Cyber-Physical Systems Attestation

2014 IEEE International Conference on Distributed Computing in Sensor Systems Pub Date : 2014-05-26 DOI:10.1109/DCOSS.2014.61

J. Valente, C. Barreto, A. Cárdenas

{"title":"Cyber-Physical Systems Attestation","authors":"J. Valente, C. Barreto, A. Cárdenas","doi":"10.1109/DCOSS.2014.61","DOIUrl":null,"url":null,"abstract":"Cyber-Physical Systems (CPS) are monitored and controlled by a wide variety of sensors and controllers. However, it has been repeatedly demonstrated that most of the devices interacting with the physical world (sensors and controllers) are extremely fragile to security incidents. One particular technology that can help us improve the trustworthiness of these devices is software attestation. While software attestation can help a verifier check the integrity of devices, it still has several drawbacks that have limited their application in the field, like establishing an authenticated channel, the inability to provide continuous attestation, and the need to modify devices to implement the attestation procedure. To overcome these limitations, we propose CPS-attestation as an attestation technique for control systems to attest their state to an external verifier. CPS-attestation enables a verifier to continuously monitor the dynamics of the control system over time and detect whether a component is not behaving as expected or if it is driving the system to an unsafe state. Our goal in this position paper is to initiate the discussion on the suitability of applying attestation techniques to control systems and the associated research challenges.","PeriodicalId":351707,"journal":{"name":"2014 IEEE International Conference on Distributed Computing in Sensor Systems","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-05-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"29","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 IEEE International Conference on Distributed Computing in Sensor Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/DCOSS.2014.61","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 29

Abstract

Cyber-Physical Systems (CPS) are monitored and controlled by a wide variety of sensors and controllers. However, it has been repeatedly demonstrated that most of the devices interacting with the physical world (sensors and controllers) are extremely fragile to security incidents. One particular technology that can help us improve the trustworthiness of these devices is software attestation. While software attestation can help a verifier check the integrity of devices, it still has several drawbacks that have limited their application in the field, like establishing an authenticated channel, the inability to provide continuous attestation, and the need to modify devices to implement the attestation procedure. To overcome these limitations, we propose CPS-attestation as an attestation technique for control systems to attest their state to an external verifier. CPS-attestation enables a verifier to continuously monitor the dynamics of the control system over time and detect whether a component is not behaving as expected or if it is driving the system to an unsafe state. Our goal in this position paper is to initiate the discussion on the suitability of applying attestation techniques to control systems and the associated research challenges.

查看原文本刊更多论文

网络物理系统认证

网络物理系统(CPS)由各种各样的传感器和控制器监测和控制。然而，事实一再证明，大多数与物理世界交互的设备(传感器和控制器)在安全事件面前都极其脆弱。有一种技术可以帮助我们提高这些设备的可信度，那就是软件认证。虽然软件认证可以帮助验证者检查设备的完整性，但它仍然有一些缺点，限制了它们在该领域的应用，比如建立一个经过身份验证的通道，无法提供连续的认证，以及需要修改设备来实现认证过程。为了克服这些限制，我们提出cps认证作为一种认证技术，用于控制系统向外部验证者证明其状态。cps认证使验证者能够随着时间的推移持续监控控制系统的动态，并检测组件是否未按预期行为，或者是否将系统推向不安全状态。我们在这篇立场文件中的目标是发起关于将认证技术应用于控制系统的适用性和相关研究挑战的讨论。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2014 IEEE International Conference on Distributed Computing in Sensor Systems

自引率

0.00%

发文量