Visible to the public Establishing Cyber Resilience in Embedded Systems for Securing Next-Generation Critical Infrastructure

TitleEstablishing Cyber Resilience in Embedded Systems for Securing Next-Generation Critical Infrastructure
Publication TypeConference Paper
Year of Publication2019
AuthorsSiddiqui, Fahad, Hagan, Matthew, Sezer, Sakir
Conference Name2019 32nd IEEE International System-on-Chip Conference (SOCC)
KeywordsActive Defence, business operations, CPS Resilience, critical infrastructure, critical infrastructures, cyber physical systems, cyber resilience, Cyber Resilient Embedded System, Cyber-Physical Embedded System, embedded architectures, embedded security domains, embedded security microarchitecture, embedded security requirements, Embedded systems, embedded technologies, international security regulations, microarchitectural characteristics, next-generation critical infrastructure, pubcrawl, Recover, Resiliency, Resilient Security Architectures, Response, security breach, security foundation, security methods, security of data, Security Regulation, serious embedded security challenges, technology manufacturers

The mass integration and deployment of intelligent technologies within critical commercial, industrial and public environments have a significant impact on business operations and society as a whole. Though integration of these critical intelligent technologies pose serious embedded security challenges for technology manufacturers which are required to be systematically approached, in-line with international security regulations.This paper establish security foundation for such intelligent technologies by deriving embedded security requirements to realise the core security functions laid out by international security authorities, and proposing microarchitectural characteristics to establish cyber resilience in embedded systems. To bridge the research gap between embedded and operational security domains, a detailed review of existing embedded security methods, microarchitectures and design practises is presented. The existing embedded security methods have been found ad-hoc, passive and strongly rely on building and maintaining trust. To the best of our knowledge to date, no existing embedded security microarchitecture or defence mechanism provides continuity of data stream or security once trust has broken. This functionality is critical for embedded technologies deployed in critical infrastructure to enhance and maintain security, and to gain evidence of the security breach to effectively evaluate, improve and deploy active response and mitigation strategies. To this end, the paper proposes three microarchitectural characteristics that shall be designed and integrated into embedded architectures to establish, maintain and improve cyber resilience in embedded systems for next-generation critical infrastructure.

Citation Keysiddiqui_establishing_2019