be judged by quantitative criteria.The question of how to evaluate whether the current software system has fulfills the quality of protection target objectively and effectively has become one of the hotspots of research.Currently,however,most security professionals use the qualitative method for security evaluation,which is highly subjective and makes the evaluation result dependent on the individual experience and thus unreliable.So what needed are substantive and quantitative security metrics.Because of the complexity and the difficulty of implementing the security metrics,a novel security evaluation model was presented in this paper,which analyzed the relative security level of given systems from the views of attack surface,denial of service and attack graph.At last,a general discussion for the process and the result of the evaluation were given.

Xue-gang Lin,Rong-sheng Xu,Hua Xiong,Miao-liang Zhu

2006-01-01

Abstract:Survivability should be considered beyond security for information system, and quantitative analysis can assess system survivability accurately for improvement. Information system is presented by finite state machine and its state transition map is used to describe analysis process, where the hierarchical structure of system state avoids the problem of enumerating states in Markov chain model. Based on SNA method, a framework of quantitative analysis is introduced: defining system, testing system’s survivability, computing survivability, and giving analysis report finally, which is easily implemented by computer. In the framework, the event database which is based on event classification and grade makes creating test project automatically and objectively, and survivability is computed through resistance, recognition and recovery in a hierarchical process.

LI Zhi-guo,ZENG Qing-kai

DOI: https://doi.org/10.3969/j.issn.1000-3428.2008.02.035

2008-01-01

Abstract:This paper proposes a quantitative security evaluation model,BFN,which reflects the probability relationship between functional components and threats in a system,based on risk analysis approach. By this model it can quantitatively evaluate the deficiency in functional components of a system as well as its impact on the system. The experiments demonstrate that the model can compare different systems in security,and optimize a system by analyzing its weakness.

Jie Sun,Liping Zhao,Peri Loucopoulos,Xinyu Wang,Shanping Li,Xiaohu Yang

2012-01-01

Abstract:The efficient functioning of financial markets is important for growth across the world, affecting businesses, society and individuals. Stock trading, a key activity within financial markets, is undergoing major transformation fuelled by advances in information systems techniques. Our motivation is in the development of stock trading systems that are robust and are transparent to regulators, traders and the public. Specifically, the work presented in this paper focuses on the way that quality factors may be considered at the requirements phase when designing systems to support sock trading processes. We focus on three quality factors namely performance, availability and security. We introduce a modeling paradigm that extends the well-known UML Activity model to explicitly represent these three quality factors and augment this through quantitative and qualitative reasoning. The approach is exemplified through the use of a small aspect of a stock trading process, dealing with the ‘order crossing’ part, taken from the practices of an international firm.

Y Hu,XR Xie,YZ Xin

DOI: https://doi.org/10.1109/pes.2004.1372957

2005-01-01

Abstract:This paper presents a modeling language and a quantitative evaluation approach for the security of power information systems. We firstly design a security architecture design trace language to universally describe system structures, services, security policies, attack behaviors and countermeasures. Next an automated risk analysis algorithm is proposed to get attack traces of power information systems. Then, based on the concept of relative security degree, security architecture can be quantitatively evaluated. Finally, with a case study in a real power information system, the effectiveness of the presented approach is demonstrated. In practice, the approach can be employed for assessing various kinds of countermeasures, such as increasing a new security function, adjusting system self structure, and changing customer operation requirements. And it can greatly decrease the subjectivity of counter-measure selection.

Zhang Wei,Jin Zhi,Zhao Haiyan,Mei Hong

2013-01-01

Abstract:A quantitative calculation method for software confidence level includes confidence level defining, service quality defining, quality attribute defining and quality attribute index defining. The degree in which a practical value of each quality attribute index contained in a current quality attribute satisfies an expected value of each quality attribute index contained in the current quality attribute is subjected to weighted summation, and a real number which is in the range of [0, 1] and reflects the degree in which the practical value satisfies the expected value of the current quality attribute is generated. Due to the fact that the degree in which the practical value satisfies the expected value of each quality attribute contained in the service quality is subjected to weighted summation, the real number which is in the range of [0, 1] and reflects the confidence level of software is generated. According to the quantitative calculation method for the software confidence level, the confidence level of different software systems in the same application field under certain application environment can be compared quantitatively, and a basis is provided for a user to choose a certain software system.

HU Yan,XIE Xiao-rong,XIN Yao-zhong

DOI: https://doi.org/10.3321/j.issn:1000-3673.2006.02.002

2006-01-01

Abstract:At present there are not quantitative security architecture design methods and computer-aided design tools for power information system. The authors propose a pattern based quantitative security architecture design method, in which the aggressive behavior and safeguard are modeled by aggressive pattern and safeguard pattern respectively and the quantitative indices to select several safeguards are strictly defined with set theory. The advantages of the proposed method over the traditional risk management method are demonstrated in detail in security policy, system modeling, attack modeling, safeguard modeling, risk measurement, risk analysis and selection of safeguards. In order to decrease the cost of security architecture design and implement computer-aided design tools, the security architecture design process is further abstracted into a mathematical model of 0-1-integer programming.

Xiaohu Li,T. Paul Parker,Shouhuai Xu

DOI: https://doi.org/10.1109/aina.2007.138

2007-01-01

Abstract:Traditional security analyses are often geared towards cryptographic primitives or protocols. Although such analyses are absolutely necessary, they do not provide much insight for answering an equally important question: what is the security assurance of a physically or logically networked system when we consider it as a whole? This question is known to be notoriously difficult, and the state-of-the-art is that we know very little about it. In this paper, we make a step towards resolving it with a new modeling approach.

Junjie Zhao,Bingfeng Xu,Xinkai Chen,Bo Wang,Gaofeng He

DOI: https://doi.org/10.1109/cbd58033.2022.00055

2022-01-01

Abstract:To solve the problem of an excessive number of component vulnerabilities and limited defense resources in industrial cyber physical systems, a method for analyzing security critical components of system is proposed. Firstly, the components and vulnerability information in the system are modeled based on SysML block definition diagram. Secondly, as SysML block definition diagram is challenging to support direct analysis, a block security dependency graph model is proposed. On this basis, the transformation rules from SysML block definition graph to block security dependency graph are established according to the structure of block definition graph and its vulnerability information. Then, the calculation method of component security importance is proposed, and a security critical component analysis tool is designed and implemented. Finally, an example of a Drone system is given to illustrate the effectiveness of the proposed method. The application of this method can provide theoretical and technical support for selecting key defense components in the industrial cyber physical system.

付剑晶,王珂

DOI: https://doi.org/10.19884/j.1672-5220.2011.05.004

2011-01-01

Abstract:Software protection technology has been universally emphasized,with the development of reverse engineering and static analysis techniques.So,it is important to research how to quantitatively evaluate the security of the protected software.However,there are some researchers evaluating the security of the proposed protect techniques directly by the traditional complexity metrics,which is not sufficient.In order to better reflect security from software complexity,a multi-factor complexity metric based on control flow graph（CFG） is proposed,and the corresponding calculating procedures are presented in detail.Moreover,complexity density models are constructed to indicate the strength of software resisting reverse engineering and code analysis.Instance analysis shows that the proposed method is simple and practical,and can more objectively reflect software security from the perspective of the complexity.

Yu Zhiwei,Tang Rengzhong,Jia Dongjiao,Ye Fanbo

DOI: https://doi.org/10.3321/j.issn:1004-132X.2007.04.021

2007-01-01

Abstract:To identify the security requirements of information systems, a business process-based security requirement analysis method was presented. Focused on the business process security, the related assets which affect the business process security were identified by security tree model. The security requirements of assets were identified by risk packet and risk transferring model, and then the security requirements list was formed after coverage analysis. Finally, a case was studied to illustrate the proposed method.

Huan Wang,Zhanfang Chen,Xin Feng,Xiaoqiang Di,Dan Liu,Jianping Zhao,Xin Sui

DOI: https://doi.org/10.1007/s11277-017-5202-3

IF: 2.017

2018-01-03

Wireless Personal Communications

Abstract:In hierarchical network security situation assessment model, there are many problems, such as subjective index weight factor, large evaluation index system, large amount of calculation and low efficiency. A network security situation assessment model and quantification method based on AHP is proposed to solve this problem. The AHP analytic hierarchy process (AHP) is combined with the hierarchical model of situation assessment to simplify the situation assessment problem. The D–S evidence theory is used to fuse the fuzzy results of multi-source equipment to solve the problem of single information source and large deviation of accuracy. Through the construction of three evaluation indexes of risk situation, basic operation situation and damage situation, the problem of large evaluation index system and low evaluation efficiency is solved. AHP analytic hierarchy process is used to determine the weights of different index items, so as to avoid the subjectivity and randomness of weighting factors. The simulation results show that the model can reflect the security status of the network as a whole, and the situation assessment is accurate and can better serve the high-level decision-making.

telecommunications

Weiqiang Jia,Zhenyu Liu,Zhiyun Lin,Chan Qiu,Jianrong Tan

DOI: https://doi.org/10.1080/00207543.2015.1041574

IF: 9.018

2015-01-01

International Journal of Production Research

Abstract:Quantification for the importance degree of engineering characteristics (ECs) is an essential problem in quality function deployment. In real-world scenario, it is sometimes difficult to directly evaluate the correlation degree between ECs and customer requirements (CRs) as ECs are too abstract. Thus, the target ECs have to be further decomposed into several more detailed basic ECs and organised by a multi-level hierarchical structure. The paper investigates the quantification problem for the importance degree of such target ECs and tackles two critical issues. The first issue is how to deal with the uncertainties including fuzziness and incompleteness involved during the evaluation process. A fuzzy evidential reasoning algorithm-based approach is proposed to tackle this issue and derive the correlation degree between each of the basic ECs and the whole CRs. The second issue is how to deal with the interactions among the basic ECs decomposed from the same target EC during the aggregation process. A lambda-fuzzy measure and fuzzy discrete Choquet integral-based approach is proposed to tackle this issue and aggregate these basic ECs. Final importance degree of the target ECs can then be obtained. At the end of this paper, a case study is presented to verify the feasibility and effectiveness of the method we propose.

Qiang YAN,Hua-ying SHU,Zhong CHEN,Yun-suo DUAN

DOI: https://doi.org/10.3969/j.issn.1007-5321.2005.04.017

2005-01-01

Abstract:Security evaluation is an important approach for the security risk management of the information system. But there are lack of effective methods and tools for security evaluation. To resolve the problem, an object model of security evaluation is established based on the object oriented technology. The concepts of correlation test and dependency test are introduced and a set of tools is also developed according to the model. The practical application indicates that the object oriented technology can improve the efficiency of security evaluation, and the correlation test and dependency test also improve the penetration testing effects.

Jiamou Liu,Ziheng Wei

DOI: https://doi.org/10.48550/arXiv.1508.02812

2015-08-12

Computer Science and Game Theory

Abstract:Attribute-driven software architecture design aims to provide decision support by taking into account the quality attributes of softwares. A central question in this process is: What architecture design best fulfills the desirable software requirements? To answer this question, a system designer needs to make tradeoffs among several potentially conflicting quality attributes. Such decisions are normally ad-hoc and rely heavily on experiences. We propose a mathematical approach to tackle this problem. Game theory naturally provides the basic language: Players represent requirements, and strategies involve setting up coalitions among the players. In this way we propose a novel model, called decomposition game, for attribute-driven design. We present its solution concept based on the notion of cohesion and expansion-freedom and prove that a solution always exists. We then investigate the computational complexity of obtaining a solution. The game model and the algorithms may serve as a general framework for providing useful guidance for software architecture design. We present our results through running examples and a case study on a real-life software project.

Boyuan Li,Duo Li,Jianghai Li,Chao Guo,Huasheng Xiong,Shuqiao Zhou,Xiaojin Huang

DOI: https://doi.org/10.1115/icone31-135382

2024-01-01

Abstract:Abstract With the increasing dependence on digital instrumentation and control (I&C) systems in nuclear power plants, software has become a significant determinant of system safety assurance. To expand the use of digital technology in the nuclear industry, systematic methods are required for quantifying the safety of software-based I&C systems in safety critical applications. A software safety quantification model limited to the requirements phase is built in this paper based on the causal mechanisms that challenge safety. A preliminary mathematical method was developed to assess the number of requirements faults, their sub-types, their hazard rates and a control gate that allows determination of when to move beyond the requirements phase. A case study is conducted on a function of a reactor protection system to verify the validity of the quantification model. The framework allows us to assess software safety quantitatively.

CAO Zhikun,ZHANG Duxi,DONG Shufeng,GUO Chuangxin

DOI: https://doi.org/10.13335/j.1000-3673.pst.2016.04.042

2016-01-01

Abstract:Probabilityassessmentof functional failure is key procedure in secondary system risk assessment based on functional decomposition. This paper proposed models and algorithms for probabilityassessmentof functional failure based onfunctionalgraph of information pieces. In this approach, leaf functionswerefirst decomposed tofunctional graph, consistingof logical nodes and logical connections. Reduction of connection matrixwas then performed to yield logical expression of function state in terms of states of logical nodes and connections. Two methods of evaluating probability of functional failurewerepresented, i.e.accurate method and approximate method.Assessment procedurewas illustratedwitha case study on data acquisition function.

Yukun Zheng,Kun Lv,Changzhen Hu

DOI: https://doi.org/10.1007/978-3-319-64701-2_25

2017-01-01

Abstract:With the rapid development of network, network security issues become increasingly important. It is a tough challenge to evaluate the network security due to the increasing vulnerabilities. In this paper, we propose a quantitative method for evaluating network security based on attack graph. We quantify the importance of nodes and the maximum reachable probability of nodes, and construct a security evaluation function to calculate the security risk score. Our approach focuses on the attacker's view and considers the most important factors that may affect the network security. The parameters we use are easily to be acquired in any network. Thus, the assessment score gotten through the evaluation function can comprehensively reflect the security level. According to the security risk value, security professionals can take appropriate countermeasures to harden the network. Experimental results prove that this model solves the security evaluation problem efficiently.

Guoquan Li,Yulong Fu,Zheng Yan,Weilin Hao

DOI: https://doi.org/10.1007/978-3-030-30619-9_5

2019-01-01

Abstract:Security Metrics help network administrators master the security status and strengthen security management for many years. Recently, with the usages of many new techniques and network structures, the cyber attacks become complex and the security measurement has received more and more attentions. However, existing methods usually focus on one aspect of security and the indicators used are usually difficult to quantify, which makes it difficult to understand network security status in some real circumstance. In this paper, we consider the network system security from the perspective of attack and defense and the changes of external security environment to propose a comprehensive and quantifiable index system for network security measurement. We illustrate the corresponding theories and the usages of each selected indicators and we also complete the real-time security measurement in various attacks and defenses by using NS3 simulator. The simulation results verify the correctness and rationality of the proposed Security Measurement Index System.