Software Rejuvenation for Secure Tracking Control
Abstract
Software rejuvenation protects cyber-physical systems(CSPs) against cyber attacks on the run-time code by periodically refreshing the system with an uncorrupted software image. The system is vulnerable to attacks when it is communicating with other agents. Security is assured during the software refresh and re-initialization by turning off all communication. Although software rejuvenation has been demonstrated for some simple systems, many problems need to be addressed to make it viable for real applications. This paper expands the scope of CPS applications for which software rejuvenation can be implemented by introducing architectural and algorithmic features to support trajectory tracking. Following each software refresh, while communication is still off, a safety controller is executed to bring the system into a sufficiently small neighborhood of the current point on the reference trajectory. Communication is then re-established and the reference trajectory tracking controller is resumed, with the potential for being compromised by an attack. A protected, verified hypervisor manages the software rejuvenation sequence and delivers trusted reference trajectory points, which maybe received from untrusted communication, but are verified using an authentication process. We present the approach to designing the safety controller and timing parameters and illustrate the performance and design tradeoffs using the PX4real-time simulator. The concluding section discusses directions for further research.
Document Details
- Document Type
- Technical Report
- Publication Date
- Jan 01, 2019
- Accession Number
- AD1090859
Entities
People
- Bruce H. Krogh
- Bruno Sinopoli
- Dionisio de Niz
- Raffaele Romagnoli
Organizations
- Carnegie Mellon University