-
Robotics CTF (RCTF), a playground for robot hacking
Authors:
Gorka Olalde Mendia,
Lander Usategui San Juan,
Xabier Perez Bascaran,
Asier Bilbao Calvo,
Alejandro Hernández Cordero,
Irati Zamalloa Ugarte,
Aday Muñiz Rosas,
David Mayoral Vilches,
Unai Ayucar Carbajo,
Laura Alzola Kirschgens,
Víctor Mayoral Vilches,
Endika Gil-Uriarte
Abstract:
Robots state of insecurity is onstage. There is an emerging concern about major robot vulnerabilities and their adverse consequences. However, there is still a considerable gap between robotics and cybersecurity domains. For the purpose of filling that gap, the present technical report presents the Robotics CTF (RCTF), an online playground to challenge robot security from any browser. We describe…
▽ More
Robots state of insecurity is onstage. There is an emerging concern about major robot vulnerabilities and their adverse consequences. However, there is still a considerable gap between robotics and cybersecurity domains. For the purpose of filling that gap, the present technical report presents the Robotics CTF (RCTF), an online playground to challenge robot security from any browser. We describe the architecture of the RCTF and provide 9 scenarios where hackers can challenge the security of different robotic setups. Our work empowers security researchers to a) reproduce virtual robotic scenarios locally and b) change the networking setup to mimic real robot targets. We advocate for hacker powered security in robotics and contribute by open sourcing our scenarios.
△ Less
Submitted 12 November, 2021; v1 submitted 1 October, 2018;
originally announced October 2018.
-
Robot hazards: from safety to security
Authors:
Laura Alzola Kirschgens,
Irati Zamalloa Ugarte,
Endika Gil Uriarte,
Aday Muñiz Rosas,
Víctor Mayoral Vilches
Abstract:
Robotics landscape is experiencing big changes. Robots are spreading and will soon be everywhere. Systems traditionally employed in industry are being replaced by collaborative robots, while more and more professional and consumer robots are introduced in people's daily activities. Robots are increasingly intertwined with other facets of IT and envisioned to get much more autonomy, interacting phy…
▽ More
Robotics landscape is experiencing big changes. Robots are spreading and will soon be everywhere. Systems traditionally employed in industry are being replaced by collaborative robots, while more and more professional and consumer robots are introduced in people's daily activities. Robots are increasingly intertwined with other facets of IT and envisioned to get much more autonomy, interacting physically with humans. We claim that, following Personal Computers (PCs) and smartphones, robots are the next technological revolution and yet, robot security is being ignored by manufacturers. The present paper aims to alert about the need of dealing not only with safety but with robot security from the very beginning of the forthcoming technological era. We provide herein a document that reviews robot hazards and analyzes the consequences of not facing these issues. We advocate strongly for a security-first approach as a must to be implemented now.
△ Less
Submitted 12 November, 2021; v1 submitted 11 June, 2018;
originally announced June 2018.
-
Introducing the Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics
Authors:
Víctor Mayoral Vilches,
Laura Alzola Kirschgens,
Asier Bilbao Calvo,
Alejandro Hernández Cordero,
Rodrigo Izquierdo Pisón,
David Mayoral Vilches,
Aday Muñiz Rosas,
Gorka Olalde Mendia,
Lander Usategi San Juan,
Irati Zamalloa Ugarte,
Endika Gil-Uriarte,
Erik Tews,
Andreas Peter
Abstract:
Robots have gained relevance in society, increasingly performing critical tasks. Nonetheless, robot security is being underestimated. Robotics security is a complex landscape, which often requires a cross-disciplinar perspective to which classical security lags behind. To address this issue, we present the Robot Security Framework (RSF), a methodology to perform systematic security assessments in…
▽ More
Robots have gained relevance in society, increasingly performing critical tasks. Nonetheless, robot security is being underestimated. Robotics security is a complex landscape, which often requires a cross-disciplinar perspective to which classical security lags behind. To address this issue, we present the Robot Security Framework (RSF), a methodology to perform systematic security assessments in robots. We propose, adapt and develop specific terminology and provide guidelines to enable a holistic security assessment following four main layers (Physical, Network, Firmware and Application). We argue that modern robotics should regard as equally relevant internal and external communication security. Finally, we advocate against "security by obscurity". We conclude that the field of security in robotics deserves further research efforts.
△ Less
Submitted 12 November, 2021; v1 submitted 11 June, 2018;
originally announced June 2018.