Practical information-flow aware middleware for in-car communication

Bouard, Alexandre; Weyl, Benjamin; Eckert, Claudia

doi:10.1145/2517968.2517969

Cited by 5 publications

(5 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, it required a strict timing synchronization to inject and launch the attack. Authentication and encryption for in-vehicle communication were also proposed [22], [23]. However, the overhead of such mechanisms hindered the practical adoption.…”

Section: ) Safety and Security Of Autonomous Driving Vehiclesmentioning

confidence: 99%

Guardauto: A Decentralized Runtime Protection System for Autonomous Driving

Cheng

Zhou

Chen

et al. 2020

Preprint

View full text Add to dashboard Cite

Due to the broad attack surface and the lack of runtime protection, potential safety and security threats hinder the real-life adoption of autonomous vehicles. Although efforts have been made to mitigate some specific attacks, there are few works on the protection of the self-driving system. This paper presents a decentralized self-protection framework called Guardauto to protect the self-driving system against runtime threats. First, Guardauto proposes an isolation model to decouple the selfdriving system and isolate its components with a set of partitions. Second, Guardauto provides self-protection mechanisms for each target component, which combines different methods to monitor the target execution and plan adaption actions accordingly. Third, Guardauto provides cooperation among local self-protection mechanisms to identify the root-cause component in the case of cascading failures affecting multiple components. A prototype has been implemented and evaluated on the open-source autonomous driving system Autoware. Results show that Guardauto could effectively mitigate runtime failures and attacks, and protect the control system with acceptable performance overhead.

show abstract

Section: ) Safety and Security Of Autonomous Driving Vehiclesmentioning

confidence: 99%

Guardauto: A Decentralized Runtime Protection System for Autonomous Driving

Cheng

Zhou

Chen

et al. 2020

Preprint

View full text Add to dashboard Cite

show abstract

“…Implementations of a decentralised model akin to Myers' include a sensitive embedded system for BMW cars [12] and XBook [13] in a social media context. Our own model is described in §3.…”

Section: Ifc Modelsmentioning

confidence: 99%

Camflow: Managed Data-Sharing for Cloud Services

Pasquier

Singh

Eyers

et al. 2017

IEEE Trans. Cloud Comput.

View full text Add to dashboard Cite

Abstract-A model of cloud services is emerging whereby a few trusted providers manage the underlying hardware and communications whereas many companies build on this infrastructure to offer higher level, cloud-hosted PaaS services and/or SaaS applications. From the start, strong isolation between cloud tenants was seen to be of paramount importance, provided first by virtual machines (VM) and later by containers, which share the operating system (OS) kernel. Increasingly it is the case that applications also require facilities to effect isolation and protection of data managed by those applications. They also require flexible data sharing with other applications, often across the traditional cloud-isolation boundaries; for example, when government, consisting of different departments, provides services to its citizens through a common platform. These concerns relate to the management of data. Traditional access control is application and principal/role specific, applied at policy enforcement points, after which there is no subsequent control over where data flows; a crucial issue once data has left its owner's control by cloud-hosted applications and within cloud-services. Information Flow Control (IFC), in addition, offers system-wide, end-toend, flow control based on the properties of the data. We discuss the potential of cloud-deployed IFC for enforcing owners' data flow policy with regard to protection and sharing, as well as safeguarding against malicious or buggy software. In addition, the audit log associated with IFC provides transparency and offers system-wide visibility over data flows. This helps those responsible to meet their data management obligations, providing evidence of compliance, and aids in the identification of policy errors and misconfigurations. We present our IFC model and describe and evaluate our IFC architecture and implementation (CamFlow). This comprises an OS level implementation of IFC with support for application management, together with an IFC-enabled middleware.

show abstract

“…In a cloud context, we believe that it is a reasonable assumption that the cloud service provider is more trusted and trustworthy than the many tenants' applications. 2 This means that when parties need to collaborate they do not need mutual trust, but only a shared trust in the underlying IFC enforcement mechanism.…”

Section: Information Flow Control (Ifc)mentioning

confidence: 99%

“…IFC can be integrated into a distributed system environment [38], and can run on a variety of devices including cars [2], while the trust in the enforcement mechanism can be assured through the use of 'trusted hardware' [25].…”

Section: Usage Controlmentioning

confidence: 99%

Data-Centric Access Control for Cloud Computing

Pasquier

Bacon

Singh

et al. 2016

Proceedings of the 21st ACM on Symposium on Access Control Models and Technologies

View full text Add to dashboard Cite

The usual approach to security for cloud-hosted applications is strong separation. However, it is often the case that the same data is used by different applications, particularly given the increase in data-driven ('big data' and IoT) applications. We argue that access control for the cloud should no longer be application-specific but should be data-centric, associated with the data that can flow between applications. Indeed, the data may originate outside cloud services from diverse sources such as medical monitoring, environmental sensing etc. Information Flow Control (IFC) potentially offers data-centric, system-wide data access control. It has been shown that IFC can be provided at operating system level as part of a PaaS offering, with an acceptable overhead. In this paper we consider how IFC can be integrated with application-specific access control, transparently from application developers, while building from simple IFC primitives, access control policies that align with the data management obligations of cloud providers and tenants.

show abstract

Practical information-flow aware middleware for in-car communication

Cited by 5 publications

References 8 publications

Guardauto: A Decentralized Runtime Protection System for Autonomous Driving

Guardauto: A Decentralized Runtime Protection System for Autonomous Driving

Camflow: Managed Data-Sharing for Cloud Services

Data-Centric Access Control for Cloud Computing

Contact Info

Product

Resources

About