Serenity, System Engineering for Security & Dependability
Information Society and MediaSixth Framework Programme
Forum
Newsletter Subscription Site Map Contact
Serenity Project -> State of the art review -> Runtime Support
New: Serenity Forum Initiative
Motivations & Objectives
An EU integrated project
State of the art review
Organization & Business
Workflow & Services
Network & Devices
Runtime Support
Serenity Partners
Activities and Public Deliverables
Serenity News
FAQ
Useful Links
Quick bibliography

Runtime Support

Overview of the trends and evolution in Runtime Support

Research into run-time security monitoring techniques has delivered techniques that monitor conditions related to security which are expressed in the form of security policies. Often these conditions are related to an infrastructure layer (e.g. network connections) and may fail to reflect application level and context specific security requirements. Existing techniques also monitor security conditions in isolation. As a consequence, they are unable to detect security breaches and threats which arise due to interactions between different functional and dependability system requirements and security requirements, or breaches and threats which arise due to violations of conditions that relate to non infrastructural system aspects (e.g. negligence at the level of system users).

The deliverable
The deliverable document "State of the art in Runtime Support", includes an analysis of the state of the art in monitoring breaches and threats to S&D requirements, solutions and satisfaction of context conditions at run-time, and existing mechanisms and approaches for reacting to such breaches and threats. The report identifies relevant open issues that will drive the subsequent research and development work in the activity.

Key findings :
Research into general run-time requirements monitoring has investigated :
  • ways of specifying requirements for monitoring and transforming them into events that can be monitored at run-time ;
  • the development of event-monitoring mechanisms ;
  • the development of mechanisms for generating system events that can be used in monitoring
  • the development of mechanisms for adapting systems in order to deal with deviations from requirements at run-time. Most of the existing techniques express requirements in some high level formal specification language and subsequently assume the refinement and mapping of these requirements onto patterns of events. The occurrence of those patterns would indicate their violation at run-time.
Research in run-time program verification has focused on the development of generic program monitoring platforms. The main limitations of existing approaches to general run-time requirements monitoring and security monitoring are related to the lack of support for :
  • the transformation of specifications of S&D requirements into event patterns that should be monitored at run-time
  • the diagnosis of the reasons underpinning run-time violations of S&D requirements that could inform system adaptation to ensure that violations will not re-occur
  • the expression of end-user personal and ephemeral S&D requirements, the automatic assessment of whether or not such requirements can be monitored at run-time, and the transformation of these requirements into monitorable patterns of run-time events.

To learn more about SERENITY, the consortium, its activities, to discuss with the partners and participate in this initiative : Forum Portal Website.
  
Motivations & Objectives - An EU integrated project - State of the art review - Serenity Partners - Activities and Public Deliverables - Serenity News - FAQ - Useful Links - Quick bibliography - Join us : Who ? Why ? - Press Room - Serenity Members Area - Serenity Partners Area - Site Map - Contact - Legal information