MILS workshop 2016

EURO-MILS 4Clogo-hipeac


Date: 19th of January, 2016

Location: Prague, Czech Republic
Co-located with the HiPEAC Conference 2016

Workshop description

MILS* is a high-assurance security architecture based on the concepts of separation and controlled information flow. The MILS architectural approach is all about decomposition of a system design into well-understood components and their interactions with the goal to achieve composable architecture and composable assurance for the designed system.

The composability of architecture and assurance for secure systems is a grand challenge, which we undertake to meet using the MILS architectural approach.

Architecture composition defines a secure system from trustworthy components and system architecture. The MILS framework for composable architecture is based on a separation kernel (which has overlapping functionality with a hypervisor) that creates partitions to separate different security domains. Such a separation kernel often needs to support real-time because there are many use-cases in embedded systems.

Assurance composition targets creating an assurance argument for the overall system from arguments of its components and the system’s security architecture. The workshop also welcomes contributions on the industrial application of the MILS architecture, assurance and certification frameworks, attack methods and templates for MILS systems, as well as presenting the MILS community.

Workshop topics

The workshop topics are but not limited to:

  • MILS architectural approach for security and safety
  • MILS components and eco-system
  • MILS systems and their relation to MILS systems
  • MILS use-cases, e.g. from avionics, automotive, communications, industrial automation, medical, railway, consumer and similar domains
  • Real-time separation kernels
  • MILS evaluation and certification
  • MILS testing and vulnerability analysis of MILS systems
  • Application of novel and existing information flow models/policies
  • Cross-European/world-wide high-assurance security
  • Formal methods for MILS system as base for high assurance

Paper/Presentation submission

Submissions do not need to be full papers: this is a workshop and we are looking for interesting experience, work, and ideas (possibly preliminary and exploratory) that will stimulate discussion and thought around MILS concepts and challenges.
Submissions should be in PDF format between 3-12 pages.
We recommend the guidelines for ACM SIG Proceedings.

Electronic Submissions

The submissions page at Easychair is open:

Workshop Programme

10:00 Welcome pdf  
10:15 EURO-MILS Results: MILS Architecture,  Certification, and Formal methods.
Sergey Tverdyshev
11:00 Coffee break    
11:30 Asset-Centric Security Risk Assessment of Software Components.
Tobias Rauter, Andrea Höller, Nermin Kajtazovic, Christian Kreiner. 
pdf pdf
12:00 MILS Compliant Software Architecture for Satellites.
Herpel H.J., Kerep M., Montano G., Eckstein K., Schön M., Krutak A. 
pdf pdf
12:30 An Architecture-Centric Process for MILS Development.
Julien Delange, Min-Yong Nam, Will Klieber and Peter Feiler. 
13:00 Lunch    
14:00 Employing Distributed MILS in a Smart Grid setting -- challenges for analysis and verification
Holger Pfeifer
14:45 Content-Dependent Security Policies in Avionics.
Tomasz Maciazek, Hanne Riis Nielson and Flemming Nielson. 
pdf pdf
15:15 Security for Safety Problem in the Cyberphysical Systems.
Semen Kort and Ekaterina Rudina. (short paper)
pdf pdf
15:30 Coffee break    
16:00 Applying MILS to multicore avionics systems.
Paul Parkinson. 
pdf pdf
16:30 Modelling Information Routing with Noninterference.
Ruud Koolen and Julien Schmaltz.
pdf pdf
17:00 Non-Interfering Composed Evaluation.
Igor Furgel, Viola Saftig, Tobias Wagner, Kevin Müller, Reinhard Schwarz and Axel Söding-Freiherr von Blomberg.
pdf pdf
17:30 Summary    


Important Dates

Position papers due: 15 November, 2015
Reviews/decisions: 15 December, 2015
Camera ready versions due: 10 January, 2016
MILS Workshop: 19 January, 2016


Sergey Tverdyshev, SYSGO AG, Germany


FP7 EURO-MILS project

Workshop committee

  • Cristina Simache, Altran Sud Ouest, France
  • Reinhard Schwarz, Fraunhofer SIT, Germany
  • Pavel Dyakin, Kaspersky Lab, Russia
  • Igor Furgel, T-Systems, Germany
  • Kevin Müller, Airbus Group Innovations, Germany
  • Bertrand Leconte, Airbus Operations, France
  • Paul Chen, Wind River, USA
  • Michael Paulitsch, Thales, Austria
  • Christoph Krauß, Fraunhofer SIT, Germany
  • Sascha Wessel, Fraunhofer AISEC, Germany
  • Rance Delong, The Open Group, UK
  • Harald Rueß, Fortiss, Germany
  • Andreas Lindinger, Continental, Germany
  • Lionel Robin, SAGEM, France
  • Holger Blasum, SYSGO, Germany
  • Sergey Tverdyshev, SYSGO, Germany


* Historically MILS stands for "Multiple Independent Levels of Security" and today is considered as a proper noun.



Previous Events