Current-state opacity enforcement in discrete event systems under incomparable observations

In this paper we tackle the opacity enforcement problem in discrete event systems using supervisory control theory. In particular, we consider the case where the intruder and the supervisor may observe different sets of events and neither of these sets needs to be contained in the other one. Moreover, there may be controllable events that cannot be observed by the supervisor. We propose a finite structure, called an augmented I-observer, to characterize the strings that will not leak the secret. Based on such a structure, a locally optimal supervisor enforcing current-state opacity is designed.

[1]  Michael K. Reiter,et al.  Crowds: anonymity for Web transactions , 1998, TSEC.

[2]  Stéphane Lafortune,et al.  A new approach for synthesizing opacity-enforcing supervisors for partially-observed discrete-event systems , 2015, 2015 American Control Conference (ACC).

[3]  J. Meseguer,et al.  Security Policies and Security Models , 1982, 1982 IEEE Symposium on Security and Privacy.

[4]  A. Saboori,et al.  Verification of initial-state opacity in security applications of DES , 2008, 2008 9th International Workshop on Discrete Event Systems.

[5]  Stéphane Lafortune,et al.  Synthesis of insertion functions for enforcement of opacity security properties , 2014, Autom..

[6]  Stéphane Lafortune,et al.  Comparative analysis of related notions of opacity in centralized and coordinated architectures , 2013, Discret. Event Dyn. Syst..

[7]  Shigemasa Takai,et al.  A Formula for the Supremal Controllable and Opaque Sublanguage Arising in Supervisory Control , 2008 .

[8]  Vitaly Shmatikov Probabilistic analysis of an anonymity system , 2004, J. Comput. Secur..

[9]  Nejib Ben Hadj-Alouane,et al.  Centralized and distributed algorithms for on-line synthesis of maximal control policies under partial observation , 1996, Discret. Event Dyn. Syst..

[10]  Hervé Marchand,et al.  Synthesis of opaque systems with static and dynamic masks , 2012, Formal Methods Syst. Des..

[11]  Roberto Gorrieri,et al.  A Survey on Non-interference with Petri Nets , 2003, Lectures on Concurrency and Petri Nets.

[12]  Feng Lin,et al.  Opacity of discrete event systems and its applications , 2011, Autom..

[13]  Stéphane Lafortune,et al.  Synthesis of opacity-enforcing insertion functions that can be publicly known , 2015, 2015 54th IEEE Conference on Decision and Control (CDC).

[14]  Jana Kosecka,et al.  Control of Discrete Event Systems , 1992 .

[15]  Toshimitsu Ushio On-Line Control of Discrete Event Systems with a Maximally Controllable and Observable Sublanguage , 1999 .

[16]  Alessandro Giua,et al.  Verification of current-state opacity using Petri nets , 2015, 2015 American Control Conference (ACC).

[17]  Hervé Marchand,et al.  Dynamic Observers for the Synthesis of Opaque Systems , 2009, ATVA.

[18]  Steven I. Marcus,et al.  On supremal languages of classes of sublanguages that arise in supervisor synthesis problems with partial observation , 1989, Math. Control. Signals Syst..

[19]  Stéphane Lafortune,et al.  A Uniform Approach for Synthesizing Property-Enforcing Supervisors for Partially-Observed Discrete-Event Systems , 2016, IEEE Transactions on Automatic Control.

[20]  Maciej Koutny,et al.  Opacity generalised to transition systems , 2005, International Journal of Information Security.

[21]  Alessandro Giua,et al.  Decidability of opacity verification problems in labeled Petri net systems , 2017, Autom..

[22]  Alessandro Giua,et al.  Supervisory enforcement of current-state opacity with uncomparable observations , 2016, 2016 13th International Workshop on Discrete Event Systems (WODES).

[23]  Christoforos N. Hadjicostis,et al.  Opacity-Enforcing Supervisory Strategies via State Estimator Constructions , 2012, IEEE Transactions on Automatic Control.

[24]  Feng Lin,et al.  Supervisory control for opacity of discrete event systems , 2011, 2011 49th Annual Allerton Conference on Communication, Control, and Computing (Allerton).

[25]  Walter Murray Wonham,et al.  Relative Observability of Discrete-Event Systems and Its Supremal Sublanguages , 2015, IEEE Transactions on Automatic Control.

[26]  Alessandro Giua,et al.  Verification of initial-state opacity in Petri nets , 2015, 2015 54th IEEE Conference on Decision and Control (CDC).

[27]  Alessandro Giua,et al.  Verification of State-Based Opacity Using Petri Nets , 2017, IEEE Transactions on Automatic Control.

[28]  Philippe Darondeau,et al.  Supervisory Control for Opacity , 2010, IEEE Transactions on Automatic Control.

[29]  Stéphane Lafortune,et al.  Synthesis of Maximally Permissive Supervisors for Partially-Observed Discrete-Event Systems , 2016, IEEE Transactions on Automatic Control.

[30]  Zhiwu Li,et al.  Verification of language-based opacity in Petri nets using verifier , 2016, 2016 American Control Conference (ACC).

[31]  Nejib Ben Hadj-Alouane,et al.  On the verification of intransitive noninterference in mulitlevel security , 2005, IEEE Transactions on Systems, Man, and Cybernetics, Part B (Cybernetics).

[32]  Maciej Koutny,et al.  Modelling Opacity Using Petri Nets , 2005, WISP@ICATPN.

[33]  Christoforos N. Hadjicostis,et al.  Supervisor synthesis for discrete event systems under partial observation and arbitrary forbidden state specifications , 2014, Discret. Event Dyn. Syst..

[34]  Yliès Falcone,et al.  Enforcement and validation (at runtime) of various notions of opacity , 2014, Discrete Event Dynamic Systems.

[35]  Bo Zhang,et al.  Polynomial algorithms to check opacity in discrete event systems , 2012, 2012 24th Chinese Control and Decision Conference (CCDC).

[36]  P. Darondeau,et al.  Opacity enforcing control synthesis , 2008, 2008 9th International Workshop on Discrete Event Systems.

[37]  Christoforos N. Hadjicostis,et al.  Notions of security and opacity in discrete event systems , 2007, 2007 46th IEEE Conference on Decision and Control.

[38]  Christos G. Cassandras,et al.  Introduction to Discrete Event Systems , 1999, The Kluwer International Series on Discrete Event Dynamic Systems.

[39]  Benoît Caillaud,et al.  Concurrent Secrets , 2007, 2006 8th International Workshop on Discrete Event Systems.

[40]  Feng Lin,et al.  On-line control of partially observed discrete event systems , 1994, Discret. Event Dyn. Syst..