Welcome to FormaliSE!
Update 2 April 2021
The preliminary program is now avaialble. You can view it here.
Update 16 March 2021
Registration for FormaliSE 2021 is open! Early registration deadline is 1 April 2021. You can register here.
Update 9 February 2021
We are happy to announce the two invited speakers at FormaliSE 2021: Moshe Y. Vardi and Liliana Pasquale!
Moshe Y. Yardi (Rice University, Houston, Texas, USA) will give a keynote titled Program Verification: a 70-Year History
Abstract: "The year 2019 saw the 70th anniversary of Alan Turing's paper "Checking a Large Routine", and the 50th anniversary of Tony Hoare's paper, "An Axiomatic Basis for Computer Programming". In that paper, Hoare stated: "When the correctness of a program, its compiler, and the hardware of the computer have all been established with mathematical certainty, it will be possible to place great reliance on the results of the program, and predict their properties with a confidence limited only by the reliability of the electronics. In this talk, I will review the 70+-year history of this vision, describing the obstacles, the controversies, and progress milestones. I will conclude with the description of both impressive progress and dramatic failures exhibited over the past few years."
Liliana Pasquale (University College Dublin & Lero, Ireland) will give a keynote titled Towards Formalising Sustainable Security
Abstract: "Cyber-physical systems, such as smart buildings, cities, and industrial control systems are increasingly managed by software. As the cyber and physical spaces characterizing a software system operating environment are becoming more intertwined, their attack surface has increased and they have become more targeted by attackers. Considering the critical applications of CPS, adversaries can interrupt the functionality of critical infrastructure, also possibly causing human loss. Thus, CPS should be designed to adapt their security controls dynamically, in order to continuously protect valuable assets from harm and satisfy security goals at runtime (during execution). However, research in the adaptive security domain has rarely focused on mitigating unexpected security threats at runtime. Changes of security controls can affect satisfaction of safety-critical properties of a CPS and lead stakeholders (e.g., users and engineers) to lose trust in the system. This can even be more detrimental considering that stakeholders may need to actively monitor data, support decision making and/or execute security controls, in order to avoid security requirements violations.
The objective of this talk is to propose the notion of sustainable security systems. Such systems will be capable of detecting new/changing threats and identify effective security controls dynamically. Also, they will endure engagement of the stakeholders in their operation and use. This talk will explore existing key research approaches that have been proposed to:
· Formalise adaptive security (cyber-physical) systems and detect/mitigate unexpected security threats at runtime
· Support runtime verification of large-scale (cyber-physical) systems
· Assure and explain adaptive security systems
The keynote will highlight research gaps and challenges towards formalising sustainable security systems and will outline a research agenda to tackle these challenges."