Article (Scientific journals)
Vulnerability Analysis and Mitigation of Directed Timing Inference Based Attacks on Time-Triggered Systems
Krüger, Kristin; Volp, Marcus; Fohler, Gerhard
2018In Leibniz International Proceedings in Informatics, 106, p. 22:1--22:17
Peer reviewed
 

Files


Full Text
LIPIcs-ECRTS-2018-22.pdf
Publisher postprint (440.46 kB)
Download

All documents in ORBilu are protected by a user license.

Send to



Details



Abstract :
[en] Much effort has been put into improving the predictability of real-time systems, especially in safety-critical environments, which provides designers with a rich set of methods and tools to attest safety in situations with no or a limited number of accidental faults. However, with increasing connectivity of real-time systems and a wide availability of increasingly sophisticated exploits, security and, in particular, the consequences of predictability on security become concerns of equal importance. Time-triggered scheduling with offline constructed tables provides determinism and simplifies timing inference, however, at the same time, time-triggered scheduling creates vulnerabilities by allowing attackers to target their attacks to specific, deterministically scheduled and possibly safety-critical tasks. In this paper, we analyze the severity of these vulnerabilities by assuming successful compromise of a subset of the tasks running in a real-time system and by investigating the attack potential that attackers gain from them. Moreover, we discuss two ways to mitigate direct attacks: slot-level online randomization of schedules, and offline schedule-diversification. We evaluate these mitigation strategies with a real-world case study to show their practicability for mitigating not only accidentally malicious behavior, but also malicious behavior triggered by attackers on purpose.
Disciplines :
Computer science
Author, co-author :
Krüger, Kristin;  Technische Universität Kaiserslautern
Volp, Marcus  ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Fohler, Gerhard;  Technische Universität Kaiserslautern
External co-authors :
yes
Language :
English
Title :
Vulnerability Analysis and Mitigation of Directed Timing Inference Based Attacks on Time-Triggered Systems
Publication date :
June 2018
Journal title :
Leibniz International Proceedings in Informatics
ISSN :
1868-8969
Publisher :
Schloss Dagstuhl--Leibniz-Zentrum fuer Informatik, Dagstuhl, Germany
Volume :
106
Pages :
22:1--22:17
Peer reviewed :
Peer reviewed
Focus Area :
Security, Reliability and Trust
Available on ORBilu :
since 18 December 2018

Statistics


Number of views
292 (7 by Unilu)
Number of downloads
203 (2 by Unilu)

Scopus citations®
 
17
Scopus citations®
without self-citations
17

Bibliography


Similar publications



Contact ORBilu