Protecting Actuators in Safety-Critical IoT Systems from Control Spoofing Attacks
This addresses security for safety-critical IoT systems, but it is incremental as it builds on existing trusted computing technologies.
The paper tackles control spoofing attacks on IoT edge devices by proposing Contego-TEE, a framework that uses trusted computing and invariant checking to secure actuators, and demonstrates its feasibility with a prototype on an ARM-based robotic vehicle.
In this paper, we propose a framework called Contego-TEE to secure Internet-of-Things (IoT) edge devices with timing requirements from control spoofing attacks where an adversary sends malicious control signals to the actuators. We use a trusted computing base available in commodity processors (such as ARM TrustZone) and propose an invariant checking mechanism to ensure the security and safety of the physical system. A working prototype of Contego-TEE was developed using embedded Linux kernel. We demonstrate the feasibility of our approach for a robotic vehicle running on an ARM-based platform.