Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Monitoring security compliance of critical processes

: Rieke, R.; Repp, J.; Zhdanova, M.; Eichler, J.


Aldinucci, M. ; Institute of Electrical and Electronics Engineers -IEEE-; European Organisation for Information Technology and Microelectronics -EUROMICRO-:
22nd Euromicro International Conference on Parallel, Distributed, and Network-Based Processing, PDP 2014. Proceedings : 12-14 February 2014, Turin, Italy
Los Alamitos, Calif.: IEEE Computer Society Conference Publishing Services (CPS), 2014
ISBN: 978-1-4799-2728-9
ISBN: 978-1-4799-2731-9
International Conference on Parallel, Distributed and Network-Based Processing (PDP) <22, 2014, Turin>
Fraunhofer SIT ()
Fraunhofer AISEC ()

Enforcing security in process-aware information systems at runtime requires the monitoring of systems' operation using process information. Analysis of this information with respect to security and compliance aspects is growing in complexity with the increase in functionality, connectivity, and dynamics of process evolution. To tackle this complexity, the application of models is becoming standard practice. Considering today's frequent changes to processes, model-based support for security and compliance analysis is not only needed in pre-operational phases but also at runtime. This paper presents an approach to support evaluation of the security status of processes at runtime. The approach is based on operational formal models derived from process specifications and security policies comprising technical, organizational, regulatory and cross-layer aspects. A process behavior model is synchronized by events from the running process and utilizes prediction of expected cl ose-future states to find possible security violations and allow early decisions on countermeasures. The applicability of the approach is exemplified by a misuse case scenario from a hydroelectric power plant.