Cybersecurity in a Devops Environment: From Requirements to Monitoring

This book provides an overview of software security analysis in a DevOps cycle including requirements formalisation, verification and continuous monitoring. It presents an overview of the latest techniques and tools that help engineers and developers verify the security requirements of large-scale industrial systems and explains novel methods that enable a faster feedback loop for verifying security-related activities, which rely on techniques such as automated testing, model checking, static analysis, runtime monitoring, and formal methods.

The book consists of three parts, each covering a different aspect of security engineering in the DevOps context. The first part, "Security Requirements", explains how to specify and analyse security issues in a formal way. The second part, "Prevention at Development Time", offers a practical and industrial perspective on how to design, develop and verify secure applications. The third part, "Protection at Operations", eventually introduces tools for continuous monitoring of security events and incidents. Overall, it covers several advanced topics related to security verification, such as optimizing security verification activities, automatically creating verifiable specifications from security requirements and vulnerabilities, and using these security specifications to verify security properties against design specifications and generate artifacts such as tests or monitors that can be used later in the DevOps process.

The book aims at computer engineers in general and does not require specific knowledge. In particular, it is intended for software architects, developers, testers, security professionals, and tool providers, who want to define, build, test, and verify secure applications, Web services, and industrial systems.

Part I: Security Requirements Engineering

1 Taxonomy of Vulnerabilities, Attacks, and Security Solutions in Industrial PLCs

Eduard Paul Enoiu, Kejsi Biçoku, Cristina Seceleanu, and Michael Felderer

2 Natural Language Processing with Machine Learning for Security Requirements Analysis: Practical Approaches

Andrey Sadovykh, Kirill Yakovlev, Alexandr Naumchev, and Vladimir Ivanov

3 Security Requirements Formalization with RQCODE

Andrey Sadovykh, Nan Messe, Ildar Nigmatullin, Sophie Ebersold, Maria Naumcheva, and Jean-Michel Bruel

Part II: Prevention at Development Time

4 Vulnerability Detection and Response: Current Status and New Approaches

Ángel Longueira-Romero, Rosa Iglesias, Jose Luis Flores, and Iñaki Garitano

5 Metamorphic Testing for Verification and Fault Localization in Industrial Control Systems

Gaadha Sudheerbabu, Tanwir Ahmad, Dragos Truscan, and Jüri Vain

6 Interactive Application Security Testing with Hybrid Fuzzing and Statistical Estimators

Ramon Barakat, Jasper von Blanckenburg, Roman Kraus, Fabian Jezuita, Steffen Lüdtke, and Martin A. Schneider

Part III: Protection at Operations

7 CTAM: A Tool for Continuous Threat Analysis and Management

Laurens Sion, Dimitri Van Landuyt, Koen Yskout, Stef Verreydt, and Wouter Joosen

8 EARLY: A Tool for Real-Time Security Attack Detection

Tanwir Ahmad, Dragos Truscan, and Jüri Vain

9 A Stream-Based Approach to Intrusion Detection

Sylvain Hallé

10 Toward Anomaly Detection Using Explainable AI

Manh-Dung Nguyen, Vinh-Hoa La, Wissam Mallouli, Ana Rosa Cavalli, and Edgardo Montes de Oca

本書提供了在DevOps週期中進行軟體安全分析的概述，包括需求形式化、驗證和持續監控。它概述了最新的技術和工具，幫助工程師和開發人員驗證大型工業系統的安全需求，並解釋了能夠實現更快反饋迴圈的新方法，這些方法依賴於自動化測試、模型檢查、靜態分析、運行時監控和形式化方法等技術。

本書分為三個部分，每個部分涵蓋DevOps環境中安全工程的不同方面。第一部分「安全需求」解釋了如何以正式方式指定和分析安全問題。第二部分「開發時的預防」提供了關於如何設計、開發和驗證安全應用程式的實用和工業觀點。第三部分「運營中的保護」介紹了持續監控安全事件和事故的工具。整體而言，它涵蓋了與安全驗證相關的幾個高級主題，例如優化安全驗證活動、從安全需求和漏洞自動創建可驗證的規範，以及使用這些安全規範對設計規範進行安全屬性驗證並生成測試或監控等工具，以供後續的DevOps流程使用。

本書的目標是面向計算機工程師，不需要特定的知識。特別是針對軟體架構師、開發人員、測試人員、安全專業人員和工具提供者，他們希望定義、構建、測試和驗證安全應用程式、Web服務和工業系統。

第一部分：安全需求工程
1. 工業PLC中漏洞、攻擊和安全解決方案的分類
Eduard Paul Enoiu, Kejsi Biçoku, Cristina Seceleanu和Michael Felderer
2. 機器學習的自然語言處理在安全需求分析中的應用：實用方法
Andrey Sadovykh, Kirill Yakovlev, Alexandr Naumchev和Vladimir Ivanov
3. 使用RQCODE進行安全需求形式化
Andrey Sadovykh, Nan Messe, Ildar Nigmatullin, Sophie Ebersold, Maria Naumcheva和Jean-Michel Bruel

第二部分：開發時的預防
4. 漏洞檢測和響應：現狀和新方法
Ángel Longueira-Romero, Rosa Iglesias, Jose Luis Flores和Iñaki Garitano
5. 工業控制系統中的變態測試用於驗證和故障定位
Gaadha Sudheerbabu, Tanwir Ahmad, Dragos Truscan和Jüri Vain
6. 混合模糊測試和統計估計的交互式應用程式安全測試
Ramon Barakat, Jasper von Blanckenburg, Roman Kraus, Fabian Jezuita, Steffen Lüdtke和Martin A. Schneider

第三部分：運營中的保護
7. CTAM：持續威脅分析和管理工具
Laurens Sion, Dimitri Van Landuyt, Koen Yskout, Stef Verreydt和Wouter Joosen
8. EARLY：實時安全攻擊檢測工具
Tanwir Ahmad, Dragos Truscan和Jüri Vain
9. 基於流的入侵檢測方法
Sylvain Hallé
10. 使用可解釋人工智能進行異常檢測
Manh-Dung Nguyen, Vinh-Hoa La, Wissam Mallouli, Ana Rosa Cavalli和Edgardo Montes de Oca

Andrey Sadovykh is a senior researcher at Softeam/DocaPoste, part of the French La Poste group. For many years, he has led research activities on model-driven engineering applied to various areas from cyber-physical systems to cloud applications. Recently, his main focus is on requirements engineering with regards to automated analysis of security requirements, lightweight formalisation and validation with automated tests. He is the technical coordinator of the European collaborative research project on cyber security - VeriDevOps.

Dragos Truscan is a senior lecturer in Software Engineering at Åbo Akademi University, Finland. He has obtained a doctoral degree from the same university on topics related to model-driven development of programmable protocol processors. Over the last decade his research focused on model-based and ML/AI-based techniques for testing functional and non-functional properties of software intensive systems. The main emphasis of his work was on deploying such techniques to industrial settings.

Wissam Mallouli is currently the CTO of Montimage, Paris, France. His expertise covers continuous risk management, test and monitoring of critical systems and networks including industrial systems, cloud-based systems, IoT and 4G/5G networks. He is working in several collaborative European research projects and has more than 70 scientific publications at conferences and in journals.

Ana Rosa Cavalli is emeritus professor and research director of Montimage SME. From 1985 to 1990, she was a researcher in the department Languages and Switch Systems, at CNET (Centre National d'Etudes des Telecommunications), where she worked on software engineering and formal methods. She had been Full Professor at TELECOM SudParis and since 1990 the director of the Software for Networks department. Her research interests are on formal modelling, testing methodologies for active testing and monitoring techniques, validation of security properties and their application to services and protocols.

Cristina Seceleanu is Associate Professor and Docent at Mälardalen University (MDU), Sweden. She is the research leader of the Computer and Data Science research direction, and co-leader of the Formal Modeling and Analysis of Embedded Systems research group at MDU. Her research interests are with formal modelling and verification of real-time, adaptive, and autonomous cyber-physical systems. Her latest work focuses on combining machine learning and model checking for scalable verification of autonomous systems, verification of industrial-scale Simulink models, model-based testing, and formal assurance of 5G-based eHealth systems.

Alessandra Bagnato is a research scientist and Research Responsible at Softeam Software, Docaposte Group. There she leads the Softeam Software Modelio team research activities around innovative model-driven engineering methods. Her main research interests include cloud computing models, services and architectures, software engineering in the context of big data, cyber-physical systems design, security and data privacy.

Andrey Sadovykh 是法國 La Poste 集團旗下 Softeam/DocaPoste 的高級研究員。多年來，他一直領導著模型驅動工程在從物聯網系統到雲應用等各個領域的研究活動。最近，他的主要關注點是關於自動化分析安全需求、輕量級形式化和自動化測試驗證的需求工程。他是歐洲合作研究項目 VeriDevOps 的技術協調人。

Dragos Truscan 是芬蘭奧博阿卡德米大學軟體工程的高級講師。他在同一所大學獲得了關於可編程協議處理器的模型驅動開發的博士學位。在過去的十年中，他的研究重點是基於模型和機器學習/人工智能的技術，用於測試軟體密集型系統的功能和非功能屬性。他的工作主要集中在將這些技術應用於工業環境。

Wissam Mallouli 目前是法國巴黎 Montimage 公司的首席技術官。他的專業領域涵蓋連續風險管理、關鍵系統和網絡的測試和監控，包括工業系統、基於雲的系統、物聯網和4G/5G網絡。他參與了多個歐洲合作研究項目，並在會議和期刊上發表了70多篇科學論文。

Ana Rosa Cavalli 是 Montimage SME 的名譽教授和研究主任。從1985年到1990年，她在法國國家電信研究中心的語言和交換系統部門擔任研究員，從事軟體工程和形式化方法的研究。她曾任 TELECOM SudParis 的全職教授，並自1990年起擔任軟體網絡部門的主任。她的研究興趣包括形式建模、主動測試和監控技術的測試方法學、安全屬性的驗證及其在服務和協議中的應用。

Cristina Seceleanu 是瑞典馬拉達倫大學的副教授和 Docent。她是計算機和數據科學研究方向的研究領導者，也是馬拉達倫大學的形式建模和嵌入式系統分析研究小組的聯合領導者。她的研究興趣涉及實時、自適應和自主的物聯網系統的形式建模和驗證。她最新的工作集中在結合機器學習和模型檢查，以實現可擴展的自主系統驗證、工業規模的 Simulink 模型驗證、基於模型的測試和對基於5G的電子健康系統的形式保證。

Alessandra Bagnato 是 Softeam Software, Docaposte Group 的研究科學家和研究負責人。她領導 Softeam Software Modelio 團隊的研究活動，致力於創新的模型驅動工程方法。她的主要研究興趣包括雲計算模型、服務和架構、大數據背景下的軟體工程、物聯網系統設計、安全和數據隱私。

以上是這些專家的簡介。