Process-aware side channel monitoring for embedded control system security

David Paul-Pena, Prashanth Krishnamurthy, Ramesh Karri, Farshad Khorrami

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Cyber-physical systems (CPS) are interconnections of heterogeneous hardware and software components (e.g., sensors, actuators, physical systems/processes, computational nodes and controllers, and communication subsystems). Increasing network connectivity of CPS computational nodes facilitates maintenance and on-demand reprogrammability and reduces operator workload. However, such increasing connectivity also raises the potential for cyber-attacks that attempt unauthorized modifications of run-time parameters or control logic in the computational nodes to hamper process stability or performance. In this paper, we analyze the effectiveness of real-time monitoring using digital and analog side channels. While analog side channels might not typically provide sufficient granularity to observe each iteration of a periodic loop in the code in the CPS device, the temporal averaging inherent to side channel sensory modalities enables observation of persistent changes to the contents of a computational loop through their resulting effect on the level of activity of the device. Changes to code can be detected by observing readings from side channel sensors over a period of time. Experimental studies are performed on an ARM-based single board computer.

Original languageEnglish (US)
Title of host publication25th IFIP/IEEE International Conference on Very Large Scale Integration, VLSI-SoC 2017 - Proceedings
PublisherIEEE Computer Society
ISBN (Electronic)9781538628805
DOIs
StatePublished - Dec 13 2017
Event25th IFIP/IEEE International Conference on Very Large Scale Integration, VLSI-SoC 2017 - Abu Dhabi, United Arab Emirates
Duration: Oct 23 2017Oct 25 2017

Other

Other25th IFIP/IEEE International Conference on Very Large Scale Integration, VLSI-SoC 2017
CountryUnited Arab Emirates
CityAbu Dhabi
Period10/23/1710/25/17

Fingerprint

Control systems
Monitoring
Sensors
Printed circuit boards
Actuators
Hardware
Controllers
Communication
Cyber Physical System

Keywords

  • Acoustic
  • Control systems
  • Monitoring
  • Security
  • Side channels
  • Thermal

ASJC Scopus subject areas

  • Hardware and Architecture
  • Software
  • Electrical and Electronic Engineering

Cite this

Paul-Pena, D., Krishnamurthy, P., Karri, R., & Khorrami, F. (2017). Process-aware side channel monitoring for embedded control system security. In 25th IFIP/IEEE International Conference on Very Large Scale Integration, VLSI-SoC 2017 - Proceedings [8203468] IEEE Computer Society. https://doi.org/10.1109/VLSI-SoC.2017.8203468

Process-aware side channel monitoring for embedded control system security. / Paul-Pena, David; Krishnamurthy, Prashanth; Karri, Ramesh; Khorrami, Farshad.

25th IFIP/IEEE International Conference on Very Large Scale Integration, VLSI-SoC 2017 - Proceedings. IEEE Computer Society, 2017. 8203468.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Paul-Pena, D, Krishnamurthy, P, Karri, R & Khorrami, F 2017, Process-aware side channel monitoring for embedded control system security. in 25th IFIP/IEEE International Conference on Very Large Scale Integration, VLSI-SoC 2017 - Proceedings., 8203468, IEEE Computer Society, 25th IFIP/IEEE International Conference on Very Large Scale Integration, VLSI-SoC 2017, Abu Dhabi, United Arab Emirates, 10/23/17. https://doi.org/10.1109/VLSI-SoC.2017.8203468
Paul-Pena D, Krishnamurthy P, Karri R, Khorrami F. Process-aware side channel monitoring for embedded control system security. In 25th IFIP/IEEE International Conference on Very Large Scale Integration, VLSI-SoC 2017 - Proceedings. IEEE Computer Society. 2017. 8203468 https://doi.org/10.1109/VLSI-SoC.2017.8203468
Paul-Pena, David ; Krishnamurthy, Prashanth ; Karri, Ramesh ; Khorrami, Farshad. / Process-aware side channel monitoring for embedded control system security. 25th IFIP/IEEE International Conference on Very Large Scale Integration, VLSI-SoC 2017 - Proceedings. IEEE Computer Society, 2017.
@inproceedings{071cf137adc5486eacc8c2dfb8f316ca,
title = "Process-aware side channel monitoring for embedded control system security",
abstract = "Cyber-physical systems (CPS) are interconnections of heterogeneous hardware and software components (e.g., sensors, actuators, physical systems/processes, computational nodes and controllers, and communication subsystems). Increasing network connectivity of CPS computational nodes facilitates maintenance and on-demand reprogrammability and reduces operator workload. However, such increasing connectivity also raises the potential for cyber-attacks that attempt unauthorized modifications of run-time parameters or control logic in the computational nodes to hamper process stability or performance. In this paper, we analyze the effectiveness of real-time monitoring using digital and analog side channels. While analog side channels might not typically provide sufficient granularity to observe each iteration of a periodic loop in the code in the CPS device, the temporal averaging inherent to side channel sensory modalities enables observation of persistent changes to the contents of a computational loop through their resulting effect on the level of activity of the device. Changes to code can be detected by observing readings from side channel sensors over a period of time. Experimental studies are performed on an ARM-based single board computer.",
keywords = "Acoustic, Control systems, Monitoring, Security, Side channels, Thermal",
author = "David Paul-Pena and Prashanth Krishnamurthy and Ramesh Karri and Farshad Khorrami",
year = "2017",
month = "12",
day = "13",
doi = "10.1109/VLSI-SoC.2017.8203468",
language = "English (US)",
booktitle = "25th IFIP/IEEE International Conference on Very Large Scale Integration, VLSI-SoC 2017 - Proceedings",
publisher = "IEEE Computer Society",

}

TY - GEN

T1 - Process-aware side channel monitoring for embedded control system security

AU - Paul-Pena, David

AU - Krishnamurthy, Prashanth

AU - Karri, Ramesh

AU - Khorrami, Farshad

PY - 2017/12/13

Y1 - 2017/12/13

N2 - Cyber-physical systems (CPS) are interconnections of heterogeneous hardware and software components (e.g., sensors, actuators, physical systems/processes, computational nodes and controllers, and communication subsystems). Increasing network connectivity of CPS computational nodes facilitates maintenance and on-demand reprogrammability and reduces operator workload. However, such increasing connectivity also raises the potential for cyber-attacks that attempt unauthorized modifications of run-time parameters or control logic in the computational nodes to hamper process stability or performance. In this paper, we analyze the effectiveness of real-time monitoring using digital and analog side channels. While analog side channels might not typically provide sufficient granularity to observe each iteration of a periodic loop in the code in the CPS device, the temporal averaging inherent to side channel sensory modalities enables observation of persistent changes to the contents of a computational loop through their resulting effect on the level of activity of the device. Changes to code can be detected by observing readings from side channel sensors over a period of time. Experimental studies are performed on an ARM-based single board computer.

AB - Cyber-physical systems (CPS) are interconnections of heterogeneous hardware and software components (e.g., sensors, actuators, physical systems/processes, computational nodes and controllers, and communication subsystems). Increasing network connectivity of CPS computational nodes facilitates maintenance and on-demand reprogrammability and reduces operator workload. However, such increasing connectivity also raises the potential for cyber-attacks that attempt unauthorized modifications of run-time parameters or control logic in the computational nodes to hamper process stability or performance. In this paper, we analyze the effectiveness of real-time monitoring using digital and analog side channels. While analog side channels might not typically provide sufficient granularity to observe each iteration of a periodic loop in the code in the CPS device, the temporal averaging inherent to side channel sensory modalities enables observation of persistent changes to the contents of a computational loop through their resulting effect on the level of activity of the device. Changes to code can be detected by observing readings from side channel sensors over a period of time. Experimental studies are performed on an ARM-based single board computer.

KW - Acoustic

KW - Control systems

KW - Monitoring

KW - Security

KW - Side channels

KW - Thermal

UR - http://www.scopus.com/inward/record.url?scp=85048067055&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85048067055&partnerID=8YFLogxK

U2 - 10.1109/VLSI-SoC.2017.8203468

DO - 10.1109/VLSI-SoC.2017.8203468

M3 - Conference contribution

AN - SCOPUS:85048067055

BT - 25th IFIP/IEEE International Conference on Very Large Scale Integration, VLSI-SoC 2017 - Proceedings

PB - IEEE Computer Society

ER -