{,S}ROS · ROS is still exposed to attacks from within the local network Stack Complexity...

{,S}ROSSecuring ROS over the wire, in the graph,

and through the kernel

By Ruffin White and Morgan Quigley

What is SROS?● Encryption

○ Native TLS support for all socket level communication

○ X.509 PKI certificates for chains of trust, authenticity and integrity

○ Keyserver for key pair generation and certificate customisation

● Access Control

○ Definable namespace globbing for node restrictions and roles

○ Audit graph network through security logs and events

○ User constructed and/or auto trained access control policies

● Process Profiles

○ Harden node processes on using Linux Security Modules in kernel

○ Quarantine a node’s file, device, signal, and networking access

○ Reusable AppArmor profile library for ROS

“An addition to the ROS API and ecosystem to

support modern cryptography and security measures”

● Relevant robotic sectors:

○ Industrial Automation

○ Autonomous Vehicles

○ Home Automation

○ Internet of Things, etc.

Why SROS?

● ROS’s clear text transport

○ Packet Sniffing: Confidentiality

○ Man-in-the-middle: Integrity

● ROS’s anonymous graphs

○ Message Spoofing: Identification

○ Rouge Nodes: Authorization

● ROS’s runtime process

○ Code injection: Compromised Execution

○ Zero Day Exploits: Altered Permissions

“Robots provide a vector for cyber threats

to manifest into real-world risks.”

Why not use VPNs or SDNs?● Pros:

○ Tunneling over distant networks

■ ROS allocates ports over runtime; ephemeral port firewall = whack-a-mole

○ Professional routers and switches

■ Cryptographic overhead can be offloaded to dedicated hardware

○ Existing Infrastructure

■ A mature technology; well documented and understood

● Cons:

○ Session Hijacking

■ ROS is still exposed to attacks from within the local network

○ Stack Complexity

■ Additional system layers to configure and regulation

○ Fine Grain Control

■ Difficult to integrate and segregate subdomains of ROS graph

{,S}ROS

● X.509 Public Key Infrastructure (PKI)

○ DSA, RSA, Elliptic Curve Keysigning

○ Leverage chains of trust to verify validity and authenticity

●● Transport Layer Security (TLS)

○ Wrap XMLRPC and TCPROS communication

○ Leverage socket encryption to verify integrity and privacy

●● Keyserver and Keystores

○ API to auto generate and distribute ciphered key pairs

○ Customize X.509 certificate extensions and attributes

Encryption

Access Control● Defining Namespaces Permissions

○ Permit/exclude graph permissions via ROS namespaces

○ Similar Apparmor globbing syntax using wildcards

●● Auditing and Security Logs

○ Granular logging of access events and violation attempts

○ Audit/deny ROS API usage with rule modifiers

●● Building Policies

○ Auto-generate/train policies from demonstration or logs

○ Human readable yaml, leverage variables & node anchors

Encryption & Access Control Demo

https://asciinema.org/a/88519

Process Profiles● Linux Security Modules

○ Leverage pre-existing kernel level security features

○ AppArmor: easy to use and well documented

●● Quarantine ROS Process

○ Limit node’s file, device, signal and networking permissions

○ Preemptively defend against zero day exploits

●● ROS Profile Library

○ Quickly build custom profiles using ROS module primitives

○ Includes minimal permissions necessary for core ROS features

Process Profiles Demo

https://asciinema.org/a/88531

TODO:● SROS related REPs

○ PKI practices, regester OIDs, extensions

● More client libraries and transports

○ roscpp, rosjava; UDPROS, etc

● Harden all Master & Slave API calls

○ Check caller privilege/identity of before response

● Tests and code coverage

○ Unit Test all the things!

● Abstract security modules as plugins

○ Allow user to define custom policy evaluation plugins

A tip of the hat to OSRF & CogRob

“...to support the development, distribution, and adoption of open source software for use in robotics research, education, and product development.”

“...to advance contextual robotics through relevant grand challenge research, to educate and train students who are prepared to catalyze future developments in robotics; and to provide the talent and innovation to establish San Diego as a leading robotics hub.”

Questions for Section {,S}ROS?

Resources● SROS Documentation:

○ wiki.ros.org/SROS

● SROS Docker Image:

○ hub.docker.com/r/osrf/sros

● More about me:

○ about.me/ruffin

{,S}ROS · ROS is still exposed to attacks from within the local network Stack Complexity...

Documents

Transcript of {,S}ROS · ROS is still exposed to attacks from within the local network Stack Complexity...

How to integrate Kaspersky Threat Data Feeds with … to integrate...How to integrate Kaspersky CyberTrace with FortiSIEM 6 You can also configure Kaspersky CyberTrace and specify

ROS tutorial › pablogn › investig › ROS › lepej_ROS...ROS tutorial ROS (Robot Operating System) is an open-source, meta-operating system for robots. Peter Lepej September 2013

TurtleBot2&ROS - Simulationsspanel/ROSWorkshop2013/1_5 ROS_simulations.pdf · ROS/Gazebo URDF Gazebo / URDF practise TurtleBot2&ROS - Simulations 2/22. Introduction TurtleBot2&ROS

Integrate Cisco Router - EventTracker · Integrate Cisco Router Abstract This guide provides instructions to configure Cisco Router to send the syslog events to EventTracker. Scope

Integrate AS/400...Apr 04, 2018 · 1 Integrate AS/400 Abstract This guide provides instructions to configure to send AS/400 crucial events to EventTracker Enterprise by means of

Using Sales for Communications Sales Cloud · profiles and opportunities, and integrate with Configure-Price-Quote solutions to develop proposals, renew contracts, track revenue,

PR2Introduction - uni-hamburg.de...ros-indigo docker: ubuntu16.04 ros-kinetic c2 Overlayofc1 ssd: docker: ubuntu16.04 ros-kinetic pr2-head ssd: ubuntu14.04 ros-indigo docker: ubuntu16.04

ROS By Example - ncnynlfile.ncnynl.com/ros/ros_by_example_v2_indigo.pdf · ROS continues to grow, and the popularity of ROS By Example Volume 1 has exceeded my expectations. Yet going

How to integrate iTop and Nagios for incident management to integrate Nagios and... · How to automate the creation of incident tickets in iTop This section describes how to configure

ROS tutorial - UPV/EHUlsi.vc.ehu.es/pablogn/investig/ROS/lepej_ROS_Tutorial_SS2014.pdf · • ROS is to support code reuse in robotics research and development. • ROS is a distributed

Integrate Cisco Jabber with Applications · Configure Presence in Microsoft SharePoint 2010 and 2013 ... On-Premises Deployment for Cisco Jabber 11.5 6 Integrate Cisco Jabber with

Some ROS Slidesluthuli.cs.uiuc.edu/~daf/courses/MAAV-2019/ROSSlides/ROS... · 2019-10-01 · ROS Environment • ROS relies on the notion of combining spaces using the shell environment

Ros Procedure.pptx

ROS-`X` ROS-X.pdf · •ROS-`X` is good for ROS •Communication is key to avoid fragmentation •More ROS-`X` (Maybe) –Does it fill a promotional need AND/OR –Is there a technical

ShareThis RoS

Introduction to ROS 2 - ATLASOverview 1. Visualization in ROS 2. Other ROS utils 1. Tranformation 2. URDF 3. Ros time and ros bag 3. Simulation in ROS 4. Best practices in ROS NTA3

ROSCon JP 2020 · init(argc,argv, 'mros node"); ros: : NodeHandte n; ros:: Publisher chatter_pub = n. advertise< ros: : mros_test : : , 1) ; Rate ros:: mros_test: :PresonatData msg;

Real-time control in ROS and ROS 2 control in ROS and ROS 2.0 ... and to node topology ROS2 design ... rmw_wait(timeout) {pass conditions to waitset

ROS Solutions for Industrial Robotics - Squarespacestatic.squarespace.com/static/51df34b1e4b08840dcfd2841/t/51eed45be4b... · ROS Solutions for Industrial Robotics ROS-Industrial

Introduction to ROS (Robot Operating System) with Arduinolsi.vc.ehu.es/pablogn/investig/ROS/ROS-arduino.pdf · Robot Operating System ROS provides libraries and tools to help developers