A generalized model for preventing information leakage in hard real-time systems

Author

Pellizzoni, Rodolfo ; Paryab, Neda ; Man-Ki Yoon ; Bak, Stanley ; Mohan, Sibin ; Bobba, Rakesh B.

Author_Institution

Univ. of Waterloo, Waterloo, ON, Canada

fYear

2015

fDate

13-16 April 2015

Firstpage

271

Lastpage

282

Abstract

Traditionally real-time systems and security have been considered as separate domains. Recent attacks on various systems with real-time properties have shown the need for a redesign of such systems to include security as a first class principle. In this paper, we propose a general model for capturing security constraints between tasks in a real-time system. This model is then used in conjunction with real-time scheduling algorithms to prevent the leakage of information via storage channels on implicitly shared resources. We expand upon a mechanism to enforce these constraints viz., cleaning up of shared resource state, and provide schedulability conditions based on fixed priority scheduling with both preemptive and non-preemptive tasks. We perform extensive evaluations, both theoretical and experimental, the latter on a hardware-in-the-loop simulator of an unmanned aerial vehicle (UAV) that executes on a demonstration platform.

Keywords

real-time systems; scheduling; security of data; UAV; fixed priority scheduling; hard real-time systems; hardware-in-the-loop simulator; implicitly shared resources; information leakage prevention; nonpreemptive tasks; preemptive tasks; real-time scheduling algorithms; schedulability conditions; security constraints; unmanned aerial vehicle; Aerospace electronics; Bismuth; Hardware; Real-time systems; Schedules; Security; Timing;

fLanguage

English

Publisher

ieee

Conference_Titel

Real-Time and Embedded Technology and Applications Symposium (RTAS), 2015 IEEE

Conference_Location

Seattle, WA

Type

conf

DOI

10.1109/RTAS.2015.7108450

Filename

7108450