Your search keyword '"Salamah, Salamah"' showing total 10 results

1. A platform for evaluator-centric cybersecurity training and data acquisition

Author

Jaime C. Acosta, Alexander Fielder, Salamah Salamah, and Joshua McKee

Subjects

Emulation, business.product_category, Workstation, Computer science, business.industry, Data classification, 0402 animal and dairy science, 04 agricultural and veterinary sciences, 02 engineering and technology, computer.software_genre, 040201 dairy & animal science, law.invention, Disk formatting, Data acquisition, law, 020204 information systems, Laptop, Sandbox (computer security), Scalability, 0202 electrical engineering, electronic engineering, information engineering, Leverage (statistics), Plug-in, business, Software engineering, computer

Abstract

Empirical-based models for security technologies in the commercial and military domain, including those that focus on protection, detection, and broader risk analysis, leverage data captured from sensors on network-connected devices including gateways, routers, and host nodes. Lacking, however, are datasets that contain specific state observations and actions from the evaluator (red/blue teammer) workstation; we call this the inside-view. This is largely due to issues associated with data ownership, data classification, and the lack of integrated evaluator-centric data-collection mechanisms. To enable and promote creation of open datasets that capture the inside-view, we introduce a scalable platform that consists of two main elements. First, the emulation sandbox, or EmuBox, is an open-source and portable (i.e., it can execute on a laptop) solution for creating small-to medium-sized heterogeneous scenarios for evaluators to set up practice environments and competitions and to hone their skills. Second, the evaluatorcentric and extensible logger, ECEL, is a centralized management system that uses plugins for capturing and formatting evaluator data. We conclude the paper by providing a case study to demonstrate the setup and configuration of the platform along with a performance analysis.

Published

2017

2. An Analysis Platform for Execution-Based Model Generation

Author

Jaime C. Acosta and Salamah Salamah

Subjects

Emulation, Computer science, Distributed computing, Process (computing), Operating system, Algorithm design, Plug-in, Routing (electronic design automation), computer.software_genre, computer, Data modeling

Abstract

Generating models from binary execution outputscan result in efficient network system security analysis. Previouswork in execution-based model generation has shown success foranalyzing impacts of routing attacks, but requires a large amountof manual and expert-level intervention due to the lack of astructured analysis platform. In this document, we describe ourongoing work to build SEDAP, which is a plugin-based platformthat provides a flexible and efficient mechanism for the modelgeneration process. This platform consists of a web portal thatallows analysts to setup network scenarios, view resultant data, and execute analysis algorithms.

Published

2016

3. Towards Support for Software Model Checking: Improving the Efficiency of Formal Specifications

Author

Steve Roach, Salamah Salamah, Matthew Engskow, and Ann Q. Gates

Subjects

Model checking, Article Subject, Computer science, Programming language, Property (programming), Büchi automaton, 020207 software engineering, 0102 computer and information sciences, 02 engineering and technology, General Medicine, computer.software_genre, 01 natural sciences, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, Linear temporal logic, 010201 computation theory & mathematics, Software model checking, TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, Formal specification, 0202 electrical engineering, electronic engineering, information engineering, SPIN model checker, Software system, computer

Abstract

The Property Specification (Prospec) tool uses patterns and scopes defined by Dwyer et al., to generate formal specifications in Linear Temporal Logic (LTL) and other languages. The work presented in this paper provides improved LTL specifications for patterns and scopes over those originally provided by Prospec. This improvement comes in the efficiency of the LTL formulas as measured in terms of the number of states in the Büchi automaton generated for the formula. Minimizing the size of the Büchi automata for an LTL specification provides a significant improvement for model checking software systems using such tools as the highly acclaimed Spin model checker.

Published

2011

4. Using Pairwise Testing to Verify Automatically-Generated Formal Specifications

Author

Salamah Salamah, Yadira Jacquez, and Omar Ochoa

Subjects

Correctness, Theoretical computer science, Linear temporal logic, Computer science, Programming language, Formal specification, Functional testing, All-pairs testing, Design by contract, computer.software_genre, Formal methods, computer, Formal verification

Abstract

In this paper, we report on the effectiveness of the testing approach known as pairwise or orthogonal testing in verifying the correctness of the LTL specifications generated by the PROperty SPECification (Prospec) tool. This tool assists the user in generating a large number (over 34,000) of formal specifications in formal languages, including Linear Temporal Logic (LTL). Pairwise testing is a technique that aims at, significantly, reducing the amount of test cases required for testing a particular software system while providing assurance of adequate coverage of the problem space.

Published

2015

5. A comparative study of a tool-based approach for teaching formal specifications

Author

Ann Q. Gates, Omar Ochoa, and Salamah Salamah

Subjects

Model checking, business.industry, Programming language, Computer science, Specification language, Refinement, computer.software_genre, Grammar systems theory, Formal methods, Formal system, Software, Linear temporal logic, Formal specification, Component (UML), Dependability, Temporal logic, Software engineering, business, computer, Formal verification

Abstract

The use of formal methods in software engineering has been shown to be an effective way to improving the dependability of developed systems. The difficulty of writing, reading, and understanding formal specifications, which is an essential component of formal verification, remains one of the main obstacles in the adoption of formal methods in industry. It is, thus, essential that undergraduate students in computing programs learn how to specify formal system properties. This paper outlines an instructive component that uses a tool to support the teaching of formal approaches and languages, and it presents educational outcomes from using such a component in undergraduate courses. The component uses a model checking-based tool LTLV to teach Linear Temporal Logic (LTL), a well-known specification language. In addition, this paper describes two experiments that compare the effectiveness of the new approach to that of the traditional lecture-based approach. The results of the experiments show promise that the tool-based approach can be effective in teaching formal specifications. The paper provides analysis of the results of the studies, as well as lessons learned from the experiments.

Published

2010

6. Improving Pattern-Based LTL Formulas for Automata Model Checking

Author

Ann Q. Gates, Salamah Salamah, and Steve Roach

Subjects

Model checking, Theoretical computer science, Computer science, Programming language, Büchi automaton, computer.software_genre, Automaton, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, Linear temporal logic, TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, Formal specification, Temporal logic, Software system, computer, Scope (computer science)

Abstract

The Property Specification (Prospec) tool uses patterns and scopes defined by Dwyer et. al., to generate formal specifications in linear temporal logic (LTL) and other languages. The work presented in this paper provides improved LTL specifications for patterns and scopes over those originally provided by Prospec. This improvement comes in the efficiency of the LTL formulas as measured in terms of the number of states in the Buchi automaton generated for the formula. Minimizing the size of the Buchi automata for an LTL specification provides a significant support to the area of model checking.

Published

2008

7. A Technique for Using Model Checkers to Teach Formal Specifications

Author

Ann Q. Gates and Salamah Salamah

Subjects

Model checking, Computer science, business.industry, Programming language, Runtime verification, Specification language, computer.software_genre, Formal methods, Linear temporal logic, Formal specification, SPIN model checker, Software engineering, business, Formal verification, computer

Abstract

The difficulty of writing, reading, and understanding formal specifications is one of the main obstacles in adopting formal verification techniques such as model checking and runtime verification. Introducing concepts in formal methods in an undergraduate program is essential for training a workforce that can develop and test high-assurance systems. This paper presents educational outcomes and outlines an instructive component that can be used in an undergraduate course to teach formal approaches and languages. The component uses a model checker and a specification tool to teach Linear Temporal Logic (LTL), a specification language that is widely used in a variety of verification tools. The paper also introduces a novel technique that analyzes LTL specifications by using the SPIN model checker to elucidate the behaviors accepted by the specifications.

Published

2008

8. Using Patterns and Composite Propositions to Automate the Generation of LTL Specifications

Author

Ann Q. Gates, Vladik Kreinovich, Salamah Salamah, and Steve Roach

Subjects

Linear temporal logic, Scope (project management), Property (programming), Programming language, Computer science, Formal specification, Formal language, Type (model theory), computer.software_genre, Specification pattern, computer, Formal verification

Abstract

Property classifications and patterns, i.e., high-level abstractions that describe common behavior, have been used to assist practitioners in generating formal specifications that can be used in formal verification techniques. The Specification Pattern System (SPS) provides descriptions of a collection of patterns. Each pattern is associated with a scope that defines the extent of program execution over which a property pattern is considered. Based on a selected pattern, SPS provides a specification for each type of scope in multiple formal languages including Linear Temporal Logic (LTL). The (Prospec) tool extends SPS by introducing the notion of Composite Propositions (CP), which are classifications for defining sequential and concurrent behavior to represent pattern and scope parameters. In this work, we provide definitions of patterns and scopes when defined using CP classes. In addition, we provide general (template) LTL formulas that can be used to generate LTL specifications for all combinations of pattern, scope, and CP classes.

Published

2007

9. Author Index

Author

Ann Q. Gates, Steve Roach, Vladik Kreinovich, and Salamah Salamah

Subjects

Correctness, Scope (project management), Linear temporal logic, Computer science, Property (programming), Programming language, Formal specification, Temporal logic, computer.software_genre, Formal verification, computer, Specification pattern

Abstract

The use of property classifications and patterns, i.e., high-level abstractions that describe common behavior, have been shown to assist practitioners in generating formal specifications that can be used in formal verification techniques. The specification pattern system (SPS) provides descriptions of a collection of patterns. The extent of program execution over which a pattern must hold is described by the notion of scope. SPS provides a manual technique for obtaining formal specifications from a pattern and a scope. The property specification tool (Prospec) extends SPS by introducing composite propositions (CPs), a classification for defining sequential and concurrent behavior to represent pattern and scope parameters, and provides a tool to support users. This work provides general templates for generating formal specifications in linear temporal logic (LTL) for all pattern, scope, and CP combinations. In addition, the work explains the methodology for the verification of the correctness of these templates.

Published

2007

10. Verifying Pattern-Generated LTL Formulas: A Case Study

Author

Ann Q. Gates, Oscar Mondragon, Salamah Salamah, and Steve Roach

Subjects

Model checking, Computer science, Programming language, Computer Science::Software Engineering, computer.software_genre, Specification pattern, Linear logic, Boolean algebra, symbols.namesake, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, Linear temporal logic, Promela, Computer Science::Logic in Computer Science, Formal specification, symbols, SPIN model checker, Temporal logic, computer, Algorithm, Equivalence class, Equivalence partitioning, computer.programming_language

Abstract

The Specification Pattern System (SPS) and the Property Specification (Prospec) tool assist a user in generating formal specifications in Linear Temporal Logic (LTL), as well as other languages, from property patterns and scopes. Patterns are high-level abstractions that provide descriptions of common properties, and scopes describe the extent of program execution over which the property holds. The purpose of the work presented in this paper is to verify that the generated LTL formulas match the natural language descriptions, timelines, and traces of computation that describe the pattern and scope. The LTL formulas were verified using the Spin model checker on test cases developed using boundary value analysis and equivalence class testing strategies. A test case is an LTL formula and a sequence of Boolean valuations. The LTL formulas were those generated from SPS and Prospec. The Boolean valuations of propositions in the LTL formula are generated by a deterministic, single-threaded Promela program that was run using the software model-checker Spin. For each pattern, a suite of test cases was. The experiments uncovered several errors in both the SPS-generated and the Prospec-generated formulas.

Published

2005