A Non-intrusive Solution to Guarantee Runtime Behavior of Open SCADA Systems

For realizing non-intrusive protection of open SCADA systems, a non-intrusive solution for distributed open SCADA systems is proposed. The solution consists of three functionality parts: Abstract Execution, Refine State, and Behavior Checking. The approach provides a runtime verification of the system by combining cyclic semantic reconstruction of VM and abstract execution of SCADA services. First, all Internet packets through virtual network bridges are extracted and symbolically linked to specific service model to get simulated traces. Then, cyclic semantic reconstruction is performed to acquire the current service runtime state. According to the service instance state of semantic reconstruction, the simulated traces are refined. When a trace is identified, behavior checking is adopted to verify whether the runtime state is compliant to the system specification that is defined based on milestone events for meeting SCADA real-time requirements.

[1]  Howard Barringer,et al.  Rule Systems for Run-time Monitoring: from Eagle to RuleR , 2010, J. Log. Comput..

[2]  Mahesh Viswanathan,et al.  Verisim: Formal analysis of network simulations , 2000, ISSTA '00.

[3]  Yliès Falcone,et al.  Runtime enforcement monitors: composition, synthesis, and enforcement abilities , 2011, Formal Methods Syst. Des..

[4]  Insup Lee,et al.  Monitoring, Checking, and Steering of Real-Time Systems , 2002, Electron. Notes Theor. Comput. Sci..

[5]  Carl H. Hauser,et al.  Smart Generation and Transmission With Coherent, Real-Time Data , 2011, Proceedings of the IEEE.

[6]  Xiang Fu,et al.  Specification of realizable service conversations using collaboration diagrams , 2007, IEEE International Conference on Service-Oriented Computing and Applications (SOCA '07).