SCOPE: Secure Compiling of PLCs in Cyber-Physical Systems
Eyasu Getahun Chekole, Martin Ochoa, Sudipta Chattopadhyay
TL;DR
This paper introduces SCOPE, a secure compiling approach for PLCs in cyber-physical systems that detects and mitigates memory-safety attacks with minimal overhead, ensuring system availability and security.
Contribution
SCOPE provides a full-stack memory-safety enforcement for PLCs in CPS through secure compiling and dynamic runtime mitigation techniques.
Findings
Effectively detects memory-safety attacks in CPS
Maintains system availability during attacks
Demonstrates low overhead in real-world experiments
Abstract
Cyber-Physical Systems (CPS) are being widely adopted in critical infrastructures, such as smart grids, nuclear plants, water systems, transportation systems, manufacturing and healthcare services, among others. However, the increasing prevalence of cyberattacks targeting them raises a growing security concern in the domain. In particular, memory-safety attacks, that exploit memory-safety vulnerabilities, constitute a major attack vector against real-time control devices in CPS. Traditional IT countermeasures against such attacks have limitations when applied to the CPS context: they typically incur in high runtime overheads; which conflicts with real-time constraints in CPS and they often abort the program when an attack is detected, thus harming availability of the system, which in turn can potentially result in damage to the physical world. In this work, we propose to enforce a…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsSecurity and Verification in Computing · Smart Grid Security and Resilience · Advanced Malware Detection Techniques