Formally Verified ZTA Requirements for OT/ICS Environments with Isabelle/HOL

Research output: Contribution to conferencePaper

Abstract

The clean energy transformation includes the integration of distributed energy resources with the power grid, which has led to a substantial increase in the complexity of power grids infrastructure and the underlying operational technology environment. Power grids infrastructure represents an operational technology environment that has become a system of systems, integrating heterogeneous devices which are both software-and hardware-intensive; as a result, there are increasing demands to exploit advances in the commodity of software-hardware infrastructures to improve energy systems requirements such as cybersecurity and resilience. In such a setting, system requirements at different levels mix, which leads to vulnerabilities and undesirable outcomes. The use of formal methods to characterize and prove system requirements removes ambiguity, increases automation, and provides high levels of assurance and reliability. In this paper, we contribute a methodology and a framework for the system-level verification of zero trust architecture requirements in operational technology environments. We define a formal specification for the core functionalities of operational technology environments, the corresponding invariants, and security proofs. Of particular note is our modular approach for the formal verification of asynchronous interactions in operational technology environments. The formal specification and the proofs have been mechanized using the interactive theorem proving environment Isabelle/HOL.
Original languageAmerican English
Pages64-84
Number of pages21
DOIs
StatePublished - 2024
Event15th International Conference on Verified Software: Theories, Tools, and Experiments - Ames, Iowa
Duration: 23 Oct 202324 Oct 2023

Conference

Conference15th International Conference on Verified Software: Theories, Tools, and Experiments
CityAmes, Iowa
Period23/10/2324/10/23

Bibliographical note

See NREL/CP-5R00-86154 for preprint

NREL Publication Number

  • NREL/CP-5R00-91015

Keywords

  • formal methods
  • Isabelle/HOL
  • microgrids
  • OT security

Fingerprint

Dive into the research topics of 'Formally Verified ZTA Requirements for OT/ICS Environments with Isabelle/HOL'. Together they form a unique fingerprint.

Cite this