ROS-Defender: SDN-based Security Policy Enforcement for Robotic Applications

RIVERA, Sean; LAGRAA, Sofiane; STATE, Radu; Nita-Rotaru, Cristina; BECKER, Sheila

Download

Paper published in a book (Scientific congresses, symposiums and conference proceedings)

ROS-Defender: SDN-based Security Policy Enforcement for Robotic Applications

RIVERA, Sean; LAGRAA, Sofiane; STATE, Radu et al.

2019 • In IEEE Workshop on the Internet of Safe Things, Co-located with IEEE Security and Privacy 2019

Peer reviewed

Permalink
https://hdl.handle.net/10993/39887

Files (2)Send to Details Statistics Bibliography Similar publications

Files

Full Text

ROS_Defender__An_Intrusion_Prevention_Approach_to_Secure_Robots.pdf

Publisher postprint (223 kB)

Download

Annexes

Safe Things Presentation.pptx

(1.19 MB)

Request a copy

All documents in ORBilu are protected by a user license.

Send to

RIS BibTex APA Chicago Permalink X Linkedin

Details

Keywords :

Robotics; Security; ROS; SDN; OpenVswitch

Abstract :

[en] Abstract—In this paper we propose ROS-Defender, a holistic approach to secure robotics systems, which integrates a Security Event Management System (SIEM), an intrusion prevention system (IPS) and a firewall for a robotic system. ROS-Defender combines anomaly detection systems at application (ROS) level and network level, with dynamic policy enforcement points using software defined networking (SDN) to provide protection against a large class of attacks. Although SIEMs, IPS, and firewall have been previously used to secure computer networks, ROSDefender is applying them for the specific use case of robotic systems, where security is in many cases an afterthought.

Research center :

Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Services and Data management research group (SEDAN)

Disciplines :

Computer science

Author, co-author :

RIVERA, Sean ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)

LAGRAA, Sofiane ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)

STATE, Radu ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)

Nita-Rotaru, Cristina; Northeastern University > Khoury College of Computer Sciences

BECKER, Sheila ; Defence Directorate, Luxembourg

External co-authors :

yes

Language :

English

Title :

ROS-Defender: SDN-based Security Policy Enforcement for Robotic Applications

Publication date :

May 2019

Event name :

IEEE Workshop on the Internet of Safe Things, Co-located with IEEE Security and Privacy 2019

Event date :

May 23rd, 2019

Audience :

International

Main work title :

IEEE Workshop on the Internet of Safe Things, Co-located with IEEE Security and Privacy 2019

Peer reviewed :

Peer reviewed

Focus Area :

Security, Reliability and Trust

Available on ORBilu :

since 12 July 2019

Statistics

Number of views

156 (8 by Unilu)

Number of downloads

260 (6 by Unilu)

More statistics

Scopus citations^®

Scopus citations^®
without self-citations

Bibliography

Apparmor. https://wiki.ubuntu.com/AppArmor. Accessed: 2018-03-27.
Husky unmanned ground vehicle. https://www.clearpathrobotics.com/husky-unmanned-ground-vehicle-robot/. Accessed: 2018-09-27.
Ros technical overview. http://wiki.ros.org/ROS/TechnicalOverview. Accessed: 2018-03-27.
"ryu software-defined networking framework.". https://osrg.github.io/ryu/. Accessed: 2018-06-02.
Secure ros. http://secure-ros.csl.sri.com/. Accessed: 2019-03-01.
Sros. http://wiki.ros.org/SROS. Accessed: 2018-03-27.
Turtlebot3 waffle. https://www.generationrobots.com/fr/402716-turtlebot-3-waffle.html. Accessed: 2018-08-02.
Using simulated robot in robot studio. http://wiki.ros.org/abb/Tutorials/RobotStudio. Accessed: 2018-09-27.
Were building an open source self-driving car. https://github.com/udacity/self-driving-car. Accessed: 2018-09-27.
"zodiac wx". https://northboundnetworks.com/products/zodiac-wx. Accessed: 2018-06-02.
A. Akhunzada, E. Ahmed, A. Gani, M. K. Khan, M. Imran, and S. Guizani. Securing software defined networks: taxonomy, requirements, and open issues. IEEE Communications Magazine, 53(4):36-44, April 2015.
B. Breiling, B. Dieber, and P. Schartner. Secure communication for the robot operating system. pages 1-6, April 2017.
J. Chu. Army robotics in the military. https://insights.sei.cmu.edu/sei blog/2017/06/army-robotics-in-the-military.html. Accessed: August 02, 2018.
B. Dieber, B. Breiling, S. Taurer, S. Kacianka, S. Rass, and P. Schartner. Security for the robot operating system. Robot. Auton. Syst., 98:192-203, Dec. 2017.
P. Dorfinger, G. Panholzer, and W. John. Entropy estimation for realtime encrypted traffic identification (short paper). In J. Domingo-Pascual, Y. Shavitt, and S. Uhlig, editors, Traffic Monitoring and Analysis, pages 164-171, Berlin, Heidelberg, 2011. Springer Berlin Heidelberg.
F. Furrer, M. Burri, M. Achtelik, and R. Siegwart. Robot Operating System (ROS): The Complete Reference (Volume 1), chapter RotorS-A Modular Gazebo MAV Simulator Framework, pages 595-625. Springer International Publishing, Cham, 2016.
A. Giaretta, M. D. Donno, and N. Dragoni. Adding salt to pepper: A structured security assessment over a humanoid robot. CoRR, abs/1805.04101, 2018.
S. Hong, R. Baykov, L. Xu, S. Nadimpalli, and G. Gu. Towards sdndefined programmable BYOD (bring your own device) security. 2016.
S.-Y. Jeong, I.-J. Choi, Y.-J. Kim, Y.-M. Shin, J.-H. Han, G.-H. Jung, and K.-G. Kim. A study on ros vulnerabilities and countermeasure. In Proceedings of the Companion of the 2017 ACM/IEEE International Conference on Human-Robot Interaction, HRI '17, pages 147-148, New York, NY, USA, 2017. ACM.
D. Kreutz, F. M. Ramos, and P. Verissimo. Towards secure and dependable software-defined networks. In Proceedings of the Second ACM SIGCOMM Workshop on Hot Topics in Software Defined Networking, HotSDN '13, pages 55-60, New York, NY, USA, 2013. ACM.
S. Lagraa, M. Cailac, S. Rivera, F. Beck, and R. State. Real-time attack detection on robot cameras: A self-driving car application. In IEEE International Conference on Robotic Computing (IRC), 2019.
F. Martn, E. Soriano, and J. M. Caas. Quantitative analysis of security in distributed robotic frameworks. Robotics and Autonomous Systems, 100:95-107, 2018.
R. Rahimi, C. Shao, M. Veeraraghavan, A. Fumagalli, J. Nicho, J. Meyer, S. Edwards, C. Flannigan, and P. Evans. An industrial robotics application with cloud computing and high-speed networking. In IEEE International Conference on Robotic Computing (IRC), pages 44-51, 2017.
S. Rivera, S. Lagraa, and R. State. Rosploit: Cybersecurity tool for ros. In IEEE International Conference on Robotic Computing (IRC), 2019.
The Open Networking Foundation. OpenFlow Switch Specification, Jun. 2012.
R. Toris, C. Shue, and S. Chernova. Message authentication codes for secure remote non-native client connections to ros enabled robots. pages 1-6, April 2014.
V. Varadharajan, K. K. Karmakar, and U. Tupakula. Securing communication in multiple autonomous system domains with software defined networking. In 2017 IFIP/IEEE Symposium on Integrated Network and Service Management (IM), pages 195-203, 2017.
R. White, H. I. Christensen, and M. Quigley. SROS: securing ROS over the wire, in the graph, and through the kernel. CoRR, abs/1611.07060, 2016.