S3A: Secure system simplex architecture for enhanced security and robustness of cyber-physical systems

Sibin Mohan; Stanley Bak; Emiliano Betti; Heechul Yun; Lui Sha; Marco Caccamo

doi:10.1145/2461446.2461456

S3A: Secure system simplex architecture for enhanced security and robustness of cyber-physical systems

Sibin Mohan, Stanley Bak, Emiliano Betti, Heechul Yun, Lui Sha, Marco Caccamo

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

The recently discovered 'W32.Stuxnet' worm has drastically changed the perception that systems managing critical infrastructure are invulnerable to software security attacks. Here we present an architecture that enhances the security of safety-critical cyber-physical systems despite the presence of such malware. Our architecture uses the property that control systems have deterministic real-time) execution behavior to detect an intrusion within 0.6 μs while still guaranteeing the safety of the plant. We also show that even if an attacker is successful (or gains access to the operating system's administrative privileges), the overall state of the physical system still remains safe.

Original language	English (US)
Title of host publication	HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013
Pages	65-74
Number of pages	10
DOIs	https://doi.org/10.1145/2461446.2461456
State	Published - 2013
Event	2013 2nd ACM International Conference on High Confidence Networked Systems, HiCoNS 2013, as Part of CPSWeek 2013 - Philadelphia, PA, United States Duration: Apr 9 2013 → Apr 11 2013

Publication series

Name	HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013

Other

Other	2013 2nd ACM International Conference on High Confidence Networked Systems, HiCoNS 2013, as Part of CPSWeek 2013
Country/Territory	United States
City	Philadelphia, PA
Period	4/9/13 → 4/11/13

Keywords

S3A
cyber-physical systems
intrusion detection
real-time systems
safety-critical systems
secure simplex
stuxnet

ASJC Scopus subject areas

Computer Networks and Communications

Online availability

10.1145/2461446.2461456

Library availability

Discover UIUC Full Text

Cite this

Mohan, S., Bak, S., Betti, E., Yun, H., Sha, L., & Caccamo, M. (2013). S3A: Secure system simplex architecture for enhanced security and robustness of cyber-physical systems. In HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013 (pp. 65-74). (HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013). https://doi.org/10.1145/2461446.2461456

S3A: Secure system simplex architecture for enhanced security and robustness of cyber-physical systems. / Mohan, Sibin; Bak, Stanley; Betti, Emiliano et al.
HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013. 2013. p. 65-74 (HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Mohan, S, Bak, S, Betti, E, Yun, H, Sha, L & Caccamo, M 2013, S3A: Secure system simplex architecture for enhanced security and robustness of cyber-physical systems. in HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013. HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013, pp. 65-74, 2013 2nd ACM International Conference on High Confidence Networked Systems, HiCoNS 2013, as Part of CPSWeek 2013, Philadelphia, PA, United States, 4/9/13. https://doi.org/10.1145/2461446.2461456

Mohan S, Bak S, Betti E, Yun H, Sha L, Caccamo M. S3A: Secure system simplex architecture for enhanced security and robustness of cyber-physical systems. In HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013. 2013. p. 65-74. (HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013). doi: 10.1145/2461446.2461456

Mohan, Sibin ; Bak, Stanley ; Betti, Emiliano et al. / S3A : Secure system simplex architecture for enhanced security and robustness of cyber-physical systems. HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013. 2013. pp. 65-74 (HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013).

@inproceedings{ec3911aa56bd450e817072bec11a104e,

title = "S3A: Secure system simplex architecture for enhanced security and robustness of cyber-physical systems",

abstract = "The recently discovered 'W32.Stuxnet' worm has drastically changed the perception that systems managing critical infrastructure are invulnerable to software security attacks. Here we present an architecture that enhances the security of safety-critical cyber-physical systems despite the presence of such malware. Our architecture uses the property that control systems have deterministic real-time) execution behavior to detect an intrusion within 0.6 μs while still guaranteeing the safety of the plant. We also show that even if an attacker is successful (or gains access to the operating system's administrative privileges), the overall state of the physical system still remains safe.",

keywords = "S3A, cyber-physical systems, intrusion detection, real-time systems, safety-critical systems, secure simplex, stuxnet",

author = "Sibin Mohan and Stanley Bak and Emiliano Betti and Heechul Yun and Lui Sha and Marco Caccamo",

year = "2013",

doi = "10.1145/2461446.2461456",

language = "English (US)",

isbn = "9781450319614",

series = "HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013",

pages = "65--74",

booktitle = "HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013",

note = "2013 2nd ACM International Conference on High Confidence Networked Systems, HiCoNS 2013, as Part of CPSWeek 2013 ; Conference date: 09-04-2013 Through 11-04-2013",

}

TY - GEN

T1 - S3A

T2 - 2013 2nd ACM International Conference on High Confidence Networked Systems, HiCoNS 2013, as Part of CPSWeek 2013

AU - Mohan, Sibin

AU - Bak, Stanley

AU - Betti, Emiliano

AU - Yun, Heechul

AU - Sha, Lui

AU - Caccamo, Marco

PY - 2013

Y1 - 2013

N2 - The recently discovered 'W32.Stuxnet' worm has drastically changed the perception that systems managing critical infrastructure are invulnerable to software security attacks. Here we present an architecture that enhances the security of safety-critical cyber-physical systems despite the presence of such malware. Our architecture uses the property that control systems have deterministic real-time) execution behavior to detect an intrusion within 0.6 μs while still guaranteeing the safety of the plant. We also show that even if an attacker is successful (or gains access to the operating system's administrative privileges), the overall state of the physical system still remains safe.

AB - The recently discovered 'W32.Stuxnet' worm has drastically changed the perception that systems managing critical infrastructure are invulnerable to software security attacks. Here we present an architecture that enhances the security of safety-critical cyber-physical systems despite the presence of such malware. Our architecture uses the property that control systems have deterministic real-time) execution behavior to detect an intrusion within 0.6 μs while still guaranteeing the safety of the plant. We also show that even if an attacker is successful (or gains access to the operating system's administrative privileges), the overall state of the physical system still remains safe.

KW - S3A

KW - cyber-physical systems

KW - intrusion detection

KW - real-time systems

KW - safety-critical systems

KW - secure simplex

KW - stuxnet

UR - http://www.scopus.com/inward/record.url?scp=84877600779&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84877600779&partnerID=8YFLogxK

U2 - 10.1145/2461446.2461456

DO - 10.1145/2461446.2461456

M3 - Conference contribution

AN - SCOPUS:84877600779

SN - 9781450319614

T3 - HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013

SP - 65

EP - 74

BT - HiCoNS 2013 - Proceedings of the 2nd ACM International Conference on High Confidence Networked Systems, Part of CPSWeek 2013

Y2 - 9 April 2013 through 11 April 2013

ER -

S3A: Secure system simplex architecture for enhanced security and robustness of cyber-physical systems

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this