The Systems Assurance Group Dr Jaspal Sagoo Systems Assurance Group QinetiQ Trusted Information Management Malvern Technology Centre.

Slides:

Advertisements

Similar presentations

Omnibus: A clean language and supporting tool for integrating different assertion-based verification techniques Thomas Wilson, Savi Maharaj, Robert G.

Advertisements

Aviation Safety ProgramSingle Aircraft Accident Prevention April NCC-1-377, Honeywell Tucson Design, Implementation, and Verification of Fault-Tolerant.

LIFE CYCLE MODELS FORMAL TRANSFORMATION

Mobile Code Security Aviel D. Rubin, Daniel E. Geer, Jr. MOBILE CODE SECURITY, IEEE Internet Computing, 1998 Minkyu Lee

B. Sharma, S.D. Dhodapkar, S. Ramesh 1 Assertion Checking Environment (ACE) for Formal Verification of C Programs Babita Sharma, S.D.Dhodapkar RCnD, BARC,

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 24 Slide 1 Critical Systems Validation 2.

VeriCon: Towards Verifying Controller Programs in SDNs (PLDI 2014) Thomas Ball, Nikolaj Bjorner, Aaron Gember, Shachar Itzhaky, Aleksandr Karbyshev, Mooly.

Experiences with Third Party Qualification of Critical Software Presenter: David Tremaine, SWI.

An Introduction to Proof-Carrying Code David Walker Princeton University (slides kindly donated by George Necula; modified by David Walker)

An Integration of Program Analysis and Automated Theorem Proving Bill J. Ellis & Andrew Ireland School of Mathematical & Computer Sciences Heriot-Watt.

Formal Methods in Software Engineering Credit Hours: 3+0 By: Qaisar Javaid Assistant Professor Formal Methods in Software Engineering1.

Chapter 4: Security Policies Overview The nature of policies What they cover Policy languages The nature of mechanisms Types Secure vs. precise Underlying.

Building Reliable Software Requirements and Methods.

Type-Safe Programming in C George Necula EECS Department University of California, Berkeley.

Industrial Avionics Working Group 19/04/07 Modular Certification Developing Safety Case Modules.

Programmability with Proof-Carrying Code George C. Necula University of California Berkeley Peter Lee Carnegie Mellon University.

Software Engineering for Safety : A Roadmap Presentation by: Manu D Vij CS 599 Software Engineering for Embedded Systems.

Industrial Avionics Working Group 13/09/06 Incremental Certification Phil Williams – General Dynamics (UK) Ltd Representing the Industrial Avionics Working.

Achieving Trusted Systems by Providing Security and Reliability Ravishankar K. Iyer, Zbigniew Kalbarczyk, Jun Xu, Shuo Chen, Nithin Nakka and Karthik Pattabiraman.

10 th January QinetiQ in confidence © Copyright QinetiQ 1.

Chess Review October 4, 2006 Alexandria, VA Edited and presented by Impact: Fault Tolerance and High Confidence Embedded Systems Design Gabor Karsai Vanderbilt.

On the Correctness of Model Transformations Gabor Karsai ISIS/Vanderbilt University.

1 The Problem o Fluid software cannot be trusted to behave as advertised unknown origin (must be assumed to be malicious) known origin (can be erroneous.

Formal Methods 1. Software Engineering and Formal Methods  Every software engineering methodology is based on a recommended development process  proceeding.

The Global Cybersecurity Innovation Summit THE BRITISH MUSEUM, LONDON 16 & 17 SEPTEMBER, 2014 Supported by Her Majesty’s Government and U.S. Department.

Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.

SEC835 Database and Web application security Information Security Architecture.

File: 1 The OECD Halden Reactor Project The OECD Halden Reactor Project (HRP) is an International Research Project between 19 countries in Europe, America.

Assurance techniques for code generators Ewen Denney USRA/RIACS, NASA Ames Bernd Fischer ECS, U Southampton.

Hardware Support for Trustworthy Systems Ted Huffmire ACACES 2012 Fiuggi, Italy.

Is Proof More Cost-Effective Than Testing? Presented by Yin Shi.

© Andrew IrelandDependable Systems Group Proof Automation for the SPARK Approach to High Integrity Ada Andrew Ireland Computing & Electrical Engineering.

25 November 2002 DeSIRE, Pisa Methods and Tools for Formal Design and Validation Michael Butler University of Southampton

© Andrew IrelandDependable Systems Group Cooperative Reasoning for Automatic Software Verification Andrew Ireland School of Mathematical & Computer Sciences.

Computerised Air Traffic Management Tools - Benefits and Limitations OMAR BASHIR (March 2005)

Center of Excellence for IT at Bellevue College. Cyber security and information assurance refer to measures for protecting computer systems, networks,

Copyright © Praxis Critical Systems Limited 2002 The Way Ahead Session Praxis Critical Systems Tom Anderson – The Commission’s View Discussion The Next.

© Andrew IrelandDependable Systems Group ITI Techmedia and Technology Transfer Andrew Ireland Dependable Systems Group School of Mathematical & Computer.

Proof Carrying Code Zhiwei Lin. Outline Proof-Carrying Code The Design and Implementation of a Certifying Compiler A Proof – Carrying Code Architecture.

1 New Development Techniques: New Challenges for Verification and Validation Mats Heimdahl Critical Systems Research Group Department of Computer Science.

Overview of Formal Methods. Topics Introduction and terminology FM and Software Engineering Applications of FM Propositional and Predicate Logic Program.

 Chapter 13 – Dependability Engineering 1 Chapter 12 Dependability and Security Specification 1.

Framework for the Development and Testing of Dependable and Safety-Critical Systems IKTA 065/ Supported by the Information and Communication.

Security Overview  System protection requirements areas  Types of information protection  Information Architecture dimensions  Public Key Infrastructure.

© Andrew IrelandDependable Systems Group On the Scalability of Proof Carrying Code for Software Certification Andrew Ireland School of Mathematical & Computer.

Integrating Systems: models and fault modes SESAM-möte, 19 Oktober, 2005 Jonas Elmqvist Real-Time Systems Laboratory Department of Computer and Information.

Model Checking and Model-Based Design Bruce H. Krogh Carnegie Mellon University.

Open Platform for EvolutioNary Certification Of Safety-critical Systems Large-scale integrating project (IP) Nuanced Term-Matching to Assist in Compositional.

1 Reducing the Software Impact to System Safety Paul Mayo – SafeEng Limited.

Major Disciplines in Computer Science Ken Nguyen Department of Information Technology Clayton State University.

High Integrity Ada in a UML and C world Peter Amey, Neil White Presented by Liping Cai.

© Andrew IrelandDependable Systems Group Static Analysis and Program Proof Andrew Ireland School of Mathematical & Computer Sciences Heriot-Watt University.

Computational Logic QMUL 26 Mar 04 Verification of Safety Critical Software Nick Tudor tel:

High Confidence Software and Systems HCMDSS Workshop Brad Martin June 2, 2005.

QinetiQ in confidence © Copyright QinetiQ November 2008 Challenges Colin O’Halloran Aerospace Consulting Practice.

Diversity for Dependability * Jean-Claude Laprie PRDC’99 — December 16-17, 1999 — Hong Kong * Elaboration on «Diversity against Accidental and Deliberate.

Version 02U-1 Computer Security: Art and Science1 Correctness by Construction: Developing a Commercial Secure System by Anthony Hall Roderick Chapman.

Industrial Avionics Working Group 18/04/07 The Relationship Between the Design and Safety Domains in IAWG Modular Certification Part 2: Completeness of.

SAFE KERNEL EXTENSIONS WITHOUT RUN-TIME CHECKING George C. Necula Peter Lee Carnegie Mellon U.

© Andrew IrelandGrand Challenges for Computing Research 2004 The Verifying Compiler Andrew Ireland Dependable Systems Group School of Mathematical & Computer.

Security Codesign Steve Dawson and Victoria Stavridou Bruno Dutertre, Josh Levy, Bob Riemenschneider, Hassen Saidi, Tomas Uribe System Design Laboratory.

© Andrew IrelandDependable Systems Group The Use of Patterns to Guide Code Certification: A Proposal Andrew Ireland School of Mathematical & Computer Sciences.

SAMCAHNG Yun Goo Kim I. Formal Model Based Development & Safety Analysis II. UML (Model) Based Safety RMS S/W Development February KIM, YUN GOO.

Cyber Physical System Security

QGen and TQL-1 Qualification

QGen and TQL Qualification

Chapter 27 Security Engineering

Software Engineering for Safety: a Roadmap

CHARIOT-VESSEDIA Workshop 9 May 2019, Dublin, Ireland

Presentation transcript:

The Systems Assurance Group Dr Jaspal Sagoo Systems Assurance Group QinetiQ Trusted Information Management Malvern Technology Centre

2 QinetiQ Defence & Technology Security & Dual Use US

3 QTIM

4 Dependability of systems: –Safety, Security, fault tolerance Provide assurance that systems are dependable –Formal modelling and analysis CSP, Z, Model Checking, Theorem Proving, Refinement –Assessment of systems Safety analysis techniques Type of Work –Research –Project Support Defence Commercial The Systems Assurance Group

5 Systems Assurance Group Structure

6 Development and application of software analysis techniques Language development – development of ‘safe’ language subsets – typically considers Ada and C – new languages like C++, Java, SOAR and JACK Assessment tools – compliance analysis – Malporte analysis

7 Software Analysis Compliance analysis – shows ‘correctness’ of code wrt specification – translate informal spec into Z – refinement argument supported by formal proof assisted by a theorem prover

8 Overview of the Control Laws in Z (ClawZ) Process Refinement Z Discharge proof SPARK Ada Refinement Script Generator Superta c Z Producer Compliance Notation Tool ProofPower Verification Conditions Simulink Spec

9 Static code analysis Malporte (MALvern Predictor Of Run-Time Errors) –statically checks for integrity properties such as: Run-time errors Undefined behaviour Run-time exceptions –Checks Ada, C, C++ code Checks for error such as –Buffer over-runs –Divide by zero –Use of pointers and unions in C –Integer and floating point over/under flow

10 Used on … Numerours MoD projects such as Eurofighter Typhoon & Nimrod Secure webserver application Trial carried out with an automotive supplier Security analysis of SendMail server

11 Hazard identification and Safety case review –Generation of HAZOPs, PHA –Review of delivered safety evidence Safety case methods –development and use of tools to manage the integration of evidence from diverse sources –compilation of safety cases –Modular safety cases Advice to policy bodies on standards for safety critical systems –MoD’s review of standards –secretary of RTCA committee developing future Avionics standards –reports to the European Commission on the requirements for future air traffic management (Ariba) and healthcare standards Advice to MoD projects on high integrity software Safety Assurance

12 Security Assurance Security of Pervasive computing systems – FORWARD project funded by DTI –Authentication & key management –Securing blue tooth –Interoperability of devices –Quality of service Quantum Cryptography –ESPIRIT Framework VI –Development of techniques to produce security arguments Irish E-voting MAFTIA (Malicious & Accidental Fault Tolerant Internet Applications) –ESPIRIT Framework V –Verifying security mechanisms/schemes

13 Development and application of system analysis techniques Formal modelling and analysis of communicating systems – verification of security and safety properties – can be applied to legacy and COTS products Formal modelling and analysis techniques applied to digital hardware – verification of critical ASIC design – processor obsolescence issues – ASIC audits Assessment of the impact of emerging technology on system safety –the impact of neural networks and agent technology on system safety –effect of move to IMA on certification Robust System Of Systems (RSOS)

14 Student recruitment Firm foundations in traditional areas: – Computer Science – Formal techniques – Software Engineering