Convergence of Safety and Security Sebastian Fischmeister Dept. of - - PowerPoint PPT Presentation

convergence of safety and security
SMART_READER_LITE
LIVE PREVIEW

Convergence of Safety and Security Sebastian Fischmeister Dept. of - - PowerPoint PPT Presentation

Dec 10, 2022 300 likes •696 views

1 Convergence of Safety and Security Sebastian Fischmeister Dept. of Electrical and Comp. Engineering University of Waterloo esg.uwaterloo.ca 2 Research area: Safety and security of software- intensive embedded safety- critical systems 3

slide-1
SLIDE 1

Convergence of Safety and Security

Sebastian Fischmeister

  • Dept. of Electrical and Comp. Engineering

University of Waterloo

esg.uwaterloo.ca

1

slide-2
SLIDE 2

Research area: Safety and security of software- intensive embedded safety- critical systems

2

slide-3
SLIDE 3
  • Prof. Fischmeister

3

  • 3. Data extraction

(2008-now)

  • 4. Data analysis

(2011-now)

  • Static analysis and instrumentation
  • Dynamic binary instrumentation
  • Side-channel analysis
  • Runtime verification, monitoring
  • Anomaly detection, intrusion detection
  • Reverse engineering

Applied to: Safety-critical systems

  • 2. Embedded and safety-critical systems (2002-now)
  • Exec. Director WatCAR
  • Consulting for ISO 26262
  • Member of SCC TC56
  • 1. Security of mobile code systems

(1999-2001)

slide-4
SLIDE 4

Observation:

Modern systems are beyond deep comprehension of human minds

4

slide-5
SLIDE 5

Systems Are Complex

5 Picture of car

slide-6
SLIDE 6

Code Complexity is Increasing

6

slide-7
SLIDE 7

Illustrating one example: Bridge from Tokyo to Vancouver

System size and complexity are the challenge!

Nobody would try building that bridge; unless it was software only! => Humans are bad at judging logical complexity We Cannot Comprehend Digital Systems

7

slide-8
SLIDE 8

Observation:

Safety deals with the universe Security deals with people

9

slide-9
SLIDE 9

10

Attacker flips bits on purpose. Security: The sun flips bits by chance. Safety:

slide-10
SLIDE 10

11

Millions of people are driving this vehicle …

Safe but not secure

slide-11
SLIDE 11

12

… but nobody would drive this car. (except Colin Furze)

Secure but not safe

slide-12
SLIDE 12

Observation:

Safety is static Security is dynamic

13

slide-13
SLIDE 13

Safety Following ISO 26262

14 Recommended lifecycle leading to a safe product.

slide-14
SLIDE 14

Once a Safe Product … Always Safe*

15

slide-15
SLIDE 15

More Vulnerabilities Every Year

16

137,729 (Dec ‘18)

In last 10 years:

  • 206 per week
  • 1.2 per hour (!)
slide-16
SLIDE 16

Once a Secure Product … Not Secure Tomorrow!

17

slide-17
SLIDE 17

News of the Day

18

slide-18
SLIDE 18

Observation:

Security operates at a different speed than product development

19

slide-19
SLIDE 19

20

Passenger aircraft Vehicle Smart phone Flashy IoT thingy 10 years 5 years 1 year 1 week CVE entries? 137,729+

(206 per week)

slide-20
SLIDE 20

RELATION TO DEFENCE SYSTEMS

21

slide-21
SLIDE 21

Weapon Systems Spending $25.5 Billion $1.66 Trillion

slide-22
SLIDE 22

23

Cyber attacks have the potential to take control of or shutdown any of these systems that are dependent on software.

  • Ref. US Government Accountability Office – Report t U.S. Senate, Weapons Systems Cybersecurity - 9 October 2018
slide-23
SLIDE 23

“This … herald[s] the coming rise of strategic cyberwarfare as a means of striking in very costly, disruptive ways at an adversary without a prior need to defeat

  • pposing military forces in the field, at sea, or in the air.”

John Arquilla, The Rise of Strategic Cyberwar, U.S. Naval Postgraduate School

slide-24
SLIDE 24

25

An estimated 15% of spare and replacement parts for DoD equipment are counterfeit.

Toohey, Brian. “Counterfeit Semiconductors – A Clear and Present Threat.” Testimony Before Senate Committee

  • n Armed Services, Counterfeit Electronic Parts in the U.S. Military Supply Chain, November 8, 2011.
slide-25
SLIDE 25

CHALLENGES: AN INCOMPLETE, BIASED SELECTION

26

slide-26
SLIDE 26

Challenge:

How to assist engineers to understand modern systems?

27

slide-27
SLIDE 27

Challenge:

How to provide effective protection of cyberphysical systems?

28

slide-28
SLIDE 28

Challenge:

How to maintain 30-year

  • ld systems?

29

slide-29
SLIDE 29

Challenge:

How to holistically address safety and security?

30

+100% more AI inside now

slide-30
SLIDE 30

EXAMPLE RESULTS OF COLLABORATING WITH THE UNIVERSITY OF WATERLOO

31

slide-31
SLIDE 31

Palisade: Cyberphysical Mission Assurance

Attack Detector – Detect crafted attacks Attack Capture – Capture&store adversary attacks Attack Counter – React to detected attacks Multiplicative security controls – Heterogeneous design to maximize resilience

A scalable, retrofittable solution for surviving crafted cyberphysical attacks

slide-32
SLIDE 32

Palisade Test: Hexacopter Drone

Detected control disruption, denial-of-service, reverse engineering attacks

Public test

slide-33
SLIDE 33

Palisade Test: Vehicle Body Control Module

Detected buffer overflow, arc injection attacks

Public test

slide-34
SLIDE 34

Palisade Test: Autonomous Driving AI

Detected GPS spoofing, steering hijack, man-in-the-middle attacks

Public test

slide-35
SLIDE 35

Palisade Test: Autonomous Vehicles

Detected gear-shift & control state irregularities

Public test

slide-36
SLIDE 36

Palisade Test: Military Platform

Detected gear-shift & control state irregularities

Public test

Detected various attacks and induced anomalies

Released photos

slide-37
SLIDE 37

Conclusions

  • Systems are becoming too complex for humans to comprehend
  • Computerization of systems will continue to happen
  • We need to identify methods and technology for building

safe and secure systems

  • Be prepared as change can come practically over night!
slide-38
SLIDE 38

39

Contact info: Sebastian Fischmeister sfischme@uwaterloo.ca

  • Dept. of Electrical and Computer Eng.

University of Waterloo 200 University Ave West Waterloo, ON N2L 3G1