383 research outputs found

    A Survey of the Security Challenges and Requirements for IoT Operating Systems

    Full text link
    The Internet of Things (IoT) is becoming an integral part of our modern lives as we converge towards a world surrounded by ubiquitous connectivity. The inherent complexity presented by the vast IoT ecosystem ends up in an insufficient understanding of individual system components and their interactions, leading to numerous security challenges. In order to create a secure IoT platform from the ground up, there is a need for a unifying operating system (OS) that can act as a cornerstone regulating the development of stable and secure solutions. In this paper, we present a classification of the security challenges stemming from the manifold aspects of IoT development. We also specify security requirements to direct the secure development of an unifying IoT OS to resolve many of those ensuing challenges. Survey of several modern IoT OSs confirm that while the developers of the OSs have taken many alternative approaches to implement security, we are far from engineering an adequately secure and unified architecture. More broadly, the study presented in this paper can help address the growing need for a secure and unified platform to base IoT development on and assure the safe, secure, and reliable operation of IoT in critical domains.Comment: 13 pages, 2 figure

    Anpassen verteilter eingebetteter Anwendungen im laufenden Betrieb

    Get PDF
    The availability of third-party apps is among the key success factors for software ecosystems: The users benefit from more features and innovation speed, while third-party solution vendors can leverage the platform to create successful offerings. However, this requires a certain decoupling of engineering activities of the different parties not achieved for distributed control systems, yet. While late and dynamic integration of third-party components would be required, resulting control systems must provide high reliability regarding real-time requirements, which leads to integration complexity. Closing this gap would particularly contribute to the vision of software-defined manufacturing, where an ecosystem of modern IT-based control system components could lead to faster innovations due to their higher abstraction and availability of various frameworks. Therefore, this thesis addresses the research question: How we can use modern IT technologies and enable independent evolution and easy third-party integration of software components in distributed control systems, where deterministic end-to-end reactivity is required, and especially, how can we apply distributed changes to such systems consistently and reactively during operation? This thesis describes the challenges and related approaches in detail and points out that existing approaches do not fully address our research question. To tackle this gap, a formal specification of a runtime platform concept is presented in conjunction with a model-based engineering approach. The engineering approach decouples the engineering steps of component definition, integration, and deployment. The runtime platform supports this approach by isolating the components, while still offering predictable end-to-end real-time behavior. Independent evolution of software components is supported through a concept for synchronous reconfiguration during full operation, i.e., dynamic orchestration of components. Time-critical state transfer is supported, too, and can lead to bounded quality degradation, at most. The reconfiguration planning is supported by analysis concepts, including simulation of a formally specified system and reconfiguration, and analyzing potential quality degradation with the evolving dataflow graph (EDFG) method. A platform-specific realization of the concepts, the real-time container architecture, is described as a reference implementation. The model and the prototype are evaluated regarding their feasibility and applicability of the concepts by two case studies. The first case study is a minimalistic distributed control system used in different setups with different component variants and reconfiguration plans to compare the model and the prototype and to gather runtime statistics. The second case study is a smart factory showcase system with more challenging application components and interface technologies. The conclusion is that the concepts are feasible and applicable, even though the concepts and the prototype still need to be worked on in future -- for example, to reach shorter cycle times.Eine große Auswahl von Drittanbieter-Lösungen ist einer der Schlüsselfaktoren für Software Ecosystems: Nutzer profitieren vom breiten Angebot und schnellen Innovationen, während Drittanbieter über die Plattform erfolgreiche Lösungen anbieten können. Das jedoch setzt eine gewisse Entkopplung von Entwicklungsschritten der Beteiligten voraus, welche für verteilte Steuerungssysteme noch nicht erreicht wurde. Während Drittanbieter-Komponenten möglichst spät -- sogar Laufzeit -- integriert werden müssten, müssen Steuerungssysteme jedoch eine hohe Zuverlässigkeit gegenüber Echtzeitanforderungen aufweisen, was zu Integrationskomplexität führt. Dies zu lösen würde insbesondere zur Vision von Software-definierter Produktion beitragen, da ein Ecosystem für moderne IT-basierte Steuerungskomponenten wegen deren höherem Abstraktionsgrad und der Vielzahl verfügbarer Frameworks zu schnellerer Innovation führen würde. Daher behandelt diese Dissertation folgende Forschungsfrage: Wie können wir moderne IT-Technologien verwenden und unabhängige Entwicklung und einfache Integration von Software-Komponenten in verteilten Steuerungssystemen ermöglichen, wo Ende-zu-Ende-Echtzeitverhalten gefordert ist, und wie können wir insbesondere verteilte Änderungen an solchen Systemen konsistent und im Vollbetrieb vornehmen? Diese Dissertation beschreibt Herausforderungen und verwandte Ansätze im Detail und zeigt auf, dass existierende Ansätze diese Frage nicht vollständig behandeln. Um diese Lücke zu schließen, beschreiben wir eine formale Spezifikation einer Laufzeit-Plattform und einen zugehörigen Modell-basierten Engineering-Ansatz. Dieser Ansatz entkoppelt die Design-Schritte der Entwicklung, Integration und des Deployments von Komponenten. Die Laufzeit-Plattform unterstützt den Ansatz durch Isolation von Komponenten und zugleich Zeit-deterministischem Ende-zu-Ende-Verhalten. Unabhängige Entwicklung und Integration werden durch Konzepte für synchrone Rekonfiguration im Vollbetrieb unterstützt, also durch dynamische Orchestrierung. Dies beinhaltet auch Zeit-kritische Zustands-Transfers mit höchstens begrenzter Qualitätsminderung, wenn überhaupt. Rekonfigurationsplanung wird durch Analysekonzepte unterstützt, einschließlich der Simulation formal spezifizierter Systeme und Rekonfigurationen und der Analyse der etwaigen Qualitätsminderung mit dem Evolving Dataflow Graph (EDFG). Die Real-Time Container Architecture wird als Referenzimplementierung und Evaluationsplattform beschrieben. Zwei Fallstudien untersuchen Machbarkeit und Nützlichkeit der Konzepte. Die erste verwendet verschiedene Varianten und Rekonfigurationen eines minimalistischen verteilten Steuerungssystems, um Modell und Prototyp zu vergleichen sowie Laufzeitstatistiken zu erheben. Die zweite Fallstudie ist ein Smart-Factory-Demonstrator, welcher herausforderndere Applikationskomponenten und Schnittstellentechnologien verwendet. Die Konzepte sind den Studien nach machbar und nützlich, auch wenn sowohl die Konzepte als auch der Prototyp noch weitere Arbeit benötigen -- zum Beispiel, um kürzere Zyklen zu erreichen

    Global value chains: Potential synergies between external trade policy and internal economic initiatives to address the strategic dependencies of the EU

    Get PDF
    Global value chains enable two-thirds of international trade, notably for the EU. The EU wants to preserve its commercial links with third countries and organisations to make up for trade disruptions. This study examines sustainable supply of raw materials, commodities, and critical goods using the EU's Open Strategic Autonomy concept. It examines which raw material are crucial for sustainable supply and necessary for the green transition. The paper examines EU internal legislation and international cooperation instruments to determine the EU's disruption risk. It evaluates the economic impact of EU preferential trade agreements on raw material availability. The study illustrates the political and economic relevance of raw material partnerships and plurilateral and bilateral trade agreements. It analyses the EU's toolbox for safeguarding its interests and making independent trade choices to counteract other actors' unfair practices and intervention. Finally, the paper examines regulatory frameworks, international alliances, and activities to find ways to strengthen global value chains in critical EU industries

    Actas del Primer Congreso Argentino de Ingeniería Aeronáutica

    Get PDF
    Durante los días 3, 4 y 5 de Diciembre de 2008, en la Facultad de Ingeniería de la Universidad Nacional de La Plata se lleva a cabo el Primer Congreso Argentino de Ingeniería Aeronáutica, CAIA 1. La presente publicación incluye los trabajos aprobados para su presentación en el CAIA 1. Este congreso está enfocado en temas de Investigación y Desarrollo aeronáuticos llevados a cabo por distintos investigadores y grupos de trabajo de nuestro país y el exterior.Material digitalizado en SEDICI gracias a la Biblioteca de la Facultad de Ingeniería (UNLP).Facultad de Ingenierí

    Simulations numériques d'allumages des moteurs aéronautiques en conditions réalistes de hautes altitudes

    Get PDF
    La capacité de rallumage est un aspect critique de la conception des moteurs aéronautiques et les normes de sureté exigent l'allumage du moteur en conditions de haute altitude (basse pression : P = 0.3 bar et basse température : T = 233 K ). Ainsi, l'influence des conditions de basse pression et de basse temperature doit être mieux comprise. Pour cela, l'effet de ces conditions sur les phenomènes chimiques a tout d'abord été étudié en configurations purement gazeuses. Les résultats ont alors montré que les conditions sub-atmosphériques étaient désavantageuses à cause d'un ralentissement de la réactivité chimique et donc d'une réduction de la puissance dégagée. De plus, des simulations numériques directes ont été réalisées en utilisant une chimie ARC multi-composante ce qui a permis de comparer le développement des noyaux de flamme en fonction des conditions de pression et de température. Les résultats indiquent alors que les noyaux formés en condition de basse pression sont moins robustes aux phénomènes d'extinctions. D'autre part, l'influence des conditions de haute altitude sur le diphasique a aussi été évaluée. Premièrement, au niveau de l'injection de carburant, les données expérimentales disponibles ont montré que les basses pressions réduisent les processus d'atomisation ce qui conduit à la formation d'un spray composé de gouttes plus larges et moins nombreuses. Des simulations d'allumage diphasique ont alors été réalisées en prenant en compte la modification de la distribution de goutte induite par les conditions de haute altitude. Un changement complet du régime de combustion a alors été observé par rapport au cas gazeux. Pour finir, ce travail a permis de développer de nouvelles méthodes numériques qui ont pu être utilisées pour simuler l'allumage en condition réaliste de haute altitude dans le banc MERCATO. Ce calcul a mis en évidence le rôle critique des phénomènes diphasiques dans la formation et le développement du noyau. De plus, l'effet néfaste des basses pressions et des basses températures sur l'allumage a été retrouvé. The relight capability is a critical aspect of the aeronautical engine design and safety standards require the ignition of the engine under high altitude conditions (low pressure: P = 0.3 bar and low temperature: T = 233 K). Therefore the influence of low pressure and low temperature conditions on the ignition processes must be better understood. For this purpose, the effect of these conditions on the chemical phenomena has been first evaluated with purely gaseous configurations. The results have shown the detrimental effect of sub-atmospheric conditions via a slowing down of the chemical reactivity and thus a reduction of the power released. In addition, direct numerical simulations performed using a multi-component ARC chemistry enable to compare the kernel developments depending on the pressure and temperature conditions and indicate that low pressure kernels are less robust to extinction phenomena. On the other hand, the influences of high altitude conditions on the two-phase flow have also been evaluated. Firstly, at the fuel injection, the available experimental measurements have shown that low pressure reduces the atomization phenomenon resulting in a spray with larger and fewer droplets. Two-phase ignition simulations have thus been performed taking into account the different droplet distribution due to the high altitude conditions. A complete modification of the combustion regime has then been observed compared to the gaseous case. Finally, this work enables to develop new numerical methods which have been used to simulate the ignition under realistic high altitude conditions in the MERCATO configuration. This computation highlighted the critical role of the two-phase phenomena in the formation and development of the kernel. Furthermore, the detrimental effect of low pressure and low temperature on the ignition has been recovered once again

    Toward Fault-Tolerant Applications on Reconfigurable Systems-on-Chip

    Get PDF
    L'abstract è presente nell'allegato / the abstract is in the attachmen

    Operational Technology Preparedness:A Risk-Based Safety Approach to Scoping Security Tests for Cyber Incident Response and Recovery

    Get PDF
    Following the advent of Industry 4.0, there have been significant benefits to industrial process optimisation through increased interconnectivity and the integration of Information Technology (IT) and Operational Technology (OT). However, this has also led to an increased attack surface for cyber threat actors to target. A growing number of cyber attacks on industrial environments, including Critical National Infrastructure, has, subsequently, been observed. In response, government and standardisation organisations alike have invested considerable resources in improving the cyber security of these environments. This includes response and recovery, often used as a last line of defence against cyber attacks. However, due to the unique design philosophies of Industrial Control Systems (ICS), several challenges exist for effectively securing these systems against digital threats. Through an analysis of standards and guidelines, used for assessing and improving cyber incident response and recovery capabilities, and stakeholder engagement on the implementation of these in practice, this thesis first identifies the challenges that exist when it comes to preparing for cyber incidents targeting ICS/OT environments. In particular, risk management, which involves identifying, evaluating, and prioritising risks and finding solutions to minimise, monitor, and control these, was found to be essential for improving preparation for cyber incidents. Assurance techniques are used as part of risk management to generate evidence for making claims of assurances about security. Alongside this, adversary-centric security tests such as penetration tests are used to evaluate and improve cyber resilience and incident response capabilities by emulating the actions of malicious actors. However, despite the benefits that these provide, they are currently not implemented to their full potential due to the safety and operational risks that exist in ICS/OT environments. This thesis contributes to academic and industry knowledge by proposing a framework that incorporates methods for identifying and quantifying the safety and operational risks of conducting adversary-centric security tests within ICS/OT environments. In understanding the risks, these engagements can be scoped using precise constraints so as to maximise the depth of testing while minimising risk to safety and the operational process. The framework is then evaluated through a qualitative study involving industry experts, confirming the framework's validity for implementation in practice

    Velocity range-based reward shaping technique for effective map-less navigation with LiDAR sensor and deep reinforcement learning

    Get PDF
    In recent years, sensor components similar to human sensory functions have been rapidly developed in the hardware field, enabling the acquisition of information at a level beyond that of humans, and in the software field, artificial intelligence technology has been utilized to enable cognitive abilities and decision-making such as prediction, analysis, and judgment. These changes are being utilized in various industries and fields. In particular, new hardware and software technologies are being rapidly applied to robotics products, showing a level of performance and completeness that was previously unimaginable. In this paper, we researched the topic of establishing an optimal path plan for autonomous driving using LiDAR sensors and deep reinforcement learning in a workplace without map and grid coordinates for mobile robots, which are widely used in logistics and manufacturing sites. For this purpose, we reviewed the hardware configuration of mobile robots capable of autonomous driving, checked the characteristics of the main core sensors, and investigated the core technologies of autonomous driving. In addition, we reviewed the appropriate deep reinforcement learning algorithm to realize the autonomous driving of mobile robots, defined a deep neural network for autonomous driving data conversion, and defined a reward function for path planning. The contents investigated in this paper were built into a simulation environment to verify the autonomous path planning through experiment, and an additional reward technique “Velocity Range-based Evaluation Method” was proposed for further improvement of performance indicators required in the real field, and the effectiveness was verified. The simulation environment and detailed results of experiments are described in this paper, and it is expected as guidance and reference research for applying these technologies in the field

    Pushing the Boundaries of Spacecraft Autonomy and Resilience with a Custom Software Framework and Onboard Digital Twin

    Get PDF
    This research addresses the high CubeSat mission failure rates caused by inadequate software and overreliance on ground control. By applying a reliable design methodology to flight software development and developing an onboard digital twin platform with fault prediction capabilities, this study provides a solution to increase satellite resilience and autonomy, thus reducing the risk of mission failure. These findings have implications for spacecraft of all sizes, paving the way for more resilient space missions
    corecore