MIMOSA. PMA-209 Industry Day and FACE Exhibition/TIM Event. October 17, Mr. Matthew Baxter

Transcription

1 MIMOSA PMA-209 Industry Day and FACE Exhibition/TIM Event October 17, 2017 Mr. Matthew Baxter Research Engineer I Georgia Tech Research Institute ELSYS ESID OSSB WARNING - This document contains technical data whose export is restricted by the Arms Export Control Act (Title 22, U.S.C., Sec et seq.) or Executive Order Violations of these export laws are subject to severe criminal penalties. Disseminate in accordance with provisions of DOD Directive Copyright by Georgia Tech Applied Research Corporation, 2017 ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 1

2 Overview BLUF: FACE enables the development of portable cybersecurity solutions for avionics ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 2

3 Cybersecurity for Avionics Two ways to address cybersecurity requirements: - Access controls and boundary defenses controlling the flow of data between components; e.g. Multi-Level Security paradigms - Run-time detection and recovery the assumption is that the system is actively being exploited and the goal is to respond autonomously and effectively Open Architectures present additional challenges Objective: Develop an Intrusion Prevention System (IPS) framework that leverages features of FACE ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 3

4 Motivation Example scenario: UAV on mission is under a cyber-attack Malicious intruder has gained access to the flight system and is attempting to take control of the UAV An Intrusion Prevention System (IPS) must be put in place to stop the attack Detection vs. Prevention ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 4

5 Approach Requirements - Address attack vectors beyond traditional TCP/IP-based Intrusion Prevention Systems - Easy for integrators to tailor to their systems - Scalable Implement mock-system - Incorporates the IPS framework - Explore and demonstrate the feasibility of mitigating a cyberattack ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 5

6 Malicious Intrusion Monitor for Open Software Architectures (MIMOSA) Diagnosis rules defined in terms of a FACE Data Model Utilizes Transport Services (TS) interfaces between software components to forward messages to the Intrusion Monitor Leverages interfaces for Health Monitoring and Fault Management (HMFM) for recovery actions ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 6

7 MIMOSA Architecture ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 7

8 MIMOSA Architecture ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 8

9 MIMOSA Intrusion Model Artifact for configuring system-specific intrusion prevention behavior Specifies which data to monitor or ignore Specifies diagnosis rules and which recovery action to invoke for a particular diagnosis Enables flexibility and portability of the Intrusion Monitor software component ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 9

10 MIMOSA Checkpoints ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 10

11 MIMOSA Intrusion Monitor Isolated from the rest of the system except through the reporting and recovery interfaces Database - Manage large volumes of data - Only query data necessary for the evaluation of specific diagnosis rules Expert System - Emulates the decision-making ability of a human expert by applying predefined rules to incoming information - C-Language Integrated Production System (CLIPS) - Open source, originally developed by NASA ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 11

12 MIMOSA Intrusion Monitor ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 12

13 Extending MIMOSA Intrusion Model Tool - Simplified interface to create diagnosis rules - Code generation for MIMOSA Checkpoints - Code generation for MIMOSA Recovery Actions ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 13

14 Demonstration Mock UAV system and simulation - Software components aligned with FACE Architecture - One component has a vulnerability that can be hacked to take control of the UAV - MIMOSA responds by Detecting the deviation from the specified flight path, Terminating the offending component, and Replacing it with a failsafe component that flies the UAV back to base out of harm s way ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 14

15 Conclusion FACE features can be leveraged for an IPS: - Standardized interfaces provide location to implement intrusion detection and prevention mechanisms - FACE Data Models provide a semantic interpretation of data for defining diagnostic rules Using FACE, systems can decrease future development effort to integrate security solutions such as MIMOSA FACE enables the development of portable cybersecurity solutions for avionics ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 15

16 POC Information Matt Baxter ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 16

17 Backup Slides ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 17

18 Demonstration ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 18

19 MIMOSA Checkpoints ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 19

20 CLIPS Example ELSYS-ESID-OSSB / PMA-209 Industry Day / PAGE 20