1 Panel Perspective: Research Directions for Security and Networking in Critical Real-Time and Embedded Systems Helen Gill, Ph.D. CISE/CNS National Science.

Slides:

Advertisements

Similar presentations

All rights reserved © 2006, Alcatel Grid Standardization & ETSI (May 2006) B. Berde, Alcatel R & I.

Advertisements

AIAA Task Force on Earth Observations 2 October 2009 AIAA HQ Reston VA.

Delivery of industrial-strength Grid middleware: Establishing an effective European approach Professor Yike Guo Imperial College London, UK & InforSense.

Using MapuSoft Instead of OS Vendor’s Simulators.

Developing the Mobile Learning Business London, 24 September 2001 Mark Watkinson e-Learning Principal, IBM Region North (c) Copyright IBM Corp m-

Applying the Human Views for MODAF to the conception of energy-saving work solutions Dr Anne Bruseberg Systems Engineering & Assessment Ltd, UK on behalf.

Sensors and location technologies – the front end of ISR

September 30, 2011 OASIS Open Smart Grid Reference Model: Standards Landscape Analysis.

GENI: Global Environment for Networking Innovations Larry Landweber Senior Advisor NSF:CISE Joint Techs Madison, WI July 17, 2006.

EInfrastructures (Internet and Grids) US Resource Centers Perspective: implementation and execution challenges Alan Blatecky Executive Director SDSC.

1 Cyberinfrastructure Framework for 21st Century Science & Engineering (CF21) IRNC Kick-Off Workshop July 13,

Introduction to Cyber Physical Systems Yuping Dong Sep. 21, 2009.

February 21, 2008 Center for Hybrid and Embedded Software Systems Cyber-Physical Systems (CPS): Orchestrating networked.

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

1 Workshop on Research Directions for Security and Networking in Critical Real-Time and Embedded Systems Organizers: NC State University & UNC Chapel Hill.

Software Quality Processes – Part I CSSE 376, Software Quality Assurance Rose-Hulman Institute of Technology March 16, 2007.

High Confidence Medical Device Software and Systems (HCMDSS) Workshop Planning Meeting Insup Lee Department of Computer and Information Science University.

Copyright 2005 Northrop Grumman Corporation 0 Critical Success Factors for system-of-system architecture / engineering 25 October 2006 Neil Siegel Sector.

February 11, 2010 Center for Hybrid and Embedded Software Systems Cyber-Physical Systems (CPS): Orchestrating networked.

High Confidence Medical Device Software and Systems Workshop Planning Meeting Government Introduction November 16, 2004 Sally E. Howe, Ph.D. Associate.

NSF Workshop, Washington DC, Nov 2003_ R Harley 1 Summary of EPRI-NSF Workshop held in Playacar, Mexico, April 2002, on GLOBAL DYNAMIC OPTIMIZATION OF.

1© Copyright 2015 EMC Corporation. All rights reserved. SDN INTELLIGENT NETWORKING IMPLICATIONS FOR END-TO-END INTERNETWORKING Simone Mangiante Senior.

Robots at Work Dr Gerard McKee Active Robotics Laboratory School of Systems Engineering The University of Reading, UK

A Robust Health Data Infrastructure P. Jon White, MD Director, Health IT Agency for Healthcare Research and Quality

Industry Session – Mixed Criticality and Multi-Core David Corman Program Director, Cyber Physical Systems National Science Foundation 1.

Networked Control Systems Vincenzo Liberatore. Today: Cyberspace Interact with remote virtual environment – On-line social activities Communicate with.

Computing in Atmospheric Sciences Workshop: 2003 Challenges of Cyberinfrastructure Alan Blatecky Executive Director San Diego Supercomputer Center.

Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.

A Research Agenda for Accelerating Adoption of Emerging Technologies in Complex Edge-to-Enterprise Systems Jay Ramanathan Rajiv Ramnath Co-Directors,

1 Autonomic Computing An Introduction Guenter Kickinger.

Copyright © 2006 CyberRAVE LLC. All rights reserved. 1 Virtual Private Network Service Grid A Fixed-to-Mobile Secure Communications Framework Managed Security.

High Confidence Medical Device Software and Systems Workshop: Government Participants and their Expectations June 2 – 3, 2005 Sally E. Howe, Ph.D. Associate.

INTERNET2 COLLABORATIVE INNOVATION PROGRAM DEVELOPMENT Florence D. Hudson Senior Vice President and Chief Innovation.

Tufts Wireless Laboratory School Of Engineering Tufts University “Network QoS Management in Cyber-Physical Systems” Nicole Ng 9/16/20151 by Feng Xia, Longhua.

Designing the Microbial Research Commons: An International Symposium Overview National Academy of Sciences Washington, DC October 8-9, 2009 Cathy H. Wu.

Page 1 Wei Zhao 3/25/2005 Information Technologies: Challenges and Opportunities Wei Zhao Whatever I said here does not represent anybody, including myself!

Systems Engineering Differs from SoSE Stuart H. Rubin SSC-SD James Joshi University of Pittsburgh 16 April, 2007.

ESA/ESTEC, TEC-QQS August 8, 2005 SAS_05_ESA SW PA R&D_Winzer,Prades Slide 1 Software Product Assurance (PA) R&D Road mapping Activities ESA/ESTEC TEC-QQS.

Man-Sze Li IC Focus Enterprise Interoperability Research Roadmap SME aspects.

Halifax, 31 Oct – 3 Nov 2011ICT Accessibility For All SMART GRID ICT: SECURITY, INTEROPERABILITY & NEXT STEPS John O’Neill, Senior Project Manager CSA.

Advancing foresight methodology through networked conversations Ted Fuller Peter De Smedt Dale Rothman European Science Foundation COllaboration in Science.

An R&D Manager’s Perspective TechExpo October 5, 2004 Presented by: Veena Rawat.

SBIR Final Meeting Collaboration Sensor Grid and Grids of Grids Information Management Anabas July 8, 2008.

Internet2 Health Sciences Mary Kratz Internet2 Health Science Manager March Spring Member Meeting International Session.

Networked Embedded and Control Systems WP ICT Call 2 Objective ICT ICT National Contact Points Mercè Griera i Fisa Brussels, 23 May 2007.

NA-MIC National Alliance for Medical Image Computing UCSD: Engineering Core 2 Portal and Grid Infrastructure.

Claudio Allocchio TERENA Technical Programme - Update General Assembly, 21 October 2005, Budapest 1 TERENA Technical Programme Update Claudio Allocchio.

Interoperability Standards and Next Generation Interconnectivity Pankaj Batra Chief (Engineering) CERC.

EU/US International Conference on Aging, Disability, and Independence Preparatory Workshop: High Technology Track June 26-27, 2003 NSF Activities in Disability-related.

June 17, 2009 Michael W. Howard, Ph.D. Sr. Vice President The Interoperable Smart Grid Evolving.

Marv Adams Chief Information Officer November 29, 2001.

1 © 2004 Cisco Systems, Inc. All rights reserved. Cisco Confidential Session Number Presentation_ID Building the Future Cisco Networking Academy Program.

Phoenix Convention Center Phoenix, Arizona Transactive Energy in Building Clusters [Innovation][Regional Innovation in Arizona] Teresa Wu Arizona State.

© 2012 IBM Corporation IBM Security Systems 1 © 2012 IBM Corporation Cloud Security: Who do you trust? Martin Borrett Director of the IBM Institute for.

NITRD/HCSS Perspective “Sufficient Evidence?” Design for Certifiably Dependable Systems Helen Gill, Ph.D. CISE/CNS National Science Foundation Co-Chair,

NCP Info DAY, Brussels, 23 June 2010 NCP Information Day: ICT WP Call 7 - Objective 1.3 Internet-connected Objects Alain Jaume, Deputy Head of Unit.

NITRD Networking and Information Technology Research and Development Program 19 March 2009.

Latest Strategies for IT Security Margaret Myers Principal Director, Deputy CIO United States Department of Defense North American Day 2006.

30 November 2001 Advisory Panel on Cyber Infrastructure National Science Foundation Douglas Van Houweling November 30, 2001 National Science Foundation.

Engineering the Advanced Power Grid: Research Challenges and Tasks M. L. Crow, F. Liu, B. McMillin, D. Tauritz {crow, fliu, ff, University.

Internet2 Strategic Directions October Fundamental Questions  What does higher education (and the rest of the world) require from the Internet.

Laurie E. Locascio, Ph.D. Director, MML/NIST NIST/MML: Measurement Assurance for Biological Systems.

Expedition Workshop Strategic Leadership For Networking and Information Technology Education September 16, 2008 Chris Greer Director, NCO.

NITRD Networking and ITRD IT R&D CIC computing, info and comm HPCC and communication HPC high-performance computing George O. Strawn NITRD co-chair and.

Advancing National Wireless Capability Date: March 22, 2016 Wireless Test Bed & Wireless National User Facility Paul Titus Department Manager, Communications.

Report from Session #2: SDN/NFV

Helen Gill, Ph.D. CISE/CNS National Science Foundation

Cyber System-Centric Approach To Cyber Security and CIP

Report from Session #2: SDN/NFV

Presentation transcript:

1 Panel Perspective: Research Directions for Security and Networking in Critical Real-Time and Embedded Systems Helen Gill, Ph.D. CISE/CNS National Science Foundation RTAS Workshop, San Jose, CA April 4, 2006

2 High Confidence Systems Technical Challenge: "Systems of Embedded Systems" Now: information focus, human-machine interface –Operator skill, “competent human intervention” –System, operator certification Future: open, multi-level closed loop, mixed initiative, autonomous systems and multi-systems Typical domains: –Medical: “plug and play” operating room of the future –Aviation: mixed manned, autonomous flight –Power systems: Future “SCADA-D/PCS” for distributed generation, renewable energy resources –National Security: common operating picture, global information grid, future combat systems

3 Networking: An Outsider’s View Traditional networking perspective: Core + Edge –Core: Bulk packet delivery system –Other issues largely delegated to edge networks –Internet technology is pervasive as an enabling technology for enterprise systems but (though used for distributed real-time applications) has not penetrated real-time sensing and control networks (FlexRay, CAN, …) –“Sensor Nets” perspective – just attach sensors and actuators at the edge, provide services in network (sensor grids) Gaps: –Topology control for complex real-time systems with wide-area characteristics (remote surgery; operating room of the future; power grid control) –Do old assumptions (statistical properties of network under multi-path) apply under topology slicing, real-time QoS? –What are the security challenges if these assumptions change (e.g., circuits; map topology to physical resources)? Concerns: –Static “layered view”, little discourse on autonomous vs. application-determined network management, operation

4 Cyber Security: An Outsider’s View Traditional cyber security perspective: information assurance –Frameworks for protection (crypto, authentication/authorization, information access control, detection, recovery) –Premise: Data-oriented, rather than process-oriented protection –Simple principles: isolation (e.g., separation kernels), non-interference, subject/object classifications and compartmentalization, (…insider threat?) Gaps: –System-system coordination, reconfiguration, reactive systems, authorization of human information access vs. autonomous cooperative/competitive real- time operation (more than mere delegation of authorized information access) Concerns: –Secondary focus, limited impact of cyber security research on systems research (exceptions: PKI, IDS, VPN), especially for time-critical systems –Disconnect from other QoS issues

5 Real-Time Systems An Outsider’s View Traditional real-time sytems perspective: scheduling –Closed, single-system frameworks, persistent scheduling decisions (though growing corpus on dynamic scheduling) –Process scheduling and control perspective, extension to energy management –Hard real-time scheduling for single-system provisioning of cyclic workload, limited dependent task scheduling, best-effort soft real-time –Indirect treatment of concurrency, distributed operation –Loose relationship to changing embedded sensing and control system requirements (need to close loops at higher levels) –Must continue to build above a weak technology base: single-system RTOS x Middleware x RTVM Gaps: –Real-time reconfiguration, real-time coordination, deep integration of networking and security services, preparation for technology diversity and change (e.g., multi-core/multi-threading models) Concerns: –Lack of end-to-end characterization: controlled system dynamics, “discontinuous” security and network interactions, resource models, time-aware trust/”certainty” models

6 Worried Observations “Eyes on the trail” phenomenon “My community has the solution” perspective: –Power grid collapse is just a cyber security problem –Power grid collapse is just a real-time problem –Power grid collapse is just a networking/communication problem –Power grid collapse is just a control problem –… (hardware platforms, …) High-level “wisdom” is widely believed to suffice –All we need is “dependability” (please refer to the taxonomy…) –Networked embedded control system design is just an“application problem” –“It’s all software” (unrefined concept), and better software engineering will take care of it

7 Some obvious steps forward Break down the stovepipe boundaries –End-to-end, cross-disciplinary systems problems –Closing the loop “sharpens the mind” so consider real “killer apps” (e.g., safety critical), not just cell phones –Move beyond performance, information, enterprise, best-effort –Teams: mixed expertise is necessary Ask: What core research would yield real progress? –NOT system instance by system instance –NOT tunnel vision on isolated, single-discipline solutions Ask: What are some fundamental, shared (and complexity- removing) research questions? Ask: What would a better technology base look like?

8 Thank You for Your Help

9 R&D Planning for CIP and High Confidence Systems NSTC Committee structure CT – Committee on Technology –Networking, IT R&D (NITRD) Subcommittee, “blue book” –Infrastructure Subcommittee CIP R&D Planning National CIP R&D Plan CIIP R&D Plan NITRD R&D Planning - High Confidence Software and Systems (HCSS) Coordinating Group Large Scale Networking (LSN) Coordinating Group Cyber Security and Information Assurance (CSIA) Interagency Working Group NSTC CT NITRD LSN CSIA HCSS … Infrastructure H&NS …

10 NITRD HCSS Coordinating Group Assessment Actions Backdrop: –NSF/OSTP Critical Infrastructure Protection Workshop, Leesburg, VA, September 2002, –NSF Workshop, on CIP for SCADA, Minneapolis MN, October –National Academies’ study: “Sufficient Evidence? Design for Certifiably Dependable Systems”, National Coordination Office summary report(s) derived from workshops, industry input sessions, NAS study

11 NITRD HCSS Coordinating Group Assessment Actions: Workshops High Confidence Medical Device Software and Systems (HCMDSS), –Planning Workshop, Arlington VA, November 2004, –National R&D Road-Mapping Workshop, Philadelphia, Pennsylvania, June 2005, High Confidence Aviation Systems –Planning Workshop on Software for Critical Aviation Systems, Seattle, WA, November 21-22, 2005 –National R&D Road-Mapping Workshop, venue TBD, August 2006

12 HCSS Workshops, continued High Confidence Critical Infrastructures: “Beyond SCADA and Distributed Control Systems” –Planning US Planning Workshop, Washington, DC, March 14-15, 2006 EU-US Collaboration Workshop, Framework Programme 7 linkage, March 16-17, 2006 US National R&D Road-Mapping Workshop, October, 2006

13 Other Current HCSS Actions: Assessment of Real-Time Operating System (RTOS) Technology Base Starting point: single-system RTOS products, middleware appliqué for distributed systems, rudimentary open sensing and control platforms (incompatible schedulers, single-issue architectural assumptions, weak security services, …) Needed: Clean OS-level support for open, hierarchical control systems, dynamic topology, coordinated action So what are we doing about this? –HCSS RTOS technology assessment, vendor non-disclosure briefings: Integrators: Adventium Laboratory, Boeing, Ford Motor Company, Lockheed Martin, MIT Lincoln Laboratory, Northrop Grumman, Raytheon. Rockwell Collins, MotoTron Technology: Sun Microsystems, IBM, Microsoft, Honeywell, Red Hat, Wind River Systems, Green Hills, LinuxWorks, Real-Time Innovations, Inc., QNX Software Systems, Ltd., BAE Systems, Kestrel Technology, BBN Technologies

14 High-Confidence Software and Systems (HCSS) Agencies Air Force Research Laboratories* Army Research Office* Department of Defense/ OSD Defense Advanced Research Projects Agency Department of Energy Federal Aviation Administration* Food and Drug Administration* National Air & Space Administration National Institutes of Health National Institute of Science and Technology National Science Foundation National Security Agency Office of Naval Research* * Cooperating agencies