Cybersecurity in OT environments is challenging, due to persistent threats and legacy systems using outdated protocols. Formal methods can verify protocol correctness, but their assumptions often fail to appear in system design. We propose a methodology that maps protocol specifications to architectural assets and simulates attacker behavior to test these assumptions. Applying our approach to a real OT use case shows how evolving infrastructure can break initial assumptions and create new risks. Simulations reveal attacker paths and support targeted mitigations, aligning formal verification with real-world resilience through an iterative process.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Formal Security Proof Assurance in Architecture Design for IT/OT Convergence

  • Massimiliano Masi,
  • Giovanni Paolo Sellitto,
  • Helder Aranha,
  • Tanja Pavleska

摘要

Cybersecurity in OT environments is challenging, due to persistent threats and legacy systems using outdated protocols. Formal methods can verify protocol correctness, but their assumptions often fail to appear in system design. We propose a methodology that maps protocol specifications to architectural assets and simulates attacker behavior to test these assumptions. Applying our approach to a real OT use case shows how evolving infrastructure can break initial assumptions and create new risks. Simulations reveal attacker paths and support targeted mitigations, aligning formal verification with real-world resilience through an iterative process.