On the (In)Security of Secure ROS2

Deng, Gelei; Xu, Guowen; Zhou, Yuan; Zhang, Tianwei; Liu, Yang

doi:10.1145/3548606.3560681

Cited by 9 publications

(5 citation statements)

References 34 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Some early studies [32,33] have analysed the security and performance of ROS2 and SROS2 in a comprehensive way, trying to find out the balance between the two. At the same time, some other papers [32,34] show that SROS2 still has flaws at present by analysing the security analysis of DDS Security or SROS2.…”

Section: Of 21mentioning

confidence: 99%

ROS2 Communication Security Vulnerability Detection Based on Formal Method

Yang,

Guo,

Rui

2024

Preprint

View full text Add to dashboard Cite

Robotic systems have been widely used in various industries, so the security of communication between robots and their components has become an issue that needs to be focused on. As a framework for developing robotic systems, the security of ROS2 can directly affect the security of the upper-level robotic systems. Therefore, it is a worthwhile research topic to detect and analyze the security of ROS2. In this paper, we adopt a formal approach to analyze the security of the communication mechanism of ROS2. First, we use a state transition system to model the potential vulnerabilities of ROS2 based on the ROS2 communication mechanism and the basic process of penetration testing. Secondly, we introduce the CIA model on the basis of the established vulnerability model and use LTL to define its security properties. Then, we design and implement a vulnerability detection tool for ROS2 applications based on the vulnerability model and security properties. Finally, we experimentally test some ROS2-based applications, and the results show that ROS2 has vulnerabilities without additional protection safeguards.

show abstract

Section: Of 21mentioning

confidence: 99%

ROS2 Communication Security Vulnerability Detection Based on Formal Method

Yang,

Guo,

Rui

2024

Preprint

View full text Add to dashboard Cite

show abstract

“…Some early studies [36,37] have analyzed the security and performance of ROS2 and SROS2 in a comprehensive way, trying to find out the balance between the two. At the same time, some other articles [36,38] have shown that SROS2 still has flaws at present through conducting a security analysis of DDS Security and SROS2.…”

Section: Related Workmentioning

confidence: 99%

Formal Analysis and Detection for ROS2 Communication Security Vulnerability

Yang,

Guo,

Rui

2024

Electronics

View full text Add to dashboard Cite

Robotic systems have been widely used in various industries, so the security of communication between robots and their components has become an issue that needs to be focused on. As a framework for developing robotic systems, the security of ROS2 (Robot Operating System 2) can directly affect the security of the upper-level robotic systems. Therefore, it is a worthwhile research topic to detect and analyze the security of ROS2. In this study, we adopted a formal approach to analyze the security of the communication mechanism of ROS2. First, we used a state transition system to model the potential vulnerabilities of ROS2 based on the ROS2 communication mechanism and the basic process of penetration testing. Secondly, we introduced a CIA model based on the established vulnerability model and used linear temporal logic to define its security properties. Then, we designed and implemented a vulnerability detection tool for ROS2 applications based on the vulnerability model and security properties. Finally, we experimentally tested some ROS2-based applications, and the results show that ROS2 has vulnerabilities without additional protection safeguards.

show abstract

“…It makes TLS standard for all application communication and ensures that publish/subscribe messaging adheres to advertised manifests, thereby eliminating several common classes of attacks such as eavesdropping, message spoofing and corruption. Recent work on model checking SROS2 has uncovered security holes in SROS2 itself [24].…”

Section: Related Workmentioning

confidence: 99%

Decentralized Information-Flow Control for ROS2

Pandya,

Kumar,

Pillai

et al. 2024

Proceedings 2024 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

ROS2 is a popular publish/subscribe based middleware that allows developers to build and deploy a widevariety of distributed robotics applications. Unfortunately, ROS2 offers applications poor control over how their data is consumed downstream by other applications. Although decentralized information-flow control (DIFC) offers a solution to this problem, the decentralized and distributed architecture of ROS2 poses new challenges to building a practical DIFC system for ROS2.We present Picaros, a DIFC system tailored for ROS2. Picaros adopts a novel approach to DIFC that casts and solves DIFC's access control problem in the framework of attribute-based encryption (ABE). Picaros's design embraces the unique nature of the ROS2 platform and carefully avoids any centralized elements. This paper presents the design and implementation of Picaros and reports results from our experiments that use Picaros's ABEbased approach for DIFC with ROS2 applications.* Picaros is Information-flow Control via ABE for ROS2.

show abstract

On the (In)Security of Secure ROS2

Cited by 9 publications

References 34 publications

ROS2 Communication Security Vulnerability Detection Based on Formal Method

ROS2 Communication Security Vulnerability Detection Based on Formal Method

Formal Analysis and Detection for ROS2 Communication Security Vulnerability

Decentralized Information-Flow Control for ROS2

Contact Info

Product

Resources

About