基于 CC 的安全性规格形式化描述及验证方法

摘要/Abstract

摘要： 随着信息系统在社会生活中越来越重要，越来越必不可缺，人们对信息系统的安全性需求也不断地增加.不允许出现安全性漏洞的非常重要的信息系统，其安全性规格必须要使用形式化方法来描述且验证才是可靠的.介绍了在世界上首先提出的基于国际通用标准CC(ISO-NIEC15408)的安全性规格描述及验证方法.把国际通用标准CC中定义的功能元素作为信息安全性评价标准，用形式化规格描述语言Z和时序逻辑来进行形式化描述.另一方面，用UML把保护轮廓PP模式化，并在用Z形式化地描述了目标信息系统的安全性规格之后，采用定理证明方法和模型检测方法来对目标系统的安全性规格进行形式化验证.为了让只具备基础知识的验证者也能够轻松使用该方法，开发了其支援工具FORVEST.

关键词: 安全性规格, CC, Z, 时序逻辑, 形式化, 验证方法

Abstract: As information systems become more and more important and indispensable in social lives, the demands of people for the security of information systems are also increasing. For those important information systems that don't allow flaws, its security specification must be described and verified by formal methods. This paper introduces the security specification description and verification method we proposed first in the world based on the international commom standards CC (ISO-NIEC15408). Z notation and temporal logic are used to formalize the information security evaluation standard—the functional elements defined in the international standard CC. On the other hand, UML is used to model the protection profile formally, and after describing the security specification of the target information system by Z notation and temporal logic, theorem proving method and model checking method are used to verify the security specification of the target information system. In order to make the specification and verification easier for people that have poor professional knowledge, a support tool named FORVEST has been developed.

Key words: security specification, CC, Z notation, temporal logic, formalization, verification methods

闫靖晨. 基于 CC 的安全性规格形式化描述及验证方法[J]. 信息安全研究, 2017, 3(7): 617-623.

参考文献

［1］Common Criteria a Recognition Arrangement. Common Criteria for Information Technology Security Evaluation: Version 3.1 Revision 5［EBOL］. ［20170530］. http:www.commoncriteriaportal.orgcc［2］International Organization for Standardization. ISOIEC 154081: 2009, Information Technology Security Techniques Evaluation Criteria for IT Security Part 1: Introduction and General Model［S］. Geneva Switzerland: International Organization for Standardization, 2009［3］International Organization for Standardization. ISOIEC 154082: 2008, Information Technology Security Techniques Evaluation Criteria for IT Security Part 2: Security Functional Components［S］. Geneva Switzerland: International Organization for Standardization, 2008［4］International Organization for Standardization. ISOIEC 154083: 2008, Information Technology Security Techniques Evaluation Criteria for IT Security Part 3: Security Assurance Components［S］. Geneva Switzerland: International Organization for Standardization, 2008［5］Herrmann D.S. Using the Common Criteria for IT Security Evaluation［M］. New York: CRC Press, 2002［6］Morimoto S, Shigematsu S, Goto Y, et al. Formal verification of security specifications with common criteria［C］ Proc of the 22nd Annual ACM Symp on Applied Computing (SAC07). New York: ACM, 2007: 15061512［7］International Organization for Standardization. ISOIEC 13568 Standard. Information Technology—Z Formal Specification NotationSyntax, Type System and Semantics［S］. Geneva Switzerland: International Organization for Standardization, 2002［8］Potter B, Sinclair J, Till D. An Introduction to Formal Specification and Z［M］. 2nd ed. Englewood Cliffs, NJ: PrenticeHall, 1996［9］缪淮扣, 陈怡海. 软件形式规格说明语言——Z［M］. 北京: 清华大学出版社, 2012［10］Clarke E, Grumberg O, Peled D. Model Checking［M］. Cambridge: MIT Press, 2000［11］Lilius J, Paltor I. VUML: A tool for verifying UML models［C］ Proc of the 14th IEEE Int Conf on Automated Software Engineering (ASE99). Piscataway, NJ: IEEE, 1999: 255258［12］Jurjens J. UMLsec: Extending UML for secure systems development［C］ Proc of UML 2002. Berlin: Springer, 2002: 412425［13］Object Management Group. UML 2.0 Superstructure Specification［EBOL］. 2004 ［20170601］. http:www.omg.org#UML2.0［14］中国国家标准化管理委员会. GBT 18336.2—2015 信息技术—安全技术—信息技术安全评估准则第2部分：安全功能组件［S］. 北京：中国标准出版社， 2015［15］Gamma E, Helm R, Johnson R, et al. Design Patterns: Elements of Reusable Object Orientated Software［M］. Addison Wesley, 1998［16］Morimoto S, Shigematsu S, Goto Y, et al. Classification, formalization and verification of security functional requirements［G］ LNCS 4910: Proc of the 34th Conf on Current Trends in Theory and Practice of Computer Science. Berlin: Springer, 2008: 622633［17］Booch G, Maksimchuk R, Engel M, et al. ObjectOriented Analysis and Design with Applications［M］. 3rd ed. Reading, MA: Addison Wesley, 2004［18］Morimoto S, Cheng J. Modeling protection profiles by UML and their formal verification［J］. Transactions of IEICE, 2006, J89D(4): 726742［19］Bertot Y, Casteran P. Interactive Theorem Proving and Program Development［M］. Berlin: Springer, 2004［20］ORA Canada. ZEVES［EBOL］. ［20170601］. http:www.oracanada.comzeveswelcome.html［21］Cimatti A, Clarke E, Giunchiglia F, et al. NuSMV: A new symbolic model verifier［C］ Proc of the 11th Int Conf Computer Aided Verification (CAV99). Berlin: Springer, 1999: 495499［22］NuSMV［EBOL］. ［20170601］. http:nusmv.fbk.euit［23］Berard B, Bidoit M, Finkel A. Systems and Software Verification: ModelChecking Techniques and Tools［M］ Berlin: Springer, 1999［24］Morimoto S, Shigematsu S, Goto Y, et al. A security specification verification technique based on the international standard ISOIEC 15408［J］. JSSST, Computer Science, 2006, 23(3): 117133［25］Morimoto S, Shigematsu S, Goto Y, et al. A security specification verification technique based on the international standard ISOIEC 15408［C］ Proc of the 21st Annual ACM Symp on Applied Computing (SAC06). New York: ACM, 2006: 18021803［26］Yajima K, Morimoto S, Horie D, et al. FORVEST: A support tool for formal verification of security specifications with ISOIEC 15408［C］ Proc of the 4th Int Conf on Availability, Reliability and Security (ARES09). Los Alamitos, CA: IEEE Computer Society, 2009: 624629

[1]	王辉周忠锦王世晋史卓颖. 基于MLP深度学习算法的DGA准确识别技术研究[J]. 信息安全研究, 2019, 5(6): 495-499.
[2]	刘蓉于浩佳陈思远陈波. 基于APP分层结构的Android应用漏洞分类法[J]. 信息安全研究, 2018, 4(9): 792-798.
[3]	苏琪. 基于时间自动机的 CPS 安全建模和验证[J]. 信息安全研究, 2017, 3(7): 601-609.
[4]	宝达. 基于国际标准CC 和CEM 的计算机系统信息安全性评估认证支持平台[J]. 信息安全研究, 2017, 3(7): 638-646.
[5]	闫靖晨. 基于前推的密码协议形式化分析方法[J]. 信息安全研究, 2017, 3(5): 462-468.
[6]	聂友奇. 实用化量子随机数发生器研究进展[J]. 信息安全研究, 2017, 3(1): 86-90.
[7]	韩旭. 形式化工具Scyther优化与实例分析[J]. 信息安全研究, 2016, 2(3): 272-279.
[8]	胡凯. 智能合约的形式化验证方法[J]. 信息安全研究, 2016, 2(12): 1080-1089.