A Formal Approach to Identifying Security Vulnerabilities in Telecommunication Networks

Inna Vistbakka; Elena Troubitsyna; Linas Laibinis; Ian Oliver; Silke Holtmanns

doi:10.1007/978-3-319-47846-3_10

A Formal Approach to Identifying Security Vulnerabilities in Telecommunication Networks

Inna Vistbakka, Elena Troubitsyna, Linas Laibinis, Ian Oliver, Silke Holtmanns

Informationsteknologi

Forskningsoutput: Kapitel i bok/konferenshandling › Konferensbidrag › Vetenskaplig › Peer review

5 Citeringar (Scopus)

Sammanfattning

The number of security attacks on the telecommunication networks is constantly increasing. To prevent them, the telecom sector is looking for new automated techniques facilitating a discovery of potential network vulnerabilities and rectification of them. In this paper, we propose an approach for identifying potential attack scenarios and defining recommendations for preventing them. The approach is formalised in the Event-B framework. It allows us to not only formalise the analysed part of the network architecture and verify consistency of the control and data flow of the associated services but also employ model checking to generate and analyse attack scenarios. By applying the proposed approach, the designers can systematically explore network vulnerabilities and propose recommendations for attack prevention.

Originalspråk	Odefinierat/okänt
Titel på värdpublikation	Formal Methods and Software Engineering 18th International Conference on Formal Engineering Methods, ICFEM 2016, Tokyo, Japan, November 14-18, 2016, Proceedings
Redaktörer	Kazuhiro Ogata, Mark Lawford, Shaoying Liu
Förlag	Springer
Sidor	141–158
ISBN (elektroniskt)	978-3-319-47846-3
ISBN (tryckt)	978-3-319-47845-6
DOI	https://doi.org/10.1007/978-3-319-47846-3_10
Status	Publicerad - 2016
MoE-publikationstyp	A4 Artikel i en konferenspublikation
Evenemang	International Conference on Formal Engineering Methods (ICFEM) - International Conference on Formal Engineering Methods -- ICFEM 2016 Varaktighet: 14 nov. 2016 → 18 nov. 2016

Konferens

Konferens	International Conference on Formal Engineering Methods (ICFEM)
Period	14/11/16 → 18/11/16

Åtkomst av dokument

10.1007/978-3-319-47846-3_10

Citera det här

Vistbakka, I., Troubitsyna, E., Laibinis, L., Oliver, I., & Holtmanns, S. (2016). A Formal Approach to Identifying Security Vulnerabilities in Telecommunication Networks. I K. Ogata, M. Lawford, & S. Liu (Red.), Formal Methods and Software Engineering 18th International Conference on Formal Engineering Methods, ICFEM 2016, Tokyo, Japan, November 14-18, 2016, Proceedings (s. 141–158). Springer. https://doi.org/10.1007/978-3-319-47846-3_10

Vistbakka, Inna ; Troubitsyna, Elena ; Laibinis, Linas et al. / A Formal Approach to Identifying Security Vulnerabilities in Telecommunication Networks. Formal Methods and Software Engineering 18th International Conference on Formal Engineering Methods, ICFEM 2016, Tokyo, Japan, November 14-18, 2016, Proceedings. redaktör / Kazuhiro Ogata ; Mark Lawford ; Shaoying Liu. Springer, 2016. s. 141–158

@inproceedings{d34dccde6afc4cbe8de4db8d124c420b,

title = "A Formal Approach to Identifying Security Vulnerabilities in Telecommunication Networks",

abstract = "The number of security attacks on the telecommunication networks is constantly increasing. To prevent them, the telecom sector is looking for new automated techniques facilitating a discovery of potential network vulnerabilities and rectification of them. In this paper, we propose an approach for identifying potential attack scenarios and defining recommendations for preventing them. The approach is formalised in the Event-B framework. It allows us to not only formalise the analysed part of the network architecture and verify consistency of the control and data flow of the associated services but also employ model checking to generate and analyse attack scenarios. By applying the proposed approach, the designers can systematically explore network vulnerabilities and propose recommendations for attack prevention.",

author = "Inna Vistbakka and Elena Troubitsyna and Linas Laibinis and Ian Oliver and Silke Holtmanns",

year = "2016",

doi = "10.1007/978-3-319-47846-3_10",

language = "Odefinierat/ok{\"a}nt",

isbn = "978-3-319-47845-6",

pages = "141–158",

editor = "Kazuhiro Ogata and Mark Lawford and Shaoying Liu",

booktitle = "Formal Methods and Software Engineering 18th International Conference on Formal Engineering Methods, ICFEM 2016, Tokyo, Japan, November 14-18, 2016, Proceedings",

publisher = "Springer",

note = "International Conference on Formal Engineering Methods (ICFEM) ; Conference date: 14-11-2016 Through 18-11-2016",

}

Vistbakka, I, Troubitsyna, E, Laibinis, L, Oliver, I & Holtmanns, S 2016, A Formal Approach to Identifying Security Vulnerabilities in Telecommunication Networks. i K Ogata, M Lawford & S Liu (red), Formal Methods and Software Engineering 18th International Conference on Formal Engineering Methods, ICFEM 2016, Tokyo, Japan, November 14-18, 2016, Proceedings. Springer, s. 141–158, International Conference on Formal Engineering Methods (ICFEM), 14/11/16. https://doi.org/10.1007/978-3-319-47846-3_10

A Formal Approach to Identifying Security Vulnerabilities in Telecommunication Networks. / Vistbakka, Inna; Troubitsyna, Elena; Laibinis, Linas et al.
Formal Methods and Software Engineering 18th International Conference on Formal Engineering Methods, ICFEM 2016, Tokyo, Japan, November 14-18, 2016, Proceedings. red. / Kazuhiro Ogata; Mark Lawford; Shaoying Liu. Springer, 2016. s. 141–158.

Forskningsoutput: Kapitel i bok/konferenshandling › Konferensbidrag › Vetenskaplig › Peer review

TY - GEN

T1 - A Formal Approach to Identifying Security Vulnerabilities in Telecommunication Networks

AU - Vistbakka, Inna

AU - Troubitsyna, Elena

AU - Laibinis, Linas

AU - Oliver, Ian

AU - Holtmanns, Silke

PY - 2016

Y1 - 2016

N2 - The number of security attacks on the telecommunication networks is constantly increasing. To prevent them, the telecom sector is looking for new automated techniques facilitating a discovery of potential network vulnerabilities and rectification of them. In this paper, we propose an approach for identifying potential attack scenarios and defining recommendations for preventing them. The approach is formalised in the Event-B framework. It allows us to not only formalise the analysed part of the network architecture and verify consistency of the control and data flow of the associated services but also employ model checking to generate and analyse attack scenarios. By applying the proposed approach, the designers can systematically explore network vulnerabilities and propose recommendations for attack prevention.

AB - The number of security attacks on the telecommunication networks is constantly increasing. To prevent them, the telecom sector is looking for new automated techniques facilitating a discovery of potential network vulnerabilities and rectification of them. In this paper, we propose an approach for identifying potential attack scenarios and defining recommendations for preventing them. The approach is formalised in the Event-B framework. It allows us to not only formalise the analysed part of the network architecture and verify consistency of the control and data flow of the associated services but also employ model checking to generate and analyse attack scenarios. By applying the proposed approach, the designers can systematically explore network vulnerabilities and propose recommendations for attack prevention.

U2 - 10.1007/978-3-319-47846-3_10

DO - 10.1007/978-3-319-47846-3_10

M3 - Konferensbidrag

SN - 978-3-319-47845-6

SP - 141

EP - 158

BT - Formal Methods and Software Engineering 18th International Conference on Formal Engineering Methods, ICFEM 2016, Tokyo, Japan, November 14-18, 2016, Proceedings

A2 - Ogata, Kazuhiro

A2 - Lawford, Mark

A2 - Liu, Shaoying

PB - Springer

T2 - International Conference on Formal Engineering Methods (ICFEM)

Y2 - 14 November 2016 through 18 November 2016

ER -

Vistbakka I, Troubitsyna E, Laibinis L, Oliver I, Holtmanns S. A Formal Approach to Identifying Security Vulnerabilities in Telecommunication Networks. I Ogata K, Lawford M, Liu S, redaktörer, Formal Methods and Software Engineering 18th International Conference on Formal Engineering Methods, ICFEM 2016, Tokyo, Japan, November 14-18, 2016, Proceedings. Springer. 2016. s. 141–158 doi: 10.1007/978-3-319-47846-3_10