A joint project of the Graduate School, Peabody College, and the Jean & Alexander Heard Library

Title page for ETD etd-09252019-104159


Type of Document Dissertation
Author Potteiger, Bradley David
URN etd-09252019-104159
Title A Moving Target Defense Approach Towards Security and Resilience in Cyber-Physical Systems
Degree PhD
Department Electrical Engineering
Advisory Committee
Advisor Name Title
Xenofon Koutsoukos Committee Chair
Adam Tagert Committee Member
Gabor Karsai Committee Member
Janos Sztipanovits Committee Member
Zhenkai Zhang Committee Member
Keywords
  • Data Space Randomization
  • Address Space Randomization
  • Instruction Set Randomization
  • Cyber-Physical Systems
  • Cybersecurity
  • Moving Target Defense
  • Autonomous Vehicles
Date of Defense 2019-09-12
Availability unrestricted
Abstract
Cyber-Physical Systems (CPS) such as autonomous vehicles are becoming widely utilized throughout society. CPS are unique with respect to the tightly coupled nature between the cyber software and physical dynamics of a system, increasing the reliability and precision of safety-critical processes. However, with these benefits comes potential tradeoffs including the increased openness and connectivity of safety-critical components. Applications traditionally designed to be standalone and protected through physical means are now becoming vulnerable to remote attacks not only within the continental United States, but by foreign adversaries around the globe. By leveraging memory corruption vulnerabilities such as buffer overflows, attackers can remotely perform code injection, code reuse, and non-control data attacks to hijack key functionality. This dissertation focuses on leveraging Moving Target Defense (MTD) techniques such as ISR, ASR, and DSR to create a secure runtime environment, preventing attackers from obtaining the reconnaissance knowledge necessary to exploit memory corruption vulnerabilities. Furthermore, in modern day CPS, it is not enough to protect against cyber-attacks, but it is equally as important to guarantee safety. By developing a novel security architecture integrating MTD protections with control reconfiguration, we can proactively defend against code injection, code reuse, and non-control data attacks, while rapidly detecting and recovering from attacks, ensuring that safe and reliable operation is maintained.
Files
  Filename       Size       Approximate Download Time (Hours:Minutes:Seconds) 
 
 28.8 Modem   56K Modem   ISDN (64 Kb)   ISDN (128 Kb)   Higher-speed Access 
  bpotteiger_dissertation.pdf 5.53 Mb 00:25:35 00:13:09 00:11:31 00:05:45 00:00:29

Browse All Available ETDs by ( Author | Department )

If you have more questions or technical problems, please Contact LITS.