Application-Level Autonomic Hardware to Predict and Preempt Software Attacks on Industrial Control Systems
2014
We mitigate malicious software threats to industrial control systems, not by bolstering perimeter security, but rather by using application-specific configurable hardware to monitor and possibly override software operations in real time at the lowest (I/O pin) level of a system-on-chip platform containing a micro controller augmented with configurable logic. The process specifications, stability-preserving backup controller, and switchover logic are specified and formally verified as C code commonly used in control systems, but synthesized into hardware to resist software reconfiguration attacks. In addition, a copy of the production controller task is optionally implemented in an on-chip, isolated soft processor, connected to a model of the physical process, and accelerated to preview what the controller will attempt to do in the near future. This prediction provides greater assurance that the backup controller can be invoked before the physical process becomes unstable. Adding trusted, application-tailored, software-invisible, autonomic hardware is well-supported in a commercial system-on-chip platform.
Keywords:
- Control theory
- Real-time computing
- Hardware architecture
- Hardware compatibility list
- Package development process
- Computer security compromised by hardware failure
- Real-time Control System Software
- Backporting
- Computer science
- Embedded system
- Distributed computing
- Computer hardware
- Software security assurance
- Open source hardware
- Software fault tolerance
- Operating system
- Industrial control system
- Hardware acceleration
- Correction
- Source
- Cite
- Save
- Machine Reading By IdeaReader
11
References
11
Citations
NaN
KQI