Improving security for periodic tasks in embedded systems through scheduling

Xie, Tao; Qin, Xiao

doi:10.1145/1275986.1275992

Cited by 76 publications

(70 citation statements)

References 38 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Xie and Lin considered periodic task scheduling requiring security service which has varying overhead in relation to the level of service [2], [4]. They enhanced the conventional scheduler to satisfy the real-time requirement and proposed new scheduler while maximizing the level of security service.…”

Section: Related Workmentioning

confidence: 99%

“…To cope with such issues, some previous works have proposed approaches to add a security constraint to the realtime properties [2]- [4]. In particular, some researches have focused on maximizing the level of security while meeting real-time deadlines by improving earliest deadline first (EDF) scheduling [2], [4].…”

Section: Introductionmentioning

confidence: 99%

“…In particular, some researches have focused on maximizing the level of security while meeting real-time deadlines by improving earliest deadline first (EDF) scheduling [2], [4]. These approaches have advantages over other techniques.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Preemptive Real-Time Scheduling Incorporating Security Constraint for Cyber Physical Systems

Baek

Lee

et al. 2016

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYSince many cyber-physical systems (CPSs) manipulate security-sensitive data, enhancing the quality of security in a CPS is a critical and challenging issue in CPS design. Although there has been a large body of research on securing general purpose PCs, directly applying such techniques to a CPS can compromise the real-time property of CPSs since the timely execution of tasks in a CPS typically relies on real-time scheduling. Recognizing this property, previous works have proposed approaches to add a security constraint to the real-time properties to cope with the information leakage problem that can arise between real-time tasks with different security levels. However, conventional works have mainly focused on non-preemptive scheduling and have suggested a very naive approach for preemptive scheduling, which shows limited analytical capability. In this paper, we present a new preemptive fixed-priority scheduling algorithm incorporating a security constraint, called lowest security-level first (LSF) and its strong schedulability analysis to reduce the potential of information leakage. Our simulation results show that LSF schedulability analysis outperforms state-of-the-art FP analysis when the security constraint has reasonable timing penalties.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Preemptive Real-Time Scheduling Incorporating Security Constraint for Cyber Physical Systems

Baek

Lee

et al. 2016

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

show abstract

“…In [XQ07], the authors presented an on-line scheduling policy that distributes free time slacks to enhance security services while guaranteeing the real-time constraints. However, the authors solely considered the security services as the only optimization goal, and ignored the other design requirements that may also be imposed in the system, e.g., energy efficiency and quality of service.…”

Section: Cryptography and Other Security Servicesmentioning

confidence: 99%

Security-Driven Design of Real-Time Embedded Systems

Jiang¹

2016

View full text Add to dashboard Cite

R eal-time embedded systems (RTESs) have been widely used in modern society. And it is also very common to find them in safety and security critical applications, such as transportation and medical equipment. There are, usually, several constraints imposed on a RTES, for example, timing, resource, energy, and performance, which must be satisfied simultaneously. This makes the design of such systems a difficult problem.More recently, the security of RTESs emerges as a major design concern, as more and more attacks have been reported. However, RTES security, as a parameter to be considered during the design process, has been overlooked in the past. This thesis approaches the design of secure RTESs focusing on aspects that are particularly important in the context of RTES, such as communication confidentiality and side-channel attack resistance.Several techniques are presented in this thesis for designing secure RTESs, including hardware/software co-design techniques for communication confidentiality on distributed platforms, a global framework for secure multi-mode real-time systems, and a scheduling policy for thwarting differential power analysis attacks.All the proposed solutions have been extensively evaluated in a large amount of experiments, including two real-life case studies, which demonstrate the efficiency of the presented techniques.The research presented in this thesis has been funded by CUGS (the National Graduate School in Computer Science in Sweden) and VR (the Swedish Research Council).v Populärvetenskaplig Sammanfattning I nbyggda realtidssystem används idag i stor utsträckning i vårt moderna samhälle. Detär mycket vanligt att hitta dem i säker-hetskritiska tillämpningar såsom transport-och medicinsk utrustning. Vanligtvis har inbyggda realtidssystem flera designbegränsningar och krav gällande till exempel timing, resurser, energi och prestanda, som måste vara uppfyllda samtidigt. Detta gör utformningen av sådana system till ett mycket svårt problem.Under senare tid har säkerheten i inbyggda realtidssystem blivit en viktig konstruktionsaspekt eftersom fler och fler attacker har rapporterats. Tidigare har säkerhetskraven i inbyggda realtidssystem inte betraktats som designparametrar under själva designprocessen. Denna avhandling fokuserar bland annat på utformningen av säkra inbyggda system, huvudsakligen på aspekter somär särskilt viktiga i samband med realtidssystem, till exempel kommunikationssekretess och motstånd mot sidokanalattacker.I denna avhandling presenteras tre olika tekniker för att utforma säkra inbyggda realtidssystem. Först en teknik för hård-och mjukvaru co-design för kommunikationssekretess för distribuerade plattformar, sedan ett globalt ramverk för säkra multi-mode system och slutligen en schemaläggningspolicy för motstånd mot sidokanalattacker.Samtliga de föreslagna lösningarna har utvärderats i stor omfattning med en stor mängd experiment, inklusive två fallstudier som visar effektiviteten hos de presenterade teknikerna.vii

show abstract

“…Xie and Qin [13] propose an online algorithm to schedule periodic tasks under security and timing constraints, trying to maximize a weighted sum of the individual security values, a metric defined by the authors. However, their approach does not provide any guarantees with respect to optimality of the total security value.…”

Section: Introduction and Related Workmentioning

confidence: 99%

Optimization of Message Encryption for Real-Time Applications in Embedded Systems

Aminifar

Eles

Peng

2018

IEEE Trans. Comput.

View full text Add to dashboard Cite

Abstract-Today, security can no longer be treated as a secondary issue in embedded and cyber-physical systems. Therefore, one of the main challenges in these domains is the design of secure embedded systems under stringent resource constraints and real-time requirements. However, there exists an inherent trade-off between the security protection provided and the amount of resources allocated for this purpose. That is, the more the amount of resources used for security, the higher the security, but the fewer the number of applications which can be run on the platform and meet their timing requirements. This trade-off is of high importance since embedded systems are often highly resource constrained. In this paper, we propose an efficient solution to maximize confidentiality, while also guaranteeing the timing requirements of real-time applications on shared platforms.

show abstract

Improving security for periodic tasks in embedded systems through scheduling

Cited by 76 publications

References 38 publications

Preemptive Real-Time Scheduling Incorporating Security Constraint for Cyber Physical Systems

Preemptive Real-Time Scheduling Incorporating Security Constraint for Cyber Physical Systems

Security-Driven Design of Real-Time Embedded Systems

Optimization of Message Encryption for Real-Time Applications in Embedded Systems

Contact Info

Product

Resources

About