Skip to main content
SpringerLink
Log in

Formal Verification of OS Security Model with Alloy and Event-B

  • Conference paper
Abstract State Machines, Alloy, B, TLA, VDM, and Z (ABZ 2014)

Part of the book series: Lecture Notes in Computer Science ((LNTCS,volume 8477))

Abstract

The paper presents a work-in-progress on formal verification of operating system security model, which integrates control of confidentiality and integrity levels with role-based access control. The main goal is to formalize completely the security model and to prove its consistency and conformance to basic correctness requirements concerning keeping levels of integrity and confidentiality. Additional goal is to perform data flow analysis of the model to check whether it can preserve security in the face of certain attacks. Alloy and Event-B were used for formalization and verification of the model. Alloy was applied to provide quick constraint-based checking and uncover various issues concerning inconsistency or incompleteness of the model. Event-B was applied for full-scale deductive verification. Both tools worked well on first steps of model development, while after certain complexity was reached Alloy began to demonstrate some scalability issues.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Devyanin, P.N.: The models of security of computer systems: access control and information flows. Hot line - Telecom, Moscow (2013) (in Russian)

    Google Scholar 

  2. Bishop, M.: Computer security: art and science. Pearson Education Inc., Boston (2002)

    Google Scholar 

  3. Wright, C., Cowan, C., Smalley, S., Morris, J., Kroah-Hartman, G.: Linux Security Modules: General Security Support for the Linux Kernel. In: Proc. of the 11th USENIX Security Symposium, pp. 17–31 (2002)

    Google Scholar 

  4. Jackson, D.: Software Abstractions: Logic, Language, and Analysis. MIT Press (2006)

    Google Scholar 

  5. Abrial, J.-R.: Modeling in Event-B: System and Software Engineering. Cambridge University Press (2010)

    Google Scholar 

  6. Abrial, J.-R., Butler, M., Hallerstede, S., Hoang, T.S., Mehta, F., Voisin, L.: Rodin: An Open Toolset for Modelling and Reasoning in Event-B. International Journal on Software Tools for Technology Transfer 12(6), 447–466 (2010)

    Article  Google Scholar 

  7. Leuschel, M., Butler, M.: ProB: A Model Checker for B. In: Araki, K., Gnesi, S., Mandrioli, D. (eds.) FME 2003. LNCS, vol. 2805, pp. 855–874. Springer, Heidelberg (2003)

    Chapter  Google Scholar 

  8. Bobot, F., Filliâtre, J.-C., Marché, C., Paskevich, A.: Why3: Shepherd Your Herd of Provers. In: Proc. of Boogie 2011: 1st Intl Workshop on Intermediate Verification Languages, pp. 53–64 (2011)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Educational and Methodical Community of Information Security, Moscow, Russia

    Petr N. Devyanin

  2. Institute for System Programming, Russian Academy of Sciences, Moscow, Russia

    Alexey V. Khoroshilov, Victor V. Kuliamin, Alexander K. Petrenko & Ilya V. Shchepetkov

Authors
  1. Petr N. Devyanin
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Alexey V. Khoroshilov
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Victor V. Kuliamin
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Alexander K. Petrenko
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Ilya V. Shchepetkov
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. INP-ENSEEIHT/IRIT, 2 Rue Charles Camichel, BP 7122, 31071, Toulouse Cedex 7, France

    Yamine Ait Ameur

  2. Software Competence Center Hagenberg, Softwarepark 21, 4232, Hagenberg, Austria

    Klaus-Dieter Schewe

Rights and permissions

Reprints and permissions

Copyright information

© 2014 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Devyanin, P.N., Khoroshilov, A.V., Kuliamin, V.V., Petrenko, A.K., Shchepetkov, I.V. (2014). Formal Verification of OS Security Model with Alloy and Event-B. In: Ait Ameur, Y., Schewe, KD. (eds) Abstract State Machines, Alloy, B, TLA, VDM, and Z. ABZ 2014. Lecture Notes in Computer Science, vol 8477. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-662-43652-3_30

Download citation

  • DOI: https://doi.org/10.1007/978-3-662-43652-3_30

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-662-43651-6

  • Online ISBN: 978-3-662-43652-3

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation