Cybersecurity is an area of information technology where dependability plays a crucial role. This is because even a short transient violation of security policies may result in leaking private or highly sensitive information, compromise safety, or lead to the interruption of vital public or social services. This talk will go over a general runtime monitoring technique for a rich class of security polices (e.g., information flow, etc) that cannot be expressed by traditional trace-based specification languages. To this end, we employ the logic HyperLTL derived from Clarkson and Schneider's theory of hyperproperties. We first define the notion of monitorability and identify monitorable policies. Then, I will describe two monitoring techniques, called hypermonitoring.
Bio: Borzoo Bonakdarpour is currently an assistant professor at the Department of Computing and Software at McMaster University, Canada. His research interests include runtime monitoring of distributed systems and security/privacy policies, power-aware algorithms, and program synthesis. His work in these areas have received multiple best paper awards and nominations from highly prestigious conferences. His tools SYCRAFT and ASSESS are capable of synthesizing fault-tolerant and self-stabilizing distributed protocols. He chaired the Technical Program Committee of the SSS’16 and RV’14 conferences. His Ph.D. dissertation, "Automated Revision of Distributed and Real-Time Programs", was nominated for the 2010 ACM Doctoral Dissertation Award.