Enforcing opacity by publicly known edit functions

This paper extends prior work about the enforcement of opacity by insertion functions and applies a more general method called edit functions. Based on its observations, the edit function can insert or erase events to modify the outputs of the system and obfuscate the outside intruder. In this paper, a key assumption is that the intruder knows the implementation of the edit function, which requires the edit function to be “public-private enforcing”. In order to capture the limitations of edit functions, state based edit constraints are introduced and may preclude some originally feasible edit choices, complicating the enforcement problem. The edit function in this work is deterministic and the enforcement problem is formulated as a two-player game between the edit function and the system. Our goal is to synthesize public-private enforcing edit functions without violating edit constraints. A new synthesis algorithm is proposed based on the game structure.

[1]  Shigemasa Takai,et al.  A Formula for the Supremal Controllable and Opaque Sublanguage Arising in Supervisory Control , 2008 .

[2]  Yliès Falcone,et al.  Enforcement and validation (at runtime) of various notions of opacity , 2014, Discrete Event Dynamic Systems.

[3]  Stéphane Lafortune,et al.  Synthesis of opacity-enforcing insertion functions that can be publicly known , 2015, 2015 54th IEEE Conference on Decision and Control (CDC).

[4]  Stéphane Lafortune,et al.  Synthesis of insertion functions for enforcement of opacity security properties , 2014, Autom..

[5]  Stéphane Lafortune,et al.  A general approach for solving dynamic sensor activation problems for a class of properties , 2015, 2015 54th IEEE Conference on Decision and Control (CDC).

[6]  Feng Lin,et al.  Opacity of discrete event systems and its applications , 2011, Autom..

[7]  Hervé Marchand,et al.  Synthesis of opaque systems with static and dynamic masks , 2012, Formal Methods Syst. Des..

[8]  Christoforos N. Hadjicostis,et al.  Notions of security and opacity in discrete event systems , 2007, 2007 46th IEEE Conference on Decision and Control.

[9]  Jean-Jacques Lesage,et al.  Overview of discrete event systems opacity: Models, validation, and quantification , 2016, Annu. Rev. Control..

[10]  Christos G. Cassandras,et al.  Introduction to Discrete Event Systems, Second Edition , 2008 .

[11]  Philippe Darondeau,et al.  Enforcing opacity of regular predicates on modal transition systems , 2015, Discret. Event Dyn. Syst..

[12]  Christos G. Cassandras,et al.  Introduction to Discrete Event Systems , 1999, The Kluwer International Series on Discrete Event Dynamic Systems.

[13]  Maciej Koutny,et al.  Opacity generalised to transition systems , 2005, International Journal of Information Security.

[14]  Feng Lin,et al.  Maximum Information Release While Ensuring Opacity in Discrete Event Systems , 2015, IEEE Transactions on Automation Science and Engineering.

[15]  Mathieu Sassolas,et al.  Quantifying Opacity , 2010, QEST.

[16]  Sanjit A. Seshia,et al.  Obfuscator Synthesis for Privacy and Utility , 2016, NFM.

[17]  Christoforos N. Hadjicostis,et al.  Current-State Opacity Formulations in Probabilistic Finite Automata , 2014, IEEE Transactions on Automatic Control.

[18]  Alessandro Giua,et al.  Verification of State-Based Opacity Using Petri Nets , 2017, IEEE Transactions on Automatic Control.

[19]  Philippe Darondeau,et al.  Supervisory Control for Opacity , 2010, IEEE Transactions on Automatic Control.

[20]  Stéphane Lafortune,et al.  Comparative analysis of related notions of opacity in centralized and coordinated architectures , 2013, Discret. Event Dyn. Syst..

[21]  Stéphane Lafortune,et al.  A new approach for the verification of infinite-step and K-step opacity using two-way observers , 2017, Autom..

[22]  Sophie Pinchinat,et al.  Diagnosis and opacity problems for infinite state systems modeled by recursive tile systems , 2015, Discret. Event Dyn. Syst..

[23]  Stéphane Lafortune,et al.  A Uniform Approach for Synthesizing Property-Enforcing Supervisors for Partially-Observed Discrete-Event Systems , 2016, IEEE Transactions on Automatic Control.