@article{20507, author = {{Geismann, Johannes and Bodden, Eric}}, issn = {{0164-1212}}, journal = {{Journal of Systems and Software}}, pages = {{110697}}, title = {{{A systematic literature review of model-driven security engineering for cyber–physical systems}}}, doi = {{https://doi.org/10.1016/j.jss.2020.110697}}, volume = {{169}}, year = {{2020}}, } @inproceedings{23521, abstract = {{Faults in the realization and usage of cyber-physical systems can cause significant security issues. Attackers might exploit vulnerabilities in the physical configurations, control systems, or accessibility through internet connections. For CPS, two challenges are combined: Firstly, discipline-specific security measures should be applied. Secondly, new measures have to be created to cover interdisciplinary impacts. For instance, faulty software configurations in cyber-physical production systems (CPPS) might allow attackers to manipulate the correct control of production processes impacting the quality of end products. From liability and publicity perspective, a worst-case scenario is that such a corrupted product is delivered to a customer. In this context, security-oriented fault-tolerance in Systems Engineering (SE) requires measures to evaluate interdisciplinary system designs with regard to potential scenarios of attacks. The paper at hand contributes a conceptual threat modelling approach to cover potential attack scenarios. The approach can be used to derive both system-level and discipline-specific security solutions. As an application case, issues are focused on which attackers intend to exploit vulnerabilities in a CPPS. The goal is to support systems engineers in verification and validation tasks regarding security-oriented fault-tolerance.}}, author = {{Gräßler, Iris and Bodden, Eric and Pottebaum, Jens and Geismann, Johannes and Roesmann, Daniel}}, booktitle = {{Advanced, Contemporary Control, Advances in Intelligent Systems and Computing}}, pages = {{1458--1469}}, publisher = {{Springer International Publishing}}, title = {{{Security-Oriented Fault-Tolerance in Systems Engineering: A Conceptual Threat Modelling Approach for Cyber-Physical Production Systems}}}, volume = {{1196}}, year = {{2020}}, } @inproceedings{20549, author = {{Geismann, Johannes and Gerking, Christopher and Bodden, Eric}}, booktitle = {{International Conference on Software and System Processes (ICSSP)}}, keywords = {{ITSECWEBSITE}}, title = {{{Towards Ensuring Security by Design in Cyber-Physical Systems Engineering Processes}}}, year = {{2018}}, } @inproceedings{20784, author = {{Geismann, Johannes}}, booktitle = {{IEEE International Conference on Software Architecture Companion (ICSA-C 2018) }}, pages = {{41--42}}, publisher = {{IEEE}}, title = {{{Traceable Threat Modeling for Safety-critical Systems}}}, doi = {{10.1109/ICSA-C.2018.00017}}, year = {{2018}}, } @inproceedings{20785, abstract = {{Cyber-physical Systems are distributed, embedded systems that interact with their physical environment. Typically, these systems consist of several Electronic Control Units using multiple processing cores for the execution. Many systems are applied in safety-critical contexts and have to fulfill hard real-time requirements. The model-driven engineering paradigm enables system developers to consider all requirements in a systematical manner. In the software design phase, they prove the fulfillment of the requirements using model checking. When deploying the software to the executing platform, one important task is to ensure that the runtime scheduling does not violate the verified requirements by neglecting the model checking assumptions. Current model-driven approaches do not consider the problem of deriving feasible execution schedules for embedded multi-core platforms respecting hard real-time requirements. This paper extends the previous work on providing an approach for a semi-automatic synthesis of behavioral models into a deterministic real-time scheduling. We add an approach for the partitioning and mapping development tasks. This extended approach enables the utilization of parallel resources within a single ECU considering the verification assumptions by extending the open tool platform App4mc. We evaluate our approach using an example of a distributed automotive system with hard real-time requirements specified with the MechatronicUML method. }}, author = {{Geismann, Johannes and Höttger, Robert and Krawczyk, Lukas and Pohlmann, Uwe and Schmelter, David}}, booktitle = {{Model-Driven Engineering and Software Development}}, editor = {{Pires, Luís Ferreira and Hammoudi, Slimane and Selic, Bran}}, pages = {{72--93}}, publisher = {{Springer International Publishing}}, title = {{{Automated Synthesis of a Real-Time Scheduling for Cyber-Physical Multi-core Systems}}}, doi = {{10.1007/978-3-319-94764-8_4}}, volume = {{1}}, year = {{2018}}, } @inproceedings{20804, abstract = {{Modern Cyber-physical Systems are executed in physical environments and distributed over several Electronic Control Units using multiple cores for execution. These systems perform safety-critical tasks and, therefore, have to fulfill hard real-time requirements. To face these requirements systematically, system engineers de- velop these systems model-driven and prove the fulfillment of these requirements via model checking. It is important to ensure that the runtime scheduling does not violate the verified requirements by neglecting the model checking assumptions. Currently, there is a gap in the process for model-driven approaches to derive a feasible runtime scheduling that respects these assumptions. In this paper, we present an approach for a semi- automatic synthesis of behavioral models into a deterministic scheduling that respects real-time requirements at runtime. We evaluate our approach using an example of a distributed automotive system with hard real-time requirements specified with the MechatronicUML method.}}, author = {{Geismann, Johannes and Pohlmann, Uwe and Schmelter, David}}, booktitle = {{Proceedings of the 5th International Conference on Model-Driven Engineering and Software Development}}, title = {{{Towards an Automated Synthesis of a Real-time Scheduling for Cyber-physical Multi-core Systems}}}, year = {{2017}}, } @techreport{20832, author = {{Schäfer, Wilhelm and Dziwok, Stefan and Pohlmann, Uwe and Bobolz, Jan and Czech, Mike and Dann, Andreas Peter and Geismann, Johannes and Hüwe, Marcus and Krieger, Arthur and Piskachev, Goran and Schubert, David and Wohlrab, Rebekka}}, title = {{{Seminar Theses of the Project Group Cybertron}}}, year = {{2015}}, } @misc{20833, author = {{Geismann, Johannes}}, publisher = {{Universität Paderborn, Heinz Nixdorf Institut, Softwaretechnik}}, title = {{{Multi-Core Execution of Safety-Critical Component-Based Software}}}, year = {{2015}}, } @inproceedings{20831, abstract = {{Die Komplexität von mechatronischen Systemen wird stetig größer. MechatronicUML (MUML) ist eine Methode zur Entwicklung für Software von mechatronischen Systemen. Im Rahmen einer Bachelorarbeit wurde ein bestehender Quelltextgenerator für MUML-Modelle so erweitert, dass Quelltext für ein Echtzeitbetriebssystem generiert werden kann, welches auf einem LEGO Mindstorms-Roboter installiert ist.}}, author = {{Geismann, Johannes}}, booktitle = {{Berichtsband der Informatiktage 2013: Smarte Sichten, smarte Schichten}}, pages = {{71--74}}, publisher = {{Köllen Verlag}}, title = {{{Quelltextgenerierung für LEGO Mindstorms-Roboter}}}, volume = {{12}}, year = {{2013}}, }