The Opacity of Real-Time Automata

Opacity is an important property on information flow to guarantee that a system under attack keeps its “secrets”, possibly subsets of traces (language-based opacity) or subsets of states (state-based opacity), opaque to the outside intruder with partial observability. In this paper, we investigate the opacity problems of real-time automata (RTA), which is a popular model for real-time systems. In order to prove that the language-opacity problem of RTA is decidable, we introduce the notion of trace-equivalence and then translate RTA into finite-state automata (FA) with timed alphabets. Besides, we also introduce the notions of partitioned timed alphabet and language to guarantee trace equivalence is preserved by complementation and product operations over FA with timed alphabets. Thus, our decision procedure can be sketched as follows: first, translate the RTA to model a system under attack and the RTA to specify the secret behavior of the system into FA, respectively; then, compute another FA, which accepts all traces accepted by the first FA, but not by the second one; afterwards, project these FA onto the given observable set; finally, unify the alphabets of these FA such that for any two timed actions with the same event, their time parts do not have any overlap. Thus, whether the original system is language-opaque with respect to the secret RTA and the observable set is reduced to the inclusion problem of regular languages. Similarly, we can show decidability of initial-opacity of RTA.

[1]  Laurent Mazare,et al.  Using Unification For Opacity Properties , 2004 .

[2]  Giovanni Maria Sacco,et al.  Timestamps in key distribution protocols , 1981, CACM.

[3]  Alessandro Giua,et al.  Verification of State-Based Opacity Using Petri Nets , 2017, IEEE Transactions on Automatic Control.

[4]  Krishnendu Chatterjee,et al.  Probabilistic opacity for Markov decision processes , 2014, Inf. Process. Lett..

[5]  Christoforos N. Hadjicostis,et al.  Verification of initial-state opacity in security applications of discrete event systems , 2013, Inf. Sci..

[6]  Olivier H. Roux,et al.  Non-Interference Control Synthesis for Security Timed Automata , 2007, Electron. Notes Theor. Comput. Sci..

[7]  Mathieu Sassolas,et al.  Quantifying Opacity , 2010, QEST.

[8]  Maciej Koutny,et al.  Opacity Generalised to Transition Systems , 2005, Formal Aspects in Security and Trust.

[9]  Rajeev Motwani,et al.  Introduction to automata theory, languages, and computation - international edition, 2nd Edition , 2003 .

[10]  Catalin Dima,et al.  Real-Time Automata , 2001, J. Autom. Lang. Comb..

[11]  He Jifeng,et al.  From CSP to hybrid systems , 1994 .

[12]  Franck Cassez,et al.  The Dark Side of Timed Opacity , 2009, ISA.

[13]  Christoforos N. Hadjicostis,et al.  Verification of $K$-Step Opacity and Analysis of Its Complexity , 2009, IEEE Transactions on Automation Science and Engineering.

[14]  Maciej Koutny,et al.  Modelling Opacity Using Petri Nets , 2005, WISP@ICATPN.

[15]  S C Kleene,et al.  Representation of Events in Nerve Nets and Finite Automata , 1951 .

[16]  John T. Kohl,et al.  The Kerberos Network Authentication Service (V5 , 2004 .

[17]  Jun Chen,et al.  Secrecy in stochastic discrete event systems , 2014, Proceedings of the 11th IEEE International Conference on Networking, Sensing and Control.

[18]  Christoforos Keroglou,et al.  Initial state opacity in stochastic DES , 2013, 2013 IEEE 18th Conference on Emerging Technologies & Factory Automation (ETFA).

[19]  Anders P. Ravn,et al.  A Formal Description of Hybrid Systems , 1996, Hybrid Systems.

[20]  Naijun Zhan,et al.  Formal Verification of Simulink/Stateflow Diagrams, A Deductive Approach , 2016 .

[21]  Christoforos N. Hadjicostis,et al.  Opacity-Enforcing Supervisory Strategies via State Estimator Constructions , 2012, IEEE Transactions on Automatic Control.

[22]  Christoforos N. Hadjicostis,et al.  Verification of Infinite-Step Opacity and Complexity Considerations , 2012, IEEE Transactions on Automatic Control.

[23]  Stephen Warshall,et al.  A Theorem on Boolean Matrices , 1962, JACM.