SROS: Securing ROS over the wire, in the graph, and through the kernel
This addresses security issues in robotics systems for developers and users, but it is incremental as it builds on existing ROS infrastructure.
The paper tackles security vulnerabilities in the Robot Operating System (ROS) by proposing SROS, which adds cryptography for data transport, access control for graph policies, and process hardening using Linux Security Modules, resulting in improved security measures for robotics subsystems.
SROS is a proposed addition to the ROS API and ecosystem to support modern cryptography and security measures. An overview of current progress will be presented, rationalizing each major advancement, including: over-the-wire cryptography for all data transport, namespaced access control enforcing graph policies/restrictions, and finally process profiles using Linux Security Modules to harden a node's resource access. By making the community aware of the vulnerabilities in ROS, as well as the proposed solutions provided by SROS, we intend to improve the state of security for future robotics subsystems.