EURO-MILS 4Clogo-hipeac

 

Date: 19th of January, 2016

Location: Prague, Czech Republic
Co-located with the HiPEAC Conference 2016




Workshop description

MILS* is a high-assurance security architecture based on the concepts of separation and controlled information flow. The MILS architectural approach is all about decomposition of a system design into well-understood components and their interactions with the goal to achieve composable architecture and composable assurance for the designed system.

The composability of architecture and assurance for secure systems is a grand challenge, which we undertake to meet using the MILS architectural approach.

Architecture composition defines a secure system from trustworthy components and system architecture. The MILS framework for composable architecture is based on a separation kernel (which has overlapping functionality with a hypervisor) that creates partitions to separate different security domains. Such a separation kernel often needs to support real-time because there are many use-cases in embedded systems.

Assurance composition targets creating an assurance argument for the overall system from arguments of its components and the system’s security architecture. The workshop also welcomes contributions on the industrial application of the MILS architecture, assurance and certification frameworks, attack methods and templates for MILS systems, as well as presenting the MILS community.


Workshop topics

The workshop topics are but not limited to:

  • MILS architectural approach for security and safety
  • MILS components and eco-system
  • MILS systems and their relation to MILS systems
  • MILS use-cases, e.g. from avionics, automotive, communications, industrial automation, medical, railway, consumer and similar domains
  • Real-time separation kernels
  • MILS evaluation and certification
  • MILS testing and vulnerability analysis of MILS systems
  • Application of novel and existing information flow models/policies
  • Cross-European/world-wide high-assurance security
  • Formal methods for MILS system as base for high assurance


Paper/Presentation submission

Submissions do not need to be full papers: this is a workshop and we are looking for interesting experience, work, and ideas (possibly preliminary and exploratory) that will stimulate discussion and thought around MILS concepts and challenges.
Submissions should be in PDF format between 3-12 pages.
We recommend the guidelines for ACM SIG Proceedings.


Electronic Submissions

The submissions page at Easychair is open:
https://easychair.org/conferences/?conf=mils16

Workshop Programme

TimeTitleSlidesPaper
10:00 Welcome pdf  
10:15 EURO-MILS Results: MILS Architecture,  Certification, and Formal methods.
Sergey Tverdyshev
pdf  
11:00 Coffe break    
11:30 Asset-Centric Security Risk Assessment of Software Components.
Tobias Rauter, Andrea Höller, Johannes Iber and Christian Kreiner. 
pdf pdf
12:00 MILS Compliant Software Architecture for Satellites.
Hans Juergen Herpel. 
pdf pdf
12:30 An Architecture-Centric Process for MILS Development.
Julien Delange, Min-Yong Nam, Will Klieber and Peter Feiler. 
  pdf
13:00 Lunch    
14:00 Employing Distributed MILS in a Smart Grid setting -- challenges for analysis and verification
Holger Pfeifer
   
14:45 Content-Dependent Security Policies in Avionics.
Tomasz Maciazek, Hanne Riis Nielson and Flemming Nielson. 
pdf pdf
15:15 Security for Safety Problem in the Cyberphysical Systems.
Semen Kort and Ekaterina Rudina. (short paper)
pdf pdf
15:30 Coffe break    
16:00 Applying MILS to multicore avionics systems.
Paul Parkinson. 
pdf pdf
16:30 Modelling Information Routing with Noninterference.
Ruud Koolen and Julien Schmaltz.
pdf pdf
17:00 Non-Interfering Composed Evaluation.
Igor Furgel, Viola Saftig, Tobias Wagner, Kevin Müller, Reinhard Schwarz and Axel Söding-Freiherr von Blomberg.
pdf pdf
17:30 Summary    

 

Important Dates

Position papers due: 15 November, 2015
Reviews/decisions: 15 December, 2015
Camera ready versions due: 10 January, 2016
MILS Workshop: 19 January, 2016


Organiser

Sergey Tverdyshev, SYSGO AG, Germany

EURO-MILS 4Clogo-hipeac

 

Date: 19th of January, 2016

Location: Prague, Czech Republic
Co-located with the HiPEAC Conference 2016




Workshop description

MILS* is a high-assurance security architecture based on the concepts of separation and controlled information flow. The MILS architectural approach is all about decomposition of a system design into well-understood components and their interactions with the goal to achieve composable architecture and composable assurance for the designed system.

The composability of architecture and assurance for secure systems is a grand challenge, which we undertake to meet using the MILS architectural approach.

Architecture composition defines a secure system from trustworthy components and system architecture. The MILS framework for composable architecture is based on a separation kernel (which has overlapping functionality with a hypervisor) that creates partitions to separate different security domains. Such a separation kernel often needs to support real-time because there are many use-cases in embedded systems.

Assurance composition targets creating an assurance argument for the overall system from arguments of its components and the system’s security architecture. The workshop also welcomes contributions on the industrial application of the MILS architecture, assurance and certification frameworks, attack methods and templates for MILS systems, as well as presenting the MILS community.


Workshop topics

The workshop topics are but not limited to:

  • MILS architectural approach for security and safety
  • MILS components and eco-system
  • MILS systems and their relation to MILS systems
  • MILS use-cases, e.g. from avionics, automotive, communications, industrial automation, medical, railway, consumer and similar domains
  • Real-time separation kernels
  • MILS evaluation and certification
  • MILS testing and vulnerability analysis of MILS systems
  • Application of novel and existing information flow models/policies
  • Cross-European/world-wide high-assurance security
  • Formal methods for MILS system as base for high assurance


Paper/Presentation submission

Submissions do not need to be full papers: this is a workshop and we are looking for interesting experience, work, and ideas (possibly preliminary and exploratory) that will stimulate discussion and thought around MILS concepts and challenges.
Submissions should be in PDF format between 3-12 pages.
We recommend the guidelines for ACM SIG Proceedings.


Electronic Submissions

The submissions page at Easychair is open:
https://easychair.org/conferences/?conf=mils16

Workshop Programme

TimeTitleSlidesPaper
10:00 Welcome pdf  
10:15 EURO-MILS Results: MILS Architecture,  Certification, and Formal methods.
Sergey Tverdyshev
pdf  
11:00 Coffe break    
11:30 Asset-Centric Security Risk Assessment of Software Components.
Tobias Rauter, Andrea Höller, Johannes Iber and Christian Kreiner. 
pdf pdf
12:00 MILS Compliant Software Architecture for Satellites.
Hans Juergen Herpel. 
pdf pdf
12:30 An Architecture-Centric Process for MILS Development.
Julien Delange, Min-Yong Nam, Will Klieber and Peter Feiler. 
  pdf
13:00 Lunch    
14:00 Employing Distributed MILS in a Smart Grid setting -- challenges for analysis and verification
Holger Pfeifer
   
14:45 Content-Dependent Security Policies in Avionics.
Tomasz Maciazek, Hanne Riis Nielson and Flemming Nielson. 
pdf pdf
15:15 Security for Safety Problem in the Cyberphysical Systems.
Semen Kort and Ekaterina Rudina. (short paper)
pdf pdf
15:30 Coffe break    
16:00 Applying MILS to multicore avionics systems.
Paul Parkinson. 
pdf pdf
16:30 Modelling Information Routing with Noninterference.
Ruud Koolen and Julien Schmaltz.
pdf pdf
17:00 Non-Interfering Composed Evaluation.
Igor Furgel, Viola Saftig, Tobias Wagner, Kevin Müller, Reinhard Schwarz and Axel Söding-Freiherr von Blomberg.
pdf pdf
17:30 Summary    

 

Important Dates

Position papers due: 15 November, 2015
Reviews/decisions: 15 December, 2015
Camera ready versions due: 10 January, 2016
MILS Workshop: 19 January, 2016


Organiser

Sergey Tverdyshev, SYSGO AG, Germany
sergey.tverdyshev(at)sysgo.com

FP7 EURO-MILS project
http://www.euromils.eu

Workshop committee

Cristina Simache, Altran Sud Ouest, France
Reinhard Schwarz, Fraunhofer SIT, Germany
Pavel Dyakin, Kaspersky Lab, Russia
Igor Furgel, T-Systems, Germany
Kevin Müller, Airbus Group Innovations, Germany
Bertrand Leconte, Airbus Operations, France
Paul Chen, Wind River, USA
Michael Paulitsch, Thales, Austria
Christoph Krauß, Fraunhofer SIT, Germany
Sascha Wessel, Fraunhofer AISEC, Germany
Rance Delong, The Open Group, UK
Harald Rueß, Fortiss, Germany
Andreas Lindinger, Continental, Germany
Lionel Robin, SAGEM, France
Holger Blasum, SYSGO, Germany
Sergey Tverdyshev, SYSGO, Germany

 

* Historically MILS stands for "Multiple Independent Levels of Security" and today is considered as a proper noun.

 

 


Previous Events

sergey.tverdyshev(at)sysgo.com

FP7 EURO-MILS project
http://www.euromils.eu

Workshop committee

Cristina Simache, Altran Sud Ouest, France
Reinhard Schwarz, Fraunhofer SIT, Germany
Pavel Dyakin, Kaspersky Lab, Russia
Igor Furgel, T-Systems, Germany
Kevin Müller, Airbus Group Innovations, Germany
Bertrand Leconte, Airbus Operations, France
Paul Chen, Wind River, USA
Michael Paulitsch, Thales, Austria
Christoph Krauß, Fraunhofer SIT, Germany
Sascha Wessel, Fraunhofer AISEC, Germany
Rance Delong, The Open Group, UK
Harald Rueß, Fortiss, Germany
Andreas Lindinger, Continental, Germany
Lionel Robin, SAGEM, France
Holger Blasum, SYSGO, Germany
Sergey Tverdyshev, SYSGO, Germany

 

* Historically MILS stands for "Multiple Independent Levels of Security" and today is considered as a proper noun.

 

 


Previous Events