| 1. |
|
|
| 2. |
- Lisova, Elena, et al.
(författare)
-
Delay attack versus clock synchronization - A time chase
- 2017
-
Ingår i: Proceedings of the IEEE International Conference on Industrial Technology. - 9781509053209 ; , s. 1136-1141
-
Konferensbidrag (refereegranskat)abstract
- Clock synchronization is one of the most essential assets for distributed real-time systems, as sensing, control and actuation require synchronized communication to meet real-time deadlines. We propose a distributed monitoring method to detect if an adversary is interfering with the clock synchronization protocol. The monitor uses certain network indicators and a set of rules to decide about switching between Normal, Quarantine or Attack Detected states. Further, we propose a way to define thresholds for decision-making based on theoretical analysis of the indicator values influenced by an attack. In addition, we formulate the problem of adversary influence detection in the network as a detection theory problem and use it to derive an additional indicator for the network monitor. Finally, we analyze the time chase between the monitor and an adversary to investigate which factors influence the final outcome.
|
|
| 3. |
- Lisova, Elena, et al.
(författare)
-
Monitoring of Clock Synchronization in Cyber-Physical Systems : A Sensitivity Analysis
- 2017
-
Ingår i: International Conference on Internet of Things, Embedded Systems and Communications 2017 IINTEC 2017. - 9781538621134 ; , s. 134-139
-
Konferensbidrag (refereegranskat)abstract
- Clock synchronization is a core asset to protect when securing cyber-physical systems with a time-triggered architecture. One of the most challenging attacks to protect against is a delay attack, where an adversary delays one of the synchronization messages, making node offset calculations incorrect for keeping clocks synchronized. One way to detect a breach of clock synchronization is by monitoring the offsets calculated in a node according to the clock synchronization algorithm. The analysis in this work assumes that the distributed nodes need to share the same notion of time and for this reason, uses the IEEE 1588 standard. Using this approach, a monitor needs to make a decision about if and when a node is under attack, in which case rules and methods for decision making should be put in place. There are many aspects to consider when setting thresholds for the monitored values in order to make such a decision. In this work we conduct an analysis of monitor indicators and an investigation of their applicability. Further, we identify dependencies within the proposed monitoring approach and conduct a sensitivity analysis of the parameters needed to make a decision about a system being under attack. The analysis outcomes allow to identify important parameters to consider while thresholding indicators and enables a greater generality in their applicability.
|
|
| 4. |
- Šljivo, Irfan, et al.
(författare)
-
Agent-centred Approach for Assuring Ethics in Dependable Service Systems
- 2017
-
Ingår i: 13th IEEE World Congress on Services SERVICES 2017. ; , s. 51-58
-
Konferensbidrag (refereegranskat)abstract
- As the world enters the information era, more and more dependable services controlling and even making our decisions are moved to the ubiquitous smart devices. While various standards are in place to impose the societal ethical norms on decision-making of those devices, the rights of the individuals to satisfy their own moral norms are not addressed with the same scrutiny. Hence, the right of the individuals to reason on their own and evaluate morality of certain decisions is at stake, as many decisions are outsourced from the user to the service providers and third party stakeholders without the user's full awareness of all the aspects of those decisions. In this work we propose an agent-centred approach for assuring ethics in dependable technological service systems. We build upon assurance of safety and security and propose the notion of ethics assurance case as a way to assure that individual users have been made aware of all the ethically challenging decisions that might be performed or enabled by the service provider. We propose a framework for identifying and categorising ethically challenging decisions, and documenting the ethics assurance case. We apply the framework on an illustrative example.
|
|
