Model-based Design of Secure Cyber-Physical Systems

The objective of MODESEC is to develop a design methodology that integrates security in the model-based design (MBD) process of cyber-physical systems (CPS). The research is based on the insight that security engineering is a vital part of the system development process and cannot be treated incidental. The model-based design flow is a computer-aided design method that extensively uses models to analyze and determine functional and non-functional properties of the desired artifact during its design phase. The proposed methodology will extend current MBD approaches for security. A peculiarity is that the methodology will make use of the application-specific information contained in the functional models to implement a custom security architecture for the desired system functions of the CPS. For this purpose, relevant information is extracted from the models representing the CPS. This information is then used to configure and to adapt security mechanisms aimed at the prevention as well as the detection of attacks. The security mechanisms are installed together with the application`s system functions on an appropriate computing platform. The developed secure MBD methodology will be implemented in a state-of-the- art MBD tool chain and by conducting a case study. It will be evaluated by conducting a case study within a System-of-Systems (SoS) context (e.g., the Smart Power Grid), because this research field combines security and dependability requirements in a new, unique, and challenging way. The secure design methodology developed within MODESEC will support MBD practitioners to improve the security of their products.