Real-Time Systems Security through Scheduler Constraints

Sibin Mohan; Man Ki Yoon; Rodolfo Pellizzoni; Rakesh Bobba

doi:10.1109/ECRTS.2014.28

Real-Time Systems Security through Scheduler Constraints

Sibin Mohan, Man Ki Yoon, Rodolfo Pellizzoni, Rakesh Bobba

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Real-time systems (RTS) were typically considered to be invulnerable to external attacks, mainly due to their use of proprietary hardware and protocols, as well as physical isolation. As a result, RTS and security have traditionally been separate domains. These assumptions are being challenged by a series of recent events that highlight the vulnerabilities in RTS. In this paper we focus on integrating security as a first class principle in the design of RTS: we show that certain security requirements can be specified as real-time scheduling constraints. Using information leakage as a motivating problem, we illustrate our techniques with fixed-priority (FP) real-time schedulers. We evaluate our approach and discuss tradeoffs. Our evaluation shows that many real-time task sets can be scheduled under the proposed constraints without significant performance impact.

Original language	English (US)
Title of host publication	Proceedings - Euromicro Conference on Real-Time Systems
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	129-140
Number of pages	12
ISBN (Electronic)	9781479957989
DOIs	https://doi.org/10.1109/ECRTS.2014.28
State	Published - Oct 21 2014
Event	26th Euromicro Conference on Real-Time Systems, ECRTS 2014 - Madrid, Spain Duration: Jul 8 2014 → Jul 11 2014

Publication series

Name	Proceedings - Euromicro Conference on Real-Time Systems
ISSN (Print)	1068-3070

Other

Other	26th Euromicro Conference on Real-Time Systems, ECRTS 2014
Country/Territory	Spain
City	Madrid
Period	7/8/14 → 7/11/14

Keywords

embedded security
information leakage
real-time security
scheduling
timing attacks

ASJC Scopus subject areas

Software
Hardware and Architecture

Online availability

10.1109/ECRTS.2014.28

Library availability

Discover UIUC Full Text

Cite this

Real-Time Systems Security through Scheduler Constraints. / Mohan, Sibin; Yoon, Man Ki; Pellizzoni, Rodolfo et al.
Proceedings - Euromicro Conference on Real-Time Systems. Institute of Electrical and Electronics Engineers Inc., 2014. p. 129-140 6932596 (Proceedings - Euromicro Conference on Real-Time Systems).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Mohan, S, Yoon, MK, Pellizzoni, R & Bobba, R 2014, Real-Time Systems Security through Scheduler Constraints. in Proceedings - Euromicro Conference on Real-Time Systems., 6932596, Proceedings - Euromicro Conference on Real-Time Systems, Institute of Electrical and Electronics Engineers Inc., pp. 129-140, 26th Euromicro Conference on Real-Time Systems, ECRTS 2014, Madrid, Spain, 7/8/14. https://doi.org/10.1109/ECRTS.2014.28

@inproceedings{b3819e499fb14ffbb5480215643fda23,

title = "Real-Time Systems Security through Scheduler Constraints",

abstract = "Real-time systems (RTS) were typically considered to be invulnerable to external attacks, mainly due to their use of proprietary hardware and protocols, as well as physical isolation. As a result, RTS and security have traditionally been separate domains. These assumptions are being challenged by a series of recent events that highlight the vulnerabilities in RTS. In this paper we focus on integrating security as a first class principle in the design of RTS: we show that certain security requirements can be specified as real-time scheduling constraints. Using information leakage as a motivating problem, we illustrate our techniques with fixed-priority (FP) real-time schedulers. We evaluate our approach and discuss tradeoffs. Our evaluation shows that many real-time task sets can be scheduled under the proposed constraints without significant performance impact.",

keywords = "embedded security, information leakage, real-time security, scheduling, timing attacks",

author = "Sibin Mohan and Yoon, {Man Ki} and Rodolfo Pellizzoni and Rakesh Bobba",

note = "Publisher Copyright: {\textcopyright} 2014 IEEE.; 26th Euromicro Conference on Real-Time Systems, ECRTS 2014 ; Conference date: 08-07-2014 Through 11-07-2014",

year = "2014",

month = oct,

day = "21",

doi = "10.1109/ECRTS.2014.28",

language = "English (US)",

series = "Proceedings - Euromicro Conference on Real-Time Systems",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "129--140",

booktitle = "Proceedings - Euromicro Conference on Real-Time Systems",

address = "United States",

}

TY - GEN

T1 - Real-Time Systems Security through Scheduler Constraints

AU - Mohan, Sibin

AU - Yoon, Man Ki

AU - Pellizzoni, Rodolfo

AU - Bobba, Rakesh

PY - 2014/10/21

Y1 - 2014/10/21

N2 - Real-time systems (RTS) were typically considered to be invulnerable to external attacks, mainly due to their use of proprietary hardware and protocols, as well as physical isolation. As a result, RTS and security have traditionally been separate domains. These assumptions are being challenged by a series of recent events that highlight the vulnerabilities in RTS. In this paper we focus on integrating security as a first class principle in the design of RTS: we show that certain security requirements can be specified as real-time scheduling constraints. Using information leakage as a motivating problem, we illustrate our techniques with fixed-priority (FP) real-time schedulers. We evaluate our approach and discuss tradeoffs. Our evaluation shows that many real-time task sets can be scheduled under the proposed constraints without significant performance impact.

AB - Real-time systems (RTS) were typically considered to be invulnerable to external attacks, mainly due to their use of proprietary hardware and protocols, as well as physical isolation. As a result, RTS and security have traditionally been separate domains. These assumptions are being challenged by a series of recent events that highlight the vulnerabilities in RTS. In this paper we focus on integrating security as a first class principle in the design of RTS: we show that certain security requirements can be specified as real-time scheduling constraints. Using information leakage as a motivating problem, we illustrate our techniques with fixed-priority (FP) real-time schedulers. We evaluate our approach and discuss tradeoffs. Our evaluation shows that many real-time task sets can be scheduled under the proposed constraints without significant performance impact.

KW - embedded security

KW - information leakage

KW - real-time security

KW - scheduling

KW - timing attacks

UR - http://www.scopus.com/inward/record.url?scp=84910027097&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84910027097&partnerID=8YFLogxK

U2 - 10.1109/ECRTS.2014.28

DO - 10.1109/ECRTS.2014.28

M3 - Conference contribution

AN - SCOPUS:84910027097

T3 - Proceedings - Euromicro Conference on Real-Time Systems

SP - 129

EP - 140

BT - Proceedings - Euromicro Conference on Real-Time Systems

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 26th Euromicro Conference on Real-Time Systems, ECRTS 2014

Y2 - 8 July 2014 through 11 July 2014

ER -

Real-Time Systems Security through Scheduler Constraints

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this