CyFence: Securing Cyber-Physical Controllers via Trusted Execution Environment
By: Stefano Longari , Alessandro Pozone , Jessica Leoni and more
Potential Business Impact:
Protects cars from hackers trying to crash them.
In the last decades, Cyber-physical Systems (CPSs) have experienced a significant technological evolution and increased connectivity, at the cost of greater exposure to cyber-attacks. Since many CPS are used in safety-critical systems, such attacks entail high risks and potential safety harms. Although several defense strategies have been proposed, they rarely exploit the cyber-physical nature of the system. In this work, we exploit the nature of CPS by proposing CyFence, a novel architecture that improves the resilience of closed-loop control systems against cyber-attacks by adding a semantic check, used to confirm that the system is behaving as expected. To ensure the security of the semantic check code, we use the Trusted Execution Environment implemented by modern processors. We evaluate CyFence considering a real-world application, consisting of an active braking digital controller, demonstrating that it can mitigate different types of attacks with a negligible computation overhead.
Similar Papers
Data-Driven Falsification of Cyber-Physical Systems
Cryptography and Security
Finds hidden dangers in self-driving cars.
Developing a Strong CPS Defender: An Evolutionary Approach
Cryptography and Security
Teaches computers to find sneaky attacks better.
Robust Recovery and Control of Cyber-physical Discrete Event Systems under Actuator Attacks
Systems and Control
Keeps machines working safely after cyberattacks.