SoK: Security in Real-Time Systems

2.1 Architecture and System Development Model

In Figure 1, we present a high-level illustration of an RTS. Each real-time application in the system (called task task) represents a time-critical function and a collection of such tasks are hosted on a hardware platform (mostly single-core systems). The concept of tasks in RTS can be trivially mapped with processes or threads in general-purpose OS. The scheduler in real-time OS (RTOS) uses timers and interrupt handlers to enforce timing guarantees at runtime. This ability of the scheduler to interrupt application processing at precise time instants is essential to ensure the “correctness” of the system. Access to shared platform resource (such as caches, buses, memory) is regulated using resource sharing protocols to ensure data consistency and bounds on waiting time so that deadlines can be met. The communication network in RTS is required to provide service with low jitters and meet end-to-end message deadlines for all messages.

2.2 Task and Scheduling Model

Tasks in RTS are generally characterized by their periods (inter-arrival times), constant, upper bounded execution times and temporal constraints (deadlines). Schedulability tests [10, 11, 12] are used to determine if all tasks in the system meet their respective deadlines. If this is the case, then the task set is deemed to be “schedulable” and the system, safe. In Listing 1 we present an abstraction of a real-time task. running on real-time Linux (RT_PREEMPT [13]). Line 4 specifies the priority and Line 11 performs the main task functionality. Timers are updated in Lines 14-19 for periodic invocations.

Listing 1.

View Figure

In real-time scheduling, task priorities can be either fixed or dynamic. Examples of commonly used fixed and dynamic priority algorithms are: (a) rate monotonic (RM), where task priorities are assigned based on periods (i.e., shorter period implies higher priority) and (b) earliest deadline first (EDF), where a job with shortest deadline is scheduled first [14]. Scheduling algorithms can be (i) preemptive (tasks can be preempted by higher priority tasks) or (ii) non-preemptive (when a task starts executing, it will not be preempted and execute until completion). A system is called mixed-criticality RTS if it has more that one criticality levels (say safety critical, mission critical, and low critical) [15].

4.1 Reconnaissance

In order for many attacks to succeed, reconnaissance is typically one of the early steps in the process. It is in the interest of the attacker to stay undetected during this time to both, (a) collect necessary and sufficient information to enable their attacks and (b) not alert system operators and their defensive actions. In the following, we illustrate two reconnaissance techniques in RTS identified by the researchers.

Chen et al. [44] developed techniques to reconstruct the task schedule of RTS so targeted attacks can be launched against critical tasks. In particular, they develop an algorithm (ScheduLeak) to deconstruct constituent jobs of the tasks from “busy periods” (i.e., a block of time when one or more tasks are executing). This allows the adversary to determine what tasks are running when by just observing the busy periods. The inferred, ordered, job set output by the algorithm allows the attacker to reconstruct the schedule (with up to 99% success rate if tasks have fixed execution times) and pinpoint the possible start time of any required victim task for the foreseeable future.

Liu et al. [45] showed that attackers can infer the engine speed of a vehicle by observing the real-time scheduling sequences on the engine control unit (ECU). They showed that the ECU schedule (consisting of the core engine task and other regular real-time tasks) and task periods can be obtained by observing the electromagnetic radiation using a near-field probe and hardware signal analyzer. The deduced period was then used to obtain the speed profile of the engine.

4.2 Targeted Attacks

We now present work on targeted attacks where adversaries tailor their attack strategy to leverage a specific RTS property.

4.3 Summary of Our Findings

While there exists some recent work on defensive techniques for RTS (see Section 5 and Section 7), there is considerably less focus on attack mechanisms. There is a lack of articles that demonstrate the techniques to extract important information and/or disrupt the normal operation of the system while still remaining undetected. We find that researchers study attack mechanisms from two contexts: (i) stealthy attacks (infer sensitive information by leveraging side-channels [44, 45]) and (ii) targeted attacks (increase in execution time of the victim tasks by modify tasks parameters such as periods [46] or blocking shared cache [48]). Out of four attack techniques we reviewed, three of them [44, 45, 46] explicitly consider single core, fixed-priority systems and only one mechanism (DoS attacks on shared caches) [48] is applicable to multicore platforms. Three of them [44, 45, 48] evaluate/demonstrate the attacks on real hardware/embedded platforms while one (Butterfly attack [46]) is evaluated using synthetic case studies.

5.1 Integrating Cryptographic Operations

Integrating security into RTS that enables confidentiality, integrity and authentication increases the computational load and may adversely affect the timing constraints of existing time-critical tasks. We now discuss various techniques proposed in literature for incorporating (and optimizing) security services (see Table 2 for a summary).

5.2 Integrating Security Monitoring Techniques

We now discuss scheduler-level techniques to integrate security checking (such as monitoring task execution behavior and protecting control flow integrity). Table 3 summarizes the articles presented in this section.

5.3 Side-Channel Defense: Leakage Prevention

We first present techniques that prevent information leakage due to the use of shared resources (Section 5.3.1) and then analyze the effect of power leakage on real-time scheduling (Section 5.3.2) and discuss techniques to defend schedule-based side-channel leakages (Section 5.3.3).

5.4 Side-Channel Defense: Schedule Obfuscation

Another way to protect RTS from side-channel attacks is to randomize the task schedule to reduce the observability of periodic real-time applications [40, 41, 42, 43]. A randomized task schedule results in different scheduling orders (and response times) of the tasks. With randomization, even if an observer is able to capture the exact schedule for a (limited) period of time the rest of the schedule will show different timing behavior for execution of the tasks while retaining real-time guarantees. However, this is not straightforward for RTS since schedule obfuscation leads to priority inversions [59] and may cause missed deadlines.

Instead of selecting the highest priority task at each scheduling point (as is the case for vanilla real-time schedulers), TaskShuffler [40] picks a random task (subject to deadline constraints). Baek et al. [41] further extend TaskShuffler for multicore platforms. Contrary to TaskShuffler, Vreman et al. [42] generates a list of randomized schedules offline, based on a metric—called upper-approximated entropy—to quantify the diversity of the execution as well as the probability of learning the schedule (by an adversary). Krüger et al. [43] propose a combined online/offline randomization scheme to reduce determinism for time-triggered systems [60] where tasks are executed based on a pre-computed, offline, slot-based schedule.

6.1 Analysis

We now evaluate all four different categories of schedule-based defenses and demonstrate how to derive our metric for each. We summarize our findings in Section 6.2.

Note: We assume that the reader is familiar with the content presented in Section 5 since our metric is meant to measure (and compare) the techniques presented there.

Study 1: Integrating Cryptographic Services in RTS

The closest analogy for the measurement of an “attacker’s burden” is in the integration of cryptographic primitives in RTS [19, 20]. It is well known that the strength of a cryptographic algorithm is estimated by the number of operations (and hence, time) it takes to reconstruct the key [63]. For instance, if the key is \(l\) bits long and the adversary can test \(k\) keys per time unit, it will take, on the average, \(\tfrac{2^{l-1}}{k}\) time units to find the key. While this method already incorporates a notion of time, albeit in a loose manner, researchers have analyzed additional timing properties, viz.,

Hence, based on this intuition, we define the attacker’s burden for real-time cryptographic operations (\(AB_{crypto}\)) as a function of the key size (\(l\)) the number of services (\(M\)) and the maximum key size that is tolerable in the RTS (\(l^{max}\)) as follows:

That is, the amount of time available to an attacker (\(\mathcal {T}_{crypto}\)) is inversely proportional to the difficulty of obtaining the key, i.e., \(\mathcal {T}_{crypto} = \tfrac{1}{AB_{crypto}}\), where \(\sum _{i=1}^{N} \underset{\forall j}{\min } \lbrace \tfrac{{ l_i^j }}{l^{max}} \rbrace M_i \le AB_{crypto} \le \sum _{i=1}^{N} M_i\). In other words, the time available to an attacker (between cryptographic operations) is reduced and their “burden” increases with the key size and number of operations.

Figure 3(a) plots \(AB_{crypto}\) for integrating the AES algorithm into RTS—for three key sizes: 128, 192, and 256 bits. As expected, the attacker’s burden (y-axis), i.e., the amount of time \(\mathcal {T}_{crypto}\) available to break the security mechanism (a cryptographic algorithm in this case), decreases (i.e., \(AB_{crypto}\) increases) with an increase in key size due to higher computing demand (x-axis). While this may be obvious in the case of crypto, it is less so for the other security mechanisms as we shall see—in fact, the direct correlation with cryptographic algorithms helps establish a baseline for how the metric can be used.

Fig. 3.

View Figure

Figure 3(a) demonstrates that with increasing key sizes (that are still within the max key sizes that are acceptable for a given timing constraint) an attacker will have to expend increasing amounts of time. As expected, the computing load of a real-time task also increases with additional cryptographic operations, but just barely, as seen in Figure 3(b) that plots the computing load (y-axis) vs. increasing key sizes (x-axis). The figure shows the base load using the horizontal dotted line (i.e., without any cryptographic operations) and the effect of adding one or two crypto operations in each job cycle (the two bars, dark and light)—while the burden for the attacker is increased due to larger key sizes, the computing load on the system (for normal operations) is only slightly increased. It is important to note that these solutions were designed to finish before the deadlines (the computing loads even with the crypto operations are lower than the deadline) but, until now, no one had captured the additional timing load from the perspective of the attackers.

Study 2: Integrating Periodic Security Monitoring Tasks

Security mechanisms based on periodic monitoring operate on the principle that they must execute at least as often (if not faster) than a designer specified frequency [32, 33, 34, 35, 64] in order to detect intrusions. From the perspective of an attacker, an increased monitoring frequency means a higher chance of detection or, put another way, lesser time between checks to carry out a successful attack. Of course, as before, the frequency of the monitoring tasks is limited by the need to meet the timing requirements (deadlines) of the RTS and do useful work. Hence, the burden on an adversary (\(AB_{monitor}\)) can be defined as, how much time is available between successive invocations of a monitoring task, i.e.,

What \(AB_{monitor}\) indicates is that if the \(j\)th and (\(j+1\))th job of monitoring task, invoked at times \(t_j\) and \(t_{j+1,}\) respectively (where \(t_{j+1} \gt t_j\)), then an attacker will have at most \(t_{j+1} - t_j\) units of time (i.e., the monitoring frequency/period of the security task) to launch and complete its attack. Hence, we calculate the time available for an adversary to cause any damage as follows: i.e., \(\mathcal {T}_{monitor} = \tfrac{1}{AB_{monitor}}\). Let \(U_i\) is the processor load (i.e., ratio between its execution to period) of the task \(\tau _i\) and \(C_M\) is the execution time of monitor task. We can calculate an lower bound on time available for the attacker as follows: \(\mathcal {T}_{monitor} \gt \tfrac{C_M}{U_B - \sum _{\forall i \ne M} U_i}\) where and \(U_B\) is the maximum available CPU utilization for a given system.¹

To demonstrate how this metric can be applied, let the designer specified minimum monitoring frequency be designated as a “base frequency”.² In our simulations, we increase the monitoring frequency and then measure the effects on the attacker burden; this is plotted in Figure 4. The x-axes of Figure 4(a) and Figure 4(b) show the percentage of CPU time spent on monitoring. The y-axis of Figure 4(a) is \(AB_{monitor}\). We further plot the time available the attacker and the impact on the CPU load, i.e., the left y-axis is \(\mathcal {T}_{monitor}\) while the right y-axis plots the computational load on the system.³ As shown by the graph, as we increase the frequency of monitoring the attacker’s burden increases, i.e., the amount of time left for an attacker is significantly reduced. As expected, the load on the system increases dramatically and, after a certain point, the system becomes unschedulable—i.e., real-time tasks start missing their deadlines. Hence, there is a limit on how much increased monitoring can be tolerated by the system.

Fig. 4.

View Figure

Study 3: Leakage Prevention by Shared State Cleanup

When considering techniques that use state cleansing to prevent side-channel attacks in RTS [36, 37], the attacker’s burden must capture the amount of time left for the adversary to retrieve the information in the shared resource (e.g., caches) before it is “flushed”. In most of these techniques (Section 5.3.1), the researchers define a “security relationship” (a lattice [8, 36, 65], a pairwise function [37]) between tasks in the system. When the context switches from a task with a higher security classification to one that is lower, these security algorithms “flush” the shared resource, thus preventing the leakage of information while also incurring the overheads for the cleanup. Hence, we measure the attacker’s burden (\(AB_{flush}\)) as the amount of time between consecutive flushing events,

where \(t_{j}\) and \(t_{j+1}\) are the \(j\)th and (\(j+1\))th context switches. \(Q_p\) is the \(p\)th percentile time difference of all consecutive context switches in the schedule; the attacker will have \(AB_{flush}\) unit of time (with probability \(p\)) to snoop on the shared medium. We use \(Q_p\) since the time intervals between consecutive flushes can vary. So with the pth \(^{}\) percentile, we can say that the interval is \(x\) with probability \(p\). As in the case of periodic monitoring, we can calculate the time available for the attacker before two consecutive flushing as follows: \(\mathcal {T}_{flush} = \tfrac{1}{AB_{flush}}\).

The x-axis of Figure 5(a) plots the increased frequency (reduced period) for the critical (higher security level) task while the y-axis represents the attacker’s burden, \(AB_{flush}\). Assuming that the attacker’s frequency/period is fixed and we are able to adjust the frequency of the critical task(s), the figure shows that it becomes increasingly difficult for an attacker to carry out its objectives (i.e., \(AB_{flush}\) increases) since there is less time available between the cleaning events. On the other hand, as shown in Figure 5(b) (x-axis frequency of critical tasks; y-axes number of flushes and system load, respectively), the overall load on the system is reduced as the critical task frequency is increased—since there are fewer flushes between instances. Note that the assumption is that the cost of a “cleanse”/flush is assumed to be constant in these articles. Also, the authors have computed an upper bound on the number of flushes required by preemptive and non-preemptive systems as \(2n_c +1\) and \(n_c +1\), respectively where “\(n_c\)” is the number of critical jobs in the system. Hence, designers can now compute the costs (state cleanup overheads, increased system utilization) vs benefits (reduced time for adversaries to carry out attacks) by using the attacker’s burden value.

Fig. 5.

View Figure

Study 4: Schedule Obfuscation

As mentioned earlier, schedule randomization [40, 41, 42, 43] has been suggested as a mechanism to prevent side-channel attacks in RTS. From this work, we note that there is a direct correlation between the ability of an adversary to recreate a task schedule (or timing behavior) to: (i) the tine window for carrying out observations and (ii) the predictable, repeating execution patterns of the real-time tasks. Hence, the main objective of these obfuscation mechanisms is to reduce both of the above factors. By elongating the window of time when a task can appear, the authors reduce the predictability of the behavior that can be observed by an attacker. Since at any point only one outstanding job of a task can exist in a window (the window is usually the period of the task),⁴ an attacker has to observe the system for a larger window of time, thus leaving it with very little time to reconstruct the scheduling behavior before the next instance of the job arrives.

Hence, to measure the burden on an attacker, we calculate the “spread” of a task \(\tau _i\), i.e., what is the largest window of time when a task can appear. For a given schedule, we compute the attacker’s burden, \(AB_{rand}\), as:

This formula computes the spread of the response times, \(R_i\) (time between arrival and completion of a task), across its period, \(T_i\). For a given schedule, a higher value of \(AB_{rand}\) indicates that the task can appear in a larger window of time, once released. We further calculate the time available for the attacker when the randomization is active as follows: \(\mathcal {T}_{rand} = T_i - \tfrac{1}{T_i} AB_{rand}\). The metric \(\mathcal {T}_{rand}\) tells us how much “slack time” available for an untrusted task to carry out any malicious action (say observing the behavior of an victim task) before its next periodic invocation.

In Figure 6(a) we plot this attacker burden (y-axis) against the utilization (x-axis) of both randomized as well as vanilla systems, for a rate monotonic (RM) scheduler. As we see from the figure, the purple dots (vanilla, without schedule obfuscation) show a much narrower range of times when tasks execute—thus making it easier for adversaries to observe and recreate their behavior. When the schedule obfuscation/randomization schemes are applied, the tasks appear more spread out and it becomes harder for an adversary to predict their schedules and/or timing behavior.

Fig. 6.

View Figure

The problem with introducing randomization techniques is that they increase context switch overheads as shown in Figure 6(b)—the y-axis plots the ratio of context switches in randomized schedules to vanilla schedules while the x-axis plots the CPU utilization. As we see from the plot, the randomized schedules have significantly higher context switch overheads but the attacker’s burden provides information on the security gains obtained from such mechanisms to designers—hence, they can decide whether the security vs. overheads tradeoff is worth investing in.

Study 5: Comparison across All Four Schemes

We finally compare all four schemes in Figure 7 with a common metric (CPU load, x-axis in the figure) and plot the attacker’s burden (y-axis, normalized into the interval \([0,1]\)). We note that while we plot the observations from different schemes in the same figure for illustration purposes, they are four different (and often complementary) techniques. For a pair of schemes \((i, j)\), a higher value in y-axis (say for a given CPU load) for technique \(i\) does not imply it adds a larger burden on the attacker than \(j\). Instead, the goal of our evaluation is to present the “trends” (i.e., whether the burden on the attacker increases/reduces with varying CPU load) in the attacker’s burden metric for these four distinct approaches. As we see in Figure 7 (and also from our previous study), the time available for an adversary is reduced (i.e., more burden) for the first three schemes (see Sections 5.1, 5.2, and 5.3.1) with increased load. As we discussed in Section 6.1 (and also illustrated in Figure 7), for randomization, the time between arrival and completion of a task is higher in the low-to-medium CPU loads. That is, a system that with less than \(60\%\) load has more burden on the attacker (to infer the task execution pattern from the schedule) than the highly utilized systems. The effect of randomization reduces (less burden) in higher loads to ensure the timing constraints for all tasks.

Fig. 7.

View Figure

6.2 Summary

In this section, we introduce the notion of the “attacker’s burden” (summarized in Table 5) and methods to compute it for various real-time scheduler-based defense mechanisms. For each class of defensive techniques introduced in Section 5, we are able to compute the reduced time available to an adversary —these are directly comparable, even across defensive classes! By seeing how much time is available to an adversary, along with the overheads that are imposed, we can design systems that are tolerant to both—attacks as well as overheads.

7.1 Hardware/Software-Based Mechanisms

We now present techniques that either require architectural support and/or custom hardware (see Table 6 for a summary).

7.2 Designing Secure Real-Time Operating Systems (RTOS)

One way to address threats at the RTOS level is to extend partitioning and provide isolation. Commercial RTOS such as VxWorks [95] and QNX [96] have built-in security extensions. VxWorks provides secure boot, a secure run-time loader (to prevent authorized access), network security through SSL and encrypted containers [97]. QNX relies on secure programming standards (e.g., POSIX PSE52) and enables security by resource partitioning [98].

There also exists academic research to design secure RTOS (see Table 7). seL4 [89], a formally verified, open-source, secure microkernel, supports real-time applications with different criticality using temporal isolation. Composite [90] is an open-source minimal kernel with configurable components. ERTOS [91] is another component-based RTOS that provides spatial and temporal isolation for different subsystems.

AOS [92] is a modular kernel for avionics applications that provides fundamental services such as secure initialization, resource, process and time management/synchronization, exception handling and I/O support. TrackOS [93] provides built in support for control-flow integrity (CFI) checks for real-time tasks. GenRTOS [94] is a generic low-level RTOS model that provide minimal OS services (e.g., scheduling, time management, inter-process communication and device drivers) for time-critical tasks.

8.1 Vulnerability and Damage Analysis

A better understanding of the vulnerabilities in RTS will enable designers to develop systems with increased security (and hence safety) guarantees. From our study, we find that there exist very few studies on attack mechanisms for RTS. For instance, the majority of the attacks were demonstrated on single core platforms and a further study is required to understand scheduler-level side-channels [44, 45] and effects of Butterfly attacks [46] for multicore RTS. We believe that an important direction for future research is (i) identifying the risks/vulnerabilities (for both, single and multicore RTS) and (ii) studying possible consequences of successful attacks, i.e., how much damage an adversary can inflict.

8.2 Response and Recovery Mechanisms

A key reason for detecting attacks early is to provide enough information to system operators so that they can respond to and recover from attacks. Research on human-computer interaction can improve the awareness and responses of operators. Systems with real-time requirements often use autonomous, decision-making algorithms for controlling elements in the physical world. In addition to recovery with a human in the loop, there is also a need for automatic recovery (on the detection of an attack). We find that while there exist some research in detection mechanisms for RTS [30, 31, 32, 34, 35, 67, 72, 73, 74, 75], they do not consider the after-effects of an intrusion. We need further studies to design autonomous attack detection, isolation and response algorithms for safety-critical RTS.

8.3 Certification and Regulatory Issues

A distinction of RTS, when compared to conventional IT security, is that software patching and frequent updates are not well suited for critical systems. The addition of new security mechanisms may pose safety concerns (e.g., a power plant was shut down because a computer rebooted after the installation of a patch [99]). Upgrading a safety-critical RTS requires months of advance planning and many layers of certifications [100, 101, 102]. We find that the solutions proposed in the literature do not explicitly consider certification/regulatory requirements in their design. Developing, analyzing and testing of security solutions that comply with certification requirements is one of the key areas of real-time security research.

8.4 Security for Legacy Systems

Large industrial control systems also have a significant amount of legacy components. Software updates and patching might violate existing safety certifications. For properly securing such legacy-critical RTS, the underlying security mechanisms must satisfy some minimum performance requirements and the implementation should be well tested and vetted by certification agencies. Our study finds that the majority of the security solutions proposed in the literature are not directly adaptable for legacy RTS (i.e., they are suitable for newer/customized systems). We believe that (i) understanding of the security requirements (and vulnerabilities) of legacy systems and (ii) design security techniques with little or no modification on existing hardware/software/components are vital areas of research to secure billions of deployed safety-critical systems.

8.5 Security for AI-enabled Next-Generation Systems

While traditionally, application tasks in RTS carry out more straightforward functionalities such as computations related to control loop updates, the advent of modern IoT-specific applications (such as autonomous driving) and the emergence of edge computing bring the use of artificial intelligence (AI) to real-time devices that require the end nodes to process large-scale data. Modern real-time applications often require machine learning (ML)-based inferences for achieving intelligent features such as object recognition, image and video processing, and natural language processing. Any manipulation of ML parameters may lead to misclassification. There is a need to prevent the leakage of critical parameters, including data structures and location in memory, while retaining real-time requirements. Even in the presence of malicious actions, the degree of misclassification should be contained within a permissible and predictable range and the task must not miss its deadlines. There is a lack of predictable, secure and resilient ML models that work for resource-constraint real-time devices. The development of real-time aware, secure and predictable ML/AI-driven system is an open area that needs concerted research efforts from academia, industry researchers and standardization bodies.

8.6 Availability of Evaluation Platforms

The lack of real-time benchmark programs and evaluation platforms is one of the major challenges in real-time cyber-physical security research especially to perform a sound evaluation. This is partly because of the diversity of real-time applications and software as well as the hardware-dependent nature of cyber-physical platforms. In addition, the majority of safety-critical applications are proprietary in nature and are rarely open-sourced. As a result, existing academic real-time security research is mainly carried out using simulations and/or limited case studies (see Section 4-Section 7) instead of a large-scale experimental evaluation. A better coordination between industry and academic researchers can open up opportunities for more open evaluation platforms that can help the designers identify potential vulnerabilities as we discuss next.

8.7 Privacy and Deterrence

In addition to security and safety-related problems, RTS can also have profound privacy implications. RTS end devices can collect private data related to diverse human activities (e.g., location information, driving habits, electricity consumption, biosensor data) at different levels of granularity. Due to the passive manner of collection, end users are largely unaware of the process (e.g., automobile manufacturers are often remotely collecting a variety of driving history data from cars in an effort to increase the reliability of their products) [103]. If the data collected by corporations is exposed to other malicious actors (through a variety of legal or illegal means) it can be detrimental to user privacy. Deterrence usually depends on successful legislation, law enforcement and international collaboration for tracking crimes committed across geographical borders [104]. We believe that the identification of new deterrence mechanisms for the security and privacy of RTS is a promising area of research.