TY - GEN
T1 - A generalized model for preventing information leakage in hard real-time systems
AU - Pellizzoni, Rodolfo
AU - Paryab, Neda
AU - Yoon, Man Ki
AU - Bak, Stanley
AU - Mohan, Sibin
AU - Bobba, Rakesh B.
N1 - Publisher Copyright:
© 2015 IEEE.
PY - 2015/5/14
Y1 - 2015/5/14
N2 - Traditionally real-time systems and security have been considered as separate domains. Recent attacks on various systems with real-time properties have shown the need for a redesign of such systems to include security as a first class principle. In this paper, we propose a general model for capturing security constraints between tasks in a real-time system. This model is then used in conjunction with real-time scheduling algorithms to prevent the leakage of information via storage channels on implicitly shared resources. We expand upon a mechanism to enforce these constraints viz., cleaning up of shared resource state, and provide schedulability conditions based on fixed priority scheduling with both preemptive and non-preemptive tasks. We perform extensive evaluations, both theoretical and experimental, the latter on a hardware-in-the-loop simulator of an unmanned aerial vehicle (UAV) that executes on a demonstration platform.
AB - Traditionally real-time systems and security have been considered as separate domains. Recent attacks on various systems with real-time properties have shown the need for a redesign of such systems to include security as a first class principle. In this paper, we propose a general model for capturing security constraints between tasks in a real-time system. This model is then used in conjunction with real-time scheduling algorithms to prevent the leakage of information via storage channels on implicitly shared resources. We expand upon a mechanism to enforce these constraints viz., cleaning up of shared resource state, and provide schedulability conditions based on fixed priority scheduling with both preemptive and non-preemptive tasks. We perform extensive evaluations, both theoretical and experimental, the latter on a hardware-in-the-loop simulator of an unmanned aerial vehicle (UAV) that executes on a demonstration platform.
UR - http://www.scopus.com/inward/record.url?scp=84944674060&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84944674060&partnerID=8YFLogxK
U2 - 10.1109/RTAS.2015.7108450
DO - 10.1109/RTAS.2015.7108450
M3 - Conference contribution
AN - SCOPUS:84944674060
T3 - Proceedings of the IEEE Real-Time and Embedded Technology and Applications Symposium, RTAS
SP - 271
EP - 282
BT - Proceedings - 21st IEEE Real Time and Embedded Technology and Applications Symposium, RTAS 2015
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 21st IEEE Real Time and Embedded Technology and Applications Symposium, RTAS 2015
Y2 - 13 April 2015 through 16 April 2015
ER -