Date: 20.01.2015
Location: Amsterdam, The Netherlands
Co-located with the HiPEAC Conference 2015
Workshop description
MILS* is a high-assurance security architecture based on the concepts of separation and controlled information flow. The MILS architectural approach is all about decomposition of system design into well-understood components and their interactions with the target to achieve composable security and composable assurance for the designed system.
The security and assurance composability is a grand challenge which we approach with MILS architectural approach.
Security composition targets defining a secure system from secure components and system architecture. The core of the composable security is a separation kernel (that has overlapping functionality with a hypervisor) that creates partitions to separate different security domains. Such a separation kernel often need to support real-time because there are many use-cases are in embedded systems.
Assurance composition targets creating assurance argument for the overall system from arguments of its components and system's security architecture. We selected Common Criteria to define such a composable assurance framework for MILS system. Amongst others, at the workshop a Protection Profile draft for a MILS separation kernel will be presented and discussed.
Workshop topics
The workshop topics are but not limited to:
|
|
Paper/Presentation submission
Submissions do not need to be full papers: this is workshop and we are looking for interesting experience, work, and ideas (possibly preliminary and exploratory) that will stimulate discussion and thought.
Submissions should be in PDF format between 3-12 pages.
We recommend the guidelines for ACM SIG Proceedings.
Electronic Submissions
The submissions page at Easychair is open:
https://easychair.org/conferences/?conf=mils15
Workshop Programme and Literature
| Time | Title | Slides | Paper |
|---|---|---|---|
| 10:00 | Welcome |  |
|
| 10:15 | EURO-MILS: Building and certifying modular secure systems, Sergey Tverdyshev, SYSGO | |
|
| 11:00 | Coffee break | ||
| 11:30 | Two Architecture Approaches for MILS Systems in Mobility Domains (Automobile, Railway and Avionik). Daniel Adam, Sergey Tverdyshev, Carsten Rolfes, Timo Sandmann | |
|
| 12:00 | ProvenCore: Towards a Verified Isolation Micro-Kernel. Stéphane Lescuyer | |
|
| 12:30 | Security Type Checking for MILS-AADL Specifications. Kevin van der Pol and Thomas Noll. | |
|
| 13:00 | Lunch | ||
| 14:00 | MILS Initiatives within The Open Group. Rance DeLong, TOG | |
|
| 14:45 | Security-Informed Safety Case Approach to Analysing MILS Systems. Kateryna Netkachova, Kevin Müller, Michael Paulitsch and Robin Bloomfield. | |
|
| 15:15 | Evaluation paradigm selection according to Common Criteria for an incremental product development. Sinnhofer Andreas Daniel, Raschke Wolfgang, Steger Christian, Kreiner Christian | |
|
| 15:30 | Coffee break | ||
| 16:00 | D-MILS: Specification, Analysis, Deployment, and Assurance of Distributed Critical Systems. Harald Ruess, fortiss, and Stefano Tonetta, Fondazione Bruno Kessler | |
|
| 16:45 | Partitioning in Safety and Security: Mapping to Separation Kernel Partitioning Mechanisms, Holger Blasum. | |
|
| 17:00 | Developing Assurance Cases for D-MILS Systems. Richard Hawkins, Tim Kelly and Ibrahim Habli | |
|
| 17:15 | Formal Methods for MILS: Formalisations of the GWV Firewall, Ruud Koolen and Julien Schmaltz | |
|
| 17:45 | Summary |
Important Dates
Position papers due: 27 November, 2014
Reviews/decisions: 19 December, 2014
Camera ready versions due: 11 January, 2015
MILS Workshop: 20 January, 2015
Organiser
Sergey Tverdyshev, SYSGO AG, Germany
sergey.tverdyshev(at)sysgo.com
FP7 EURO-MILS project
http://www.euromils.eu
Workshop committee
|
|
* Historically MILS stands for "Multiple Independent Levels of Security" and today is considered as a proper noun.
