• Video
  • 22-May-2012 02:16 EDT

Building Security In: The SPARK Approach to Software Development

00:21:26
Length:

Purchase Required to View Video

Short Preview Below

Software products in the automotive industry are by nature widely distributed and costly to update (recall), so high reliability is clearly of utmost importance. Just as clearly, the increasing reliance on remote access to such systems, for diagnostic and other purposes, has made security an essential requirement, and traditional techniques for software development are proving to be inadequate in dealing with these issues. Correctness by Construction is a software design and development methodology that builds reliability and security into the system from the start. It can be used to demonstrate, with mathematical rigor, a program's correctness properties while reducing the time spent during testing and debugging. This paper will discuss the use of Correctness by Construction, and its accompanying SPARK language technology, to improve automotive systems' security and reliability. (The approach can also account for safely issues, although that is not the focus of this paper.) The SPARK language and toolset avoid vulnerabilities found in other languages and can, for instance, guarantee the absence of run-time errors such as divide-by-zero or buffer overflow. Using the SPARK language and toolset, developers can verify secure information flow through the system and, more generally, demonstrate that security-related properties are achieved. The approach offered by Correctness by Construction and SPARK is in contrast with the use of so-called retrospective static analysis tools that attempt to find errors or vulnerabilities in existing code. Such tools can only demonstrate the presence of errors (which may be correctable) but cannot show how many errors remain in the system. With Correctness by Construction and SPARK, developers can ensure that errors and vulnerabilities are not introduced in the first place. Correctness by Construction and SPARK have a growing success rate in applications where failure is not tolerated and where demanding safely or security standards must be met. The technology has been adopted in safety-critical domains including avionics, air traffic control, and rail transportation, and likewise in systems that must meet the highest security levels defined in the Common Criteria (Evaluation Assurance Levels (EAL) 4 through 7). This paper discusses how to apply Correctness by Construction and the SPARK technology to improve the reliability and security of automotive systems while reducing the costs of development, debugging, and maintenance. It includes examples of previous high-security systems that have been developed using this approach and discusses the applicability of the techniques to automotive systems.

Presenter
Stuart Matthews

Buy
Select
Price
List
Purchase to View
$19.00
Learn More
Technical Paper / Journal Article
2012-04-16
TECH PPR 2012 CONG
Share
HTML for Linking to Page
Page URL
Grade
Rate It
No ratings yet

View More Video

Video
2012-03-21
In any new aircraft development program there are many important design decisions that determine profitability potential. The key to making new aircraft profitable is to design features that will command more money than the cost to provide them within the market's ability to absorb them. The business model in this paper shows how to predict or find: 1) the costs to provide various aircraft features; 2) the values that aircraft buyers place on these features; 3) the amount of money that buyers have to commit to them, 4) the open spaces in the market in which to place new designs and 5) the predicted profits from new designs. In this process, this paper extends previous work on the law of value and demand, which states that attributes determine value; value determines price; and that price determines demand. This four-dimensional, non-negative system hosts a business model that describes the features needed to enable aircraft designs to go from concepts to profitable assembly lines.
Video
2012-02-17
This session covers topics regarding new CI and SI engines and components. This includes analytical, experimental, and computational studies covering hardware development as well as design and analysis techniques. Presenter Sung Hoon Lee, Hyundai Motor Co.
Video
2012-03-21
The Java language is now the most popular programming language for the creation of new software capabilities. Its popularity has resulted in signficant economies of scale, with Java adopted as the primary language of instructional within many university curriculums, an abundance of reusable Java software components and Java software development tools available both from commercial suppliers and as open source technology, a large pool of competent Java developers from which to recruit staff, and a general willingness by senior staff software engineers to invest the effort required to learn this new programming language and technology. This talk describes the special approaches recommended for the use of Java in safety-critical deployments. The talk surveys the current state of the draft JSR-302 Safety Critical Java Specification and describes related experiences with commercially available technologies based on the constraints of early JSR-302 design discussions.
Video
2013-08-21
The Iowa State FSAE team talks to us about their vehicle at the 2013 Lincoln, Nebraska competition.

Related Items

Technical Paper / Journal Article
2003-10-19
Technical Paper / Journal Article
2003-10-27
Technical Paper / Journal Article
2003-10-27
Training / Education
2016-03-07