Assessment of Bisimulation Non-Interference in Discrete Event Systems Modelled With Bounded Petri Nets

Non-interference in discrete event systems deals with the possibility by an intruder to infer the occurrences of private and non observable events, the so called high-level ones, by interacting with the system at a user level, i.e., by observing the occurrence of the so called low-level ones. When bisimulation non-interference is considered, the security objective is not only to avoid the detection of high-level event occurrences, but also to avoid the detection of their non occurrences; i.e., the secret includes also the non occurrences of some events. This letter deals with such a more restrictive security property in the framework of discrete event systems modelled as Petri nets. A necessary and sufficient condition is given to assess bisimulation non-interference in bounded Petri nets. Such a condition requires the solution of integer linear programming optimization problems, whose solution can be used also to statically enforce bisimulation non-interference when this condition is not satisfied by the original system.

[1]  Roberto Gorrieri,et al.  Petri Net Security Checker: Structural Non-interference at Work , 2009, Formal Aspects in Security and Trust.

[2]  Michael K. Reiter,et al.  Crowds: anonymity for Web transactions , 1998, TSEC.

[3]  Christoforos N. Hadjicostis,et al.  Opacity-Enforcing Supervisory Strategies via State Estimator Constructions , 2012, IEEE Transactions on Automatic Control.

[4]  Claudio Sterle,et al.  Efficient diagnosability assessment via ILP optimization: a railway benchmark , 2018, 2018 IEEE 23rd International Conference on Emerging Technologies and Factory Automation (ETFA).

[5]  Roberto Gorrieri,et al.  On the Decidability of Non Interference over Unbounded Petri Nets , 2010, SecCo.

[6]  Claudio Sterle,et al.  Non-Interference Enforcement in Bounded Petri Nets , 2018, 2018 IEEE Conference on Decision and Control (CDC).

[7]  Stéphane Lafortune,et al.  Comparative analysis of related notions of opacity in centralized and coordinated architectures , 2013, Discret. Event Dyn. Syst..

[8]  Roberto Gorrieri,et al.  A Survey on Non-interference with Petri Nets , 2003, Lectures on Concurrency and Petri Nets.

[9]  Niels Lohmann,et al.  Information leak detection in business process models: Theory, application, and tool support , 2015, Inf. Syst..

[10]  Maciej Koutny,et al.  Opacity generalised to transition systems , 2005, International Journal of Information Security.

[11]  Gianmaria De Tommasi,et al.  Non-interference assessment in bounded Petri nets via Integer Linear Programming , 2018, 2018 Annual American Control Conference (ACC).

[12]  Paolo Baldan,et al.  Multilevel transitive and intransitive non-interference, causally , 2016, Theor. Comput. Sci..

[13]  Christos G. Cassandras,et al.  Introduction to Discrete Event Systems , 1999, The Kluwer International Series on Discrete Event Dynamic Systems.

[14]  Alberto Carraro,et al.  Non-interference by Unfolding , 2014, Petri Nets.

[15]  Javier Esparza,et al.  Existence of home states in Petri nets is decidable , 2016, Inf. Process. Lett..

[16]  Fernando García Vallés Contributions to the structural and symbolic analysis of place/transition nets, with applications to flexible manufacturing systems and asynchronous circuits , 1999 .

[17]  Gianmaria De Tommasi,et al.  On K-diagnosability of Petri nets via integer linear programming , 2012, Autom..

[18]  Eiji Oki,et al.  GLPK (GNU Linear Programming Kit) , 2012 .

[19]  J. Lofberg,et al.  YALMIP : a toolbox for modeling and optimization in MATLAB , 2004, 2004 IEEE International Conference on Robotics and Automation (IEEE Cat. No.04CH37508).

[20]  Luca Bernardinello,et al.  Non-Interference Notions Based on Reveals and Excludes Relations for Petri Nets , 2015, PNSE @ Petri Nets.

[21]  J. Lee,et al.  Petri Net Based Models for Specification and Analysis of Cryptographic Protocols , 1997, J. Syst. Softw..

[22]  Jean-Jacques Lesage,et al.  Overview of discrete event systems opacity: Models, validation, and quantification , 2016, Annu. Rev. Control..

[23]  Alessandro Giua,et al.  A New Approach for Diagnosability Analysis of Petri Nets Using Verifier Nets , 2012, IEEE Transactions on Automatic Control.

[24]  Didier Lime,et al.  Control and synthesis of non-interferent timed systems , 2012, Int. J. Control.