Volume
OASIcs, Volume 73
4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019)
- Part of: Series: Open Access Series in Informatics (OASIcs)
Event
CERTS 2019, July 9, 2019, Stuttgart, GermanyEditors
Publication Details
- published at: 2019-07-29
- Publisher: Schloss Dagstuhl – Leibniz-Zentrum für Informatik
- ISBN: 978-3-95977-119-1
- DBLP: db/conf/ecrts/certs2019
Access Numbers
- Detailed Access Statistics available here
-
Total Document Accesses (updated on a weekly basis):
0PDF Downloads
Documents
No documents found matching your filter selection.
Document
Complete Volume
OASIcs, Volume 73, CERTS'19, Complete Volume
Abstract
OASIcs, Volume 73, CERTS'19, Complete Volume
Cite as
4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019). Open Access Series in Informatics (OASIcs), Volume 73, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2019)
Copy BibTex To Clipboard
@Proceedings{asplund_et_al:OASIcs.CERTS.2019,
title = {{OASIcs, Volume 73, CERTS'19, Complete Volume}},
booktitle = {4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019)},
series = {Open Access Series in Informatics (OASIcs)},
ISBN = {978-3-95977-119-1},
ISSN = {2190-6807},
year = {2019},
volume = {73},
editor = {Asplund, Mikael and Paulitsch, Michael},
publisher = {Schloss Dagstuhl -- Leibniz-Zentrum f{\"u}r Informatik},
address = {Dagstuhl, Germany},
URL = {https://drops-dev.dagstuhl.de/entities/document/10.4230/OASIcs.CERTS.2019},
URN = {urn:nbn:de:0030-drops-113897},
doi = {10.4230/OASIcs.CERTS.2019},
annote = {Keywords: Security and privacy, Embedded systems security; Computer systems organization, Embedded and cyber-physical systems; Dependable and fault-tolerant systems and networks}
}
Document
Front Matter
Front Matter, Table of Contents, Preface, Conference Organization
Abstract
Front Matter, Table of Contents, Preface, Conference Organization
Cite as
4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019). Open Access Series in Informatics (OASIcs), Volume 73, pp. 0:i-0:x, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2019)
Copy BibTex To Clipboard
@InProceedings{asplund_et_al:OASIcs.CERTS.2019.0,
author = {Asplund, Mikael and Paulitsch, Michael},
title = {{Front Matter, Table of Contents, Preface, Conference Organization}},
booktitle = {4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019)},
pages = {0:i--0:x},
series = {Open Access Series in Informatics (OASIcs)},
ISBN = {978-3-95977-119-1},
ISSN = {2190-6807},
year = {2019},
volume = {73},
editor = {Asplund, Mikael and Paulitsch, Michael},
publisher = {Schloss Dagstuhl -- Leibniz-Zentrum f{\"u}r Informatik},
address = {Dagstuhl, Germany},
URL = {https://drops-dev.dagstuhl.de/entities/document/10.4230/OASIcs.CERTS.2019.0},
URN = {urn:nbn:de:0030-drops-108910},
doi = {10.4230/OASIcs.CERTS.2019.0},
annote = {Keywords: Front Matter, Table of Contents, Preface, Conference Organization}
}
Document
Combined Security and Schedulability Analysis for MILS Real-Time Critical Architectures
Abstract
Real-time critical systems have to comply with stringent timing constraints, otherwise, disastrous consequences can occur at runtime. A large effort has been made to propose models and tools to verify timing constraints by schedulability analysis at the early stages of system designs. Fewer efforts have been made on verifying the security properties in these systems despite the fact that sinister consequences can also happen if these properties are compromised. In this article, we investigate how to jointly verify security and timing constraints. We show how to model a security architecture (MILS) and how to verify both timing constraints and security properties. Schedulability is investigated by the mean of scheduling analysis methods implemented into the Cheddar scheduling analyzer. Experiments are conducted to show the impact that improving security has on the schedulability analysis.
Cite as
Ill-ham Atchadam, Frank Singhoff, Hai Nam Tran, Noura Bouzid, and Laurent Lemarchand. Combined Security and Schedulability Analysis for MILS Real-Time Critical Architectures. In 4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019). Open Access Series in Informatics (OASIcs), Volume 73, pp. 1:1-1:12, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2019)
Copy BibTex To Clipboard
@InProceedings{atchadam_et_al:OASIcs.CERTS.2019.1,
author = {Atchadam, Ill-ham and Singhoff, Frank and Tran, Hai Nam and Bouzid, Noura and Lemarchand, Laurent},
title = {{Combined Security and Schedulability Analysis for MILS Real-Time Critical Architectures}},
booktitle = {4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019)},
pages = {1:1--1:12},
series = {Open Access Series in Informatics (OASIcs)},
ISBN = {978-3-95977-119-1},
ISSN = {2190-6807},
year = {2019},
volume = {73},
editor = {Asplund, Mikael and Paulitsch, Michael},
publisher = {Schloss Dagstuhl -- Leibniz-Zentrum f{\"u}r Informatik},
address = {Dagstuhl, Germany},
URL = {https://drops-dev.dagstuhl.de/entities/document/10.4230/OASIcs.CERTS.2019.1},
URN = {urn:nbn:de:0030-drops-108922},
doi = {10.4230/OASIcs.CERTS.2019.1},
annote = {Keywords: MILS (Multi Independent Levels of Security), RTCS (Real-Time Critical Systems), Security architecture and models, Scheduling analysis, Security analysis}
}
Document
System Calls Instrumentation for Intrusion Detection in Embedded Mixed-Criticality Systems
Abstract
System call relative information such as occurrences, type, parameters, and return values are well established metrics to reveal intrusions in a system software. Many Host Intrusion Detection Systems (HIDS) from research and industry analyze these data for continuous system monitoring at runtime. Despite a significant false alarm rate, this type of defense offers high detection precision for both known and zero-day attacks. Recent research focuses on HIDS deployment for desktop computers. Yet, the integration of such run-time monitoring solution in mixed-criticality embedded systems has not been discussed. Because of the cohabitation of potentially vulnerable non-critical software with critical software, securing mixed-criticality systems is a non trivial but essential issue. Thus, we propose a methodology to evaluate the impact of deploying system call instrumentation in such context. We analyze the impact in a concrete use-case with PikeOS real-time hypervisor.
Cite as
Marine Kadar, Sergey Tverdyshev, and Gerhard Fohler. System Calls Instrumentation for Intrusion Detection in Embedded Mixed-Criticality Systems. In 4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019). Open Access Series in Informatics (OASIcs), Volume 73, pp. 2:1-2:13, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2019)
Copy BibTex To Clipboard
@InProceedings{kadar_et_al:OASIcs.CERTS.2019.2,
author = {Kadar, Marine and Tverdyshev, Sergey and Fohler, Gerhard},
title = {{System Calls Instrumentation for Intrusion Detection in Embedded Mixed-Criticality Systems}},
booktitle = {4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019)},
pages = {2:1--2:13},
series = {Open Access Series in Informatics (OASIcs)},
ISBN = {978-3-95977-119-1},
ISSN = {2190-6807},
year = {2019},
volume = {73},
editor = {Asplund, Mikael and Paulitsch, Michael},
publisher = {Schloss Dagstuhl -- Leibniz-Zentrum f{\"u}r Informatik},
address = {Dagstuhl, Germany},
URL = {https://drops.dagstuhl.de/entities/document/10.4230/OASIcs.CERTS.2019.2},
URN = {urn:nbn:de:0030-drops-108933},
doi = {10.4230/OASIcs.CERTS.2019.2},
annote = {Keywords: Instrumentation, Mixed-criticality, Real-Time, System Calls, Host Intrusion Detection Systems}
}
Document
Argument Patterns for Multi-Concern Assurance of Connected Automated Driving Systems
Abstract
Showing that dependable embedded systems fulfil vital quality attributes, e.g. by conforming to relevant standards, can be challenging. For emerging and increasingly complex functions, such as connected automated driving (CAD), there is also a need to ensure that attributes such as safety, cybersecurity, and availability are fulfilled simultaneously. Furthermore, such systems are often designed using existing parts, including 3rd party components, which must be included in the quality assurance. This paper discusses how to structure the argument at the core of an assurance case taking these considerations into account, and proposes patterns to aid in this task. The patterns are applied in a case study with an example automotive function. While the aim has primarily been safety and security assurance of CAD, their generic nature make the patterns relevant for multi-concern assurance in general.
Cite as
Fredrik Warg and Martin Skoglund. Argument Patterns for Multi-Concern Assurance of Connected Automated Driving Systems. In 4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019). Open Access Series in Informatics (OASIcs), Volume 73, pp. 3:1-3:13, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2019)
Copy BibTex To Clipboard
@InProceedings{warg_et_al:OASIcs.CERTS.2019.3,
author = {Warg, Fredrik and Skoglund, Martin},
title = {{Argument Patterns for Multi-Concern Assurance of Connected Automated Driving Systems}},
booktitle = {4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019)},
pages = {3:1--3:13},
series = {Open Access Series in Informatics (OASIcs)},
ISBN = {978-3-95977-119-1},
ISSN = {2190-6807},
year = {2019},
volume = {73},
editor = {Asplund, Mikael and Paulitsch, Michael},
publisher = {Schloss Dagstuhl -- Leibniz-Zentrum f{\"u}r Informatik},
address = {Dagstuhl, Germany},
URL = {https://drops-dev.dagstuhl.de/entities/document/10.4230/OASIcs.CERTS.2019.3},
URN = {urn:nbn:de:0030-drops-108947},
doi = {10.4230/OASIcs.CERTS.2019.3},
annote = {Keywords: Multi-concern assurance, connected automated driving, dependability, functional safety, cybersecurity, cyber-physical systems, critical embedded systems}
}
Document
Sustainable Security & Safety: Challenges and Opportunities
Abstract
A significant proportion of today’s information and communication technology (ICT) systems are entrusted with high value assets, and our modern society has become increasingly dependent on these systems operating safely and securely over their anticipated lifetimes. However, we observe a mismatch between the lifetimes expected from ICT-supported systems (such as autonomous cars) and the duration for which these systems are able to remain safe and secure, given the spectrum of threats they face. Whereas most systems today are constructed within the constraints of foreseeable technology advancements, we argue that long term, i.e., sustainable security & safety, requires anticipating the unforeseeable and preparing systems for threats not known today. In this paper, we set out our vision for sustainable security & safety. We summarize the main challenges in realizing this desideratum in real-world systems, and we identify several design principles that could address these challenges and serve as building blocks for achieving this vision.
Cite as
Andrew Paverd, Marcus Völp, Ferdinand Brasser, Matthias Schunter, N. Asokan, Ahmad-Reza Sadeghi, Paulo Esteves-Veríssimo, Andreas Steininger, and Thorsten Holz. Sustainable Security & Safety: Challenges and Opportunities. In 4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019). Open Access Series in Informatics (OASIcs), Volume 73, pp. 4:1-4:13, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2019)
Copy BibTex To Clipboard
@InProceedings{paverd_et_al:OASIcs.CERTS.2019.4,
author = {Paverd, Andrew and V\"{o}lp, Marcus and Brasser, Ferdinand and Schunter, Matthias and Asokan, N. and Sadeghi, Ahmad-Reza and Esteves-Ver{\'\i}ssimo, Paulo and Steininger, Andreas and Holz, Thorsten},
title = {{Sustainable Security \& Safety: Challenges and Opportunities}},
booktitle = {4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019)},
pages = {4:1--4:13},
series = {Open Access Series in Informatics (OASIcs)},
ISBN = {978-3-95977-119-1},
ISSN = {2190-6807},
year = {2019},
volume = {73},
editor = {Asplund, Mikael and Paulitsch, Michael},
publisher = {Schloss Dagstuhl -- Leibniz-Zentrum f{\"u}r Informatik},
address = {Dagstuhl, Germany},
URL = {https://drops-dev.dagstuhl.de/entities/document/10.4230/OASIcs.CERTS.2019.4},
URN = {urn:nbn:de:0030-drops-108954},
doi = {10.4230/OASIcs.CERTS.2019.4},
annote = {Keywords: sustainability, security, safety}
}
Document
On Fault-Tolerant Scheduling of Time Sensitive Networks
Abstract
Time sensitive networking (TSN) is gaining attention in industrial automation networks since it brings essential real-time capabilities at the data link layer. Though it can provide deterministic latency under error free conditions, TSN still largely depends on space redundancy for improved reliability. In many scenarios, time redundancy could be an adequate as well as cost efficient alternative. Time redundancy in turn will have implications due to the need for over-provisions needed for timeliness guarantees. In this paper, we discuss how to embed fault-tolerance capability into TSN schedules and describe our approach using a simple example.
Cite as
Radu Dobrin, Nitin Desai, and Sasikumar Punnekkat. On Fault-Tolerant Scheduling of Time Sensitive Networks. In 4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019). Open Access Series in Informatics (OASIcs), Volume 73, pp. 5:1-5:12, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2019)
Copy BibTex To Clipboard
@InProceedings{dobrin_et_al:OASIcs.CERTS.2019.5,
author = {Dobrin, Radu and Desai, Nitin and Punnekkat, Sasikumar},
title = {{On Fault-Tolerant Scheduling of Time Sensitive Networks}},
booktitle = {4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS 2019)},
pages = {5:1--5:12},
series = {Open Access Series in Informatics (OASIcs)},
ISBN = {978-3-95977-119-1},
ISSN = {2190-6807},
year = {2019},
volume = {73},
editor = {Asplund, Mikael and Paulitsch, Michael},
publisher = {Schloss Dagstuhl -- Leibniz-Zentrum f{\"u}r Informatik},
address = {Dagstuhl, Germany},
URL = {https://drops-dev.dagstuhl.de/entities/document/10.4230/OASIcs.CERTS.2019.5},
URN = {urn:nbn:de:0030-drops-108965},
doi = {10.4230/OASIcs.CERTS.2019.5},
annote = {Keywords: Time sensitive networks(TSN), Fault-tolerant schedule, Time redundancy}
}