...
  • 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>Future generation computer systems >CShield: Enabling code privacy for Cyber-Physical systems
【24h】

CShield: Enabling code privacy for Cyber-Physical systems

机译:CSPIELD:为网络物理系统启用代码隐私

获取原文
获取原文并翻译 | 示例
           
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Cyber-Physical systems (CPS) play significant roles in critical infrastructure, smart facility and industrial control system. Lacking adequate security mechanism makes them more vulnerable and fragile than conventional computer systems (Ashibani and Mahmoud, 2017), which brings about new potential threat to control system. The privacy data of CPS is critical and sensitive in terms of safety and security, of which leakage would facilitate the attacker corrupting manufacturer infrastructures, increasing the risks of human injury and enhancing the potential loss of assets. In particular, we reveal a new threat target to CPS that adversary can remotely and easily steal CPS sensitive data, e.g. control program, without requirement for any authentication. Furthermore, to enhance the privacy of CPS program and mitigate the privacy threat target to CPS, in this paper, we propose a novel CPS code protection approach adapting to various control scenarios. We pioneer CSheild, an automatic code obfuscation tool for CPS privacy protection through concealing the sensitive data of CPS control program. Our technique renames and splits the register variables which are used in CPS control program, modifies program's control flow and appends heterogeneous confusion code to the program. We present a prototype of CSheild which can automatically generate various mutant programs, and demonstrate the feasibility of our CPS code obfuscation approach in real-world experiments. We also validate Csheild obfuscation effectiveness through volunteers test, Kolmogorov-Smirnov test and Shannon Entropy test. Result shows that our approach works well on CPS device and it is effective in code obfuscation.
机译:网络物理系统(CPS)在关键基础设施,智能设施和工业控制系统中起着重要作用。缺乏足够的安全机制使它们比传统的计算机系统(Ashibani和Mahmoud,2017)更脆弱,易碎,这带来了对控制系统的新潜在威胁。 CPS的隐私数据在安全性和安全性方面都是至关重要的,泄漏将促进攻击者腐败制造商基础设施,提高人民伤害的风险,并提高资产潜在损失。特别是,我们揭示了对CPS的新威胁目标,该目标是对手可以远程,轻松地窃取CPS敏感数据,例如,控制程序,不需要任何身份验证。此外,为了提高CPS计划的隐私并使隐私威胁目标降低到CPS,我们提出了一种新的CPS代码保护方法,适应各种控制方案。我们通过隐藏CPS控制程序的敏感数据,是CPS隐私保护的自动代码混淆工具。我们的技术重命名并拆分在CPS控制程序中使用的寄存器变量,修改程序的控制流程并将异构混淆码附加到程序。我们介绍了CSheild的原型,可以自动产生各种突变计划,并展示了我们在现实世界实验中的CPS代码混淆方法的可行性。我们还通过志愿者测试,Kolmogorov-Smirnov测试和Shannon熵测试验证了Csheild混淆效率。结果表明,我们的方法适用于CPS设备,并且在代码混淆方面有效。

著录项

  • 来源
    《Future generation computer systems》 |2021年第12期|564-574|共11页
  • 作者

    Kai Yang; Xiaodong Lin; Limin Sun;

  • 作者单位

    Institute of Information Engineering Chinese Academy of Sciences China School of Cyber Security University of Chinese Academy of Sciences China;

    School of Computer Science University of Guelph Canada;

    Institute of Information Engineering Chinese Academy of Sciences China School of Cyber Security University of Chinese Academy of Sciences China;

  • 收录信息 美国《科学引文索引》(SCI);美国《工程索引》(EI);
  • 原文格式 PDF
  • 正文语种 eng
  • 中图分类
  • 关键词

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号