Property-based testing for the robot operating system

Santos, André; Cunha, Alcino; Macedo, Nuno

doi:10.1145/3278186.3278195

Cited by 18 publications

(10 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…While previous work on property-based fuzzing is valid, Disco-Fuzzer outperforms them in detecting vulnerabilities that combine multiple properties in unison, which traditional property-based fuzzing detects less efficiently [39]. Additionally, DiscoFuzzer is more accessible for developers to validate discovered vulnerabilities.…”

Section: Discussionmentioning

confidence: 96%

DiscoFuzzer: Discontinuity-based Vulnerability Detector for Robotic Systems

Rivera¹,

Iannillo²,

State³

2020

Preprint

View full text Add to dashboard Cite

show abstract

Section: Discussionmentioning

confidence: 96%

DiscoFuzzer: Discontinuity-based Vulnerability Detector for Robotic Systems

Rivera¹,

Iannillo²,

State³

2020

Preprint

View full text Add to dashboard Cite

show abstract

“…The most critical component of a security tool is the ability to discover new vulnerabilities in a system. There have been several previous research endeavors to detect vulnerabilities for ROS systems, including static code analysis [24] [42], property-based testing [41], Honeypots [19] [29] , and fuzzing [18] [44]. All of these disjointed techniques yield valuable insights into the security of a robotic system, and as such, any integrated security system must make full use of them.…”

Section: Robustness Assessmentmentioning

confidence: 99%

“…Indeed, an attacker can easily impersonate any subscriber node and querying the master for sensitive information. Santos et al [41] targeted ROS systems for a propertybased testing framework. The framework automatically generates test scripts for various configurations of a ROS system, while detecting for crashes or violation of defined properties.…”

Section: Related Workmentioning

confidence: 99%

ROS-Immunity: Integrated Approach for the Security of ROS-enabled Robotic Systems

Rivera¹,

Iannillo²,

State³

2020

Preprint

View full text Add to dashboard Cite

The Robotic Operating System (ROS) is the de-facto standard for the development of modular robotic systems. However, ROS is notorious for the absence of security mechanisms, only partially covered by recent advancements. Indeed, an attacker can easily break into ROS-enabled systems and hijacks arbitrary messages. We propose an integrated solution, ROS-Immunity, with small overhead that allows ROS users to harden their systems against attackers. The solution consists of three components: robustness assessment, automatic rule generation, and distributed defense with a firewall. ROSImmunity is also able to detect on-going attacks that exploit new vulnerabilities in ROS systems. We evaluated our solution against four use-cases: a self-driving car, a swarm robotic system, a centralized assembly line, and a real-world decentralized one. ROS-Immunity was found to have minimal overhead, with only an additional 7-18% extra system power per robot required to operate it. Furthermore, ROS-Immunity was able to prevent a wide variety of ROS system attacks with a worst-case false positive rate of only 17% and a typical false positive rate of 8%. Finally, ROS-Immunity was found to be able to react to and stop attackers after at most 2.4 seconds, when confronted with unknown vulnerabilities.

show abstract

“…A tester should design and implement every test in the proper language with test inputs and oracles for every behavior they want to check. Santo et al [39] extended ROS unit tests with property-based testing. Their tool randomly and automatically generates test inputs while checking two simple properties of the node: liveness (a node should not crash) and interface stability (the set of topics should not change).…”

Section: Ros Challengementioning

confidence: 99%

“…However, Santos et alproposed a property-based testing approach for ROS. Property-based testing is very similar to fuzz testing, but the latter does not require familiarity with the target to specify properties and shapes [39].…”

Section: Introductionmentioning

confidence: 99%