Presentation is loading. Please wait.

Presentation is loading. Please wait.

WP3: D3.1 status, pending comments and next steps

Published byFelicity Wells Modified over 6 years ago

Similar presentations

Presentation on theme: "WP3: D3.1 status, pending comments and next steps"— Presentation transcript:

1 WP3: D3.1 status, pending comments and next steps
Leonardo Montecchi Resilient Computing Lab

2 Outline Status overview ToC Major comments Next steps

3 D3.1: status overview Title: Three main chapters:
Modeling and Evaluation: State-of-the-art Three main chapters: Model-based approaches Experimental measurement approaches Works combining different evaluation approaches Partners involved: ALL but UniRM All the expected contributions have been provided. NOTE: Some of them appears to be out of the scope of the deliverable (see the major comments) Still to be completed (by UniFI): Executive summary + Conclusions

4 ToC (version v06) – 1/3 Executive Summary 6 1. Introduction (UniFI) 7
2. Model-based approaches (UniFI) 8 2.1 Formalisms for modelling dependability 8 2.1.1 Combinatorial models 8 2.1.2 State-based models 9 2.2 Model construction and solution approaches 10 2.2.1 Compositional approaches 10 2.2.2 Decomposition and aggregation approaches 12 2.3 Dependability modeling and solution tools 14 2.4 Deriving dependability models from engineering models 15

5 ToC (version v06) – 2/3 3. Experimental measurement approaches (UniMORE) 18 3.1 SCADA-based LCCIs (UniPARTHENOPE) 18 3.1.1 Metrics (UniPARTHENOPE+UniMORE) 18 Security Metrics 19 Quality of a Metric 19 Security Metric Domains 21 Dependability Metrics 21 3.1.2 Dependability and Security Benchmarking of SCADA based LCCIs (UniPARTHENOPE) 25 3.1.3 Data filtering and analysis (UniMORE) 28 3.1.4 Anomaly detection (UniMORE) 34 3.2 Systems for LCCI security (UniMORE) 44 3.2.1 Protocol vulnerability (UniPARTHENOPE) 45 3.2.2 Intrusion Detection Systems for LCCIs (UniMORE) 55 3.3 Field Failure Data Analysis (FFDA) (UniNA) 59 3.4 On line Monitoring (UniNA) 62 3.5 Fault Injection (UniNA) 65

6 ToC (version v06) – 3/3 4. Works combining different evaluation approaches (UniFI) 70 4.1 Relationships between modeling and experimentation 70 4.2 Works combining modeling and simulation 71 4.3 An holistic evaluation framework 72 5. Conclusions (UniFI) 75

7 Major comments to be discussed - 1
Positioning of Section (“Metrics”) -UniPARTHENOPE+UniMORE. Comments: Section defines the possible objectives of the analyses, i.e., the dependability and security metrics to be evaluated. It is something shared between all the evaluation approaches, not only related to experimental measurement approaches. The last page of subsection (“Dependability Metrics”) describes one specific work ([Romano 1999]): why only this work and not a survey? And why this discussion has been inserted in the dependability metrics section? Proposed action: Move section at the beginning of the deliverable as a stand-alone chapter, or as a section within chapter 1. Find the right place where [Romano 1999] can be discussed, possibly adding other works as required for a state-of-the-art.

8 Major comments to be discussed – 2
Content of Section (“Dependability and Security Benchmarking of SCADA based LCCIs”) – UniPARTHENOPE. Comment: The section provides an overview of DBench, but it is not clear what are the specificities of DBench with respect to SCADA based LCCIs. The section’s title suggests a s-o-t-a on dependability and security benchmarking, not just the description of DBench. It is not clear how the subsections “Static code review”, “dynamic vulnerability analysis” and “vulnerability scanners” are related to the main benchmark section they belong to. The content of subsections “static code review” and “vulnerability scanners” seems to be out of the scope of the deliverable. Proposed actions: Complete the section adding works dealing with dependability and security benchmarking analysis for LCCIs. Clarify the links between the subsections and the main section. Move to “D2.1 Diagnosis and reconfiguration: state-of-the-art”? or revise the two sections that seem to be outside the scope of D3.1.

9 Major comments to be discussed – 3
Content of Section (“Protocol vulnerability”) – UniPARTHENOPE. Comment: The whole section appears to be outside the scope of the deliverable. D3.1 should be a survey on modeling and evaluation aspects the section first presents a set of protocols for SCADA systems and then lists the related vulnerabilities and weaknesses. Proposed action: Move the section to “D2.1 Diagnosis and reconfiguration: state-of-the-art”? or rewrite it, e.g. describing the modeling and evaluation techniques used to identify the protocol vulnerabilities and weaknesses.

10 Major comments to be discussed – 4
Content of Section (“Intrusion detection systems for LCCIs”) – UniMORE. Comment: Some works surveyed within this section actually deal with evaluation techniques used for intrusion detection, while others are more focused on the systems that use such techniques. This second set of works appears to be outside the scope of the deliverable. Proposed actions: Remove from the section the works focusing on the system definition (possibly moving it to “D1.2 Architectures, algorithms and middleware”?). In general, review the section to better fit the scope of the deliverable. Change the section’s title e.g. “Evaluation methods for Intrusion detection in LCCIs”.

11 Major comments to be discussed – 5
Works combining different modeling formalisms Comment: A section that explicitly surveys the works combining different modeling formalisms is currently missing, but it is an important topic. Proposed action: Insert a new section within Chapter 4 e.g. titled “Approaches combining different modeling formalisms”, which should also include the contribution by UniNA currently inserted at the end of section 4.3 (holistic evaluation approaches). The title of Chapter 4 should change as well, like “Works combining different modeling formalisms and evaluation approaches”

12 Next steps (to be agreed)
Feb 28: ALL the partners send the agreed modifications; Mar 2: UniFI distributes a new version of D3.1 for last check and (minor) modifications; Finalizing exec summary & conclusions; Addressing minor (typo and editorial) comments; Emphasizing in the doc the (minor) pending issues still to be addressed by the partners; March 9: Partners send final (minor) modifications March 11: UniFI distributes the final version of D3.1

13 Thank you for your attention!

Download ppt "WP3: D3.1 status, pending comments and next steps"

Similar presentations

EAP Channel Bindings Charles Clancy Katrin Hoeper IETF 76 Hiroshima, Japan November 08-13, 2009.

EAP Channel Bindings Charles Clancy Katrin Hoeper IETF 76 Hiroshima, Japan November 08-13, 2009.
Chapter 4 Quality Assurance in Context

Chapter 4 Quality Assurance in Context
Working on a Mini-Project Anders P. Ravn/Arne Skou Computer Science Aalborg University February 2011.

Working on a Mini-Project Anders P. Ravn/Arne Skou Computer Science Aalborg University February 2011.
Virtual Workbenches Richard Anthony Dept. Computer Science University of Greenwich Distributed Systems Operating Systems Networking.

Virtual Workbenches Richard Anthony Dept. Computer Science University of Greenwich Distributed Systems Operating Systems Networking.
1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.

1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.
Technical Writing II Acknowledgement: –This lecture notes are based on many on-line documents. –I would like to thank these authors who make the documents.

Technical Writing II Acknowledgement: –This lecture notes are based on many on-line documents. –I would like to thank these authors who make the documents.
© Copyright Eliyahu Brutman Programming Techniques Course.

© Copyright Eliyahu Brutman Programming Techniques Course.
TERM PROJECT The Project usually consists of the following: Title

TERM PROJECT The Project usually consists of the following: Title
Slide #1 Writing Winning Proposals. Slide #2 Agenda  Overview  Writing Tips  Comments, Suggestions, Questions  Upcoming Seminars.

Slide #1 Writing Winning Proposals. Slide #2 Agenda  Overview  Writing Tips  Comments, Suggestions, Questions  Upcoming Seminars.
Greenbench: A Benchmark for Observing Power Grid Vulnerability Under Data-Centric Threats Mingkui Wei, Wenye Wang Department of Electrical and Computer.

Greenbench: A Benchmark for Observing Power Grid Vulnerability Under Data-Centric Threats Mingkui Wei, Wenye Wang Department of Electrical and Computer.
CH07: Writing the Programs Does not teach you how to program, but point out some software engineering practices that you should should keep in mind as.

CH07: Writing the Programs Does not teach you how to program, but point out some software engineering practices that you should should keep in mind as.
© Siemens AG, CT SE 1, Dr. A. Ulrich 09.09.2015 C O R P O R A T E T E C H N O L O G Y Research at Siemens CT SE Software & Engineering Development Techniques.

© Siemens AG, CT SE 1, Dr. A. Ulrich C O R P O R A T E T E C H N O L O G Y Research at Siemens CT SE Software & Engineering Development Techniques.
Copyright © The Open Group 2011 Your Name Your title 44 Montgomery Street Suite 960 San Francisco, CA 94104 USA Tel +1 415 374 8280.

Copyright © The Open Group 2011 Your Name Your title 44 Montgomery Street Suite 960 San Francisco, CA USA Tel
Mantychore Oct 2010 WP 7 Andrew Mackarel. Agenda 1. Scope of the WP 2. Mm distribution 3. The WP plan 4. Objectives 5. Deliverables 6. Deadlines 7. Partners.

Mantychore Oct 2010 WP 7 Andrew Mackarel. Agenda 1. Scope of the WP 2. Mm distribution 3. The WP plan 4. Objectives 5. Deliverables 6. Deadlines 7. Partners.
11 Writing a Conference Research Paper Miguel A. Labrador Department of Computer Science & Engineering

11 Writing a Conference Research Paper Miguel A. Labrador Department of Computer Science & Engineering
A Taxonomy of Evaluation Approaches in Software Engineering A. Chatzigeorgiou, T. Chaikalis, G. Paschalidou, N. Vesyropoulos, C. K. Georgiadis, E. Stiakakis.

A Taxonomy of Evaluation Approaches in Software Engineering A. Chatzigeorgiou, T. Chaikalis, G. Paschalidou, N. Vesyropoulos, C. K. Georgiadis, E. Stiakakis.
Academic Essays & Report Writing

Academic Essays & Report Writing
1 National Research Council - Pisa - Italy Marco Conti Italian National Research Council (CNR) IIT Institute Executive board meeting 2nd MobileMAN Workshop.

1 National Research Council - Pisa - Italy Marco Conti Italian National Research Council (CNR) IIT Institute Executive board meeting 2nd MobileMAN Workshop.
Odyssey A Reuse Environment based on Domain Models Prepared By: Mahmud Gabareen Eliad Cohen.

Odyssey A Reuse Environment based on Domain Models Prepared By: Mahmud Gabareen Eliad Cohen.
DEVELOPING A DYNAMIC THESIS. The thesis statement Is a single assertive sentence in the essay. Contains the writer’s position on the topic. The main IDEA.

DEVELOPING A DYNAMIC THESIS. The thesis statement Is a single assertive sentence in the essay. Contains the writer’s position on the topic. The main IDEA.

Similar presentations

Ads by Google