announcements
play

Announcements Today: Last lecture , special topic on smart - PowerPoint PPT Presentation

Sep 23, 2023 •227 likes •766 views

Announcements Today: Last lecture , special topic on smart transportation security Attention: Its within the scope of final exam Final exam: 12/12, 1:30-3:30 PM Should be in this class room (HSLH 100A) Bring your photo ID with

  1. Announcements Today: Last lecture , special topic on smart transportation security • Attention: It’s within the scope of final exam Final exam: 12/12, 1:30-3:30 PM • Should be in this class room (HSLH 100A) • Bring your photo ID with you 1

  2. DNS: Domain Name Service DNS maps symbolic names to numeric IP addresses (for example, www.uci.edu ↔ 128.195.188.233) root & edu DNS server www.ics.uci.edu uci.edu Local DNS server Client DNS recursive resolver ics.uci.edu DNS server 2

  3. Cached Lookup Example root & edu DNS server ftp.ics.uci.edu uci.edu Local DNS server Client DNS recursive resolver ics.uci.edu DNS server 3

  4. DNS “ Authentication ” Request contains random 16-bit transaction id  TXID root & edu DNS server www.ics.uci.edu Response accepted if TXID is the same uci.edu Stays in cache for a long time (TTL) Local DNS server Client DNS recursive resolver ics.uci.edu DNS server 4

  5. DNS Spoofing / DNS Cache Poisoning 6.6.6.6 Trick client into looking up www.foo.com (how?) Guess TXID, www.foo.com is at 6.6.6.6 Another guess, www.foo.com is at 6.6.6.6 Another guess, www.foo.com is at 6.6.6.6 www.foo.com ns.foo.com Local Client DNS server resolver Several opportunities to win the race If attacker loses, has to wait until TTL expires … but can try again with host1.foo.com, host2.foo.com, etc. … but what ’ s the point of hijacking host2.foo.com? 5

  6. DNS Spoofing / DNS Cache Poisoning [Kaminsky] 6.6.6.6 Trick client into looking up <random>.foo.com Guessed TXID, very long TTL I don ’ t know where <random>.foo.com is Ask the authoritative server at www.foo.com www.foo.com It lives at 6.6.6.6 <random>.foo.com ns.foo.com Local Client DNS server resolver If attacker wins, future DNS requests for www.foo.com will go to 6.6.6.6 The cache is now poisoned… for a very long time! No need to win future races! 6

  7. DNSSEC • Goals: authentication and integrity of DNS requests and responses • PK-DNSSEC (public key) – DNS server signs its data (can be done in advance) – How do other servers learn the public key? MORE INFO: http://www.dnssec.net/presentations 7

  8. Lecture 17 CS 134 Smart Transportation Security Qi Alfred Chen Department of Computer Science

  9. Recent interest: Autonomy software security in smart transportation Autonomous Vehicle (AV) Connected Vehicle (CV) 9

  10. Recent interest: Autonomy software security in smart transportation Autonomous Vehicle (AV) Connected Vehicle (CV) 10

  11. Recent interest: Autonomy software security in smart transportation Autonomous Vehicle (AV) Connected Vehicle (CV) 11

  12. Recent interest: Autonomy software security in smart transportation Autonomous Vehicle (AV) Connected Vehicle (CV) 12

  13. Recent interest: Autonomy software security in smart transportation Autonomous Vehicle (AV) Connected Vehicle (CV) Autonomy software 13

  14. Recent interest: Autonomy software security in smart transportation Autonomous Vehicle (AV) Connected Vehicle (CV) Autonomy software [ISOC NDSS’18] [ACM CCS’19] First software security analysis of a First software security analysis of CV-based transportation system LiDAR-based AV perception 14

  15. Recent interest: Autonomy software security in smart transportation Autonomous Vehicle (AV) Connected Vehicle (CV) [ISOC NDSS’18] [ACM CCS’19] First software security analysis of a First software security analysis of CV-based transportation system LiDAR-based AV perception 15

  16. Background: Connected Vehicle technology • Wirelessly connect vehicles & infrastructure to dramatically improve mobility & safety • Will soon transform transportation systems today – 2016.9, USDOT launched CV Pilot Program CV technology Under deployment OBU RSU 16 CV = Connected Vehicle OBU = On-Board Unit RSU = Road-Side Unit

  17. First security analysis of CV-based transp. • Target : Intelligent Traffic Signal System (I-SIG) – Use real-time CV data for intelligent signal control – USDOT sponsored design & impl. – Fully implemented & tested in Anthem, AZ, & Palo Alto, CA • ~30% reduction in total vehicle delay – Under deployment in NYC and Tampa, FL Real-time CV data I-SIG RSU Control 17 CV = Connected Vehicle OBU = On-Board Unit RSU = Road-Side Unit

  18. Threat model • Malicious vehicle owners deliberately control the OBU to send spoofed data – OBU is compromised physically 1 , wirelessly 2 , or by malware 3 • Can only spoof data, e.g., location & speed – Can’t spoof identity due to USDOT’s vehicle certificate system Real-time Spoofed CV CV data data I-SIG RSU Control Influence Malicious vehicle owner signal control 18 1 Koscher et al.@IEEE S&P’10 2 Checkoway et al.@Usenix Security'11 3 Mazloom et al.@UsenixWOOT’16

  19. Attack goals Traffic congestion Increase total delay of vehicles in the intersection Personal gain Minimize attacker’s travel time (at the cost of others’) 19

  20. Attack goals This work Traffic congestion Increase total delay of vehicles in the intersection Personal gain Minimize attacker’s travel time (at the cost of others’) 20

  21. Analysis approach overview Analysis of Attack input data flow Data spoofing Source code strategies Spoofing w/ Dynamic analysis high delay inc Spoofing Increased option enum delay calc Congestion creation vuln. Traffic snapshots from simulator Exploit construction Congestion creation exploit 21

  22. Analysis result summary Analysis of Attack input data flow 2 distinct types of algorithm-level Data spoofing vulnerabilities: Source code strategies One single attack vehicle can greatly manipulate traffic control! Spoofing w/ Dynamic analysis high delay inc Spoofing Increased option enum delay calc Congestion creation vuln. Traffic snapshots from simulator Exploit construction Congestion creation exploit 22

  23. I-SIG system 2 3 1 4 I-SIG 8 5 7 6 23

  24. COP (Controlled Optimization of Phases) 2 Input: All vehicles’ location & speed Dynamic programming 3 Signal plan ( green light length & order) Output: with lowest total delay Delay = 15 1: 5 sec 2: 3 sec 1: 7 sec 5 sec 5 3 ( total delay: 15 sec ) 5 7 3 1 5 I-SIG 1 Delay = 0 Delay = 0 24

  25. COP (Controlled Optimization of Phases) 2 Data from one single vehicle: Very 3 hard to affect signal plan +3 × n +n • Commonly, 1 vehicle vs > 25 vehicles’ Delay = 15 delay in 5 conflicting lanes 5 3 • Can’t change even 1 sec +n 5 7 3 1 1 5 I-SIG 1 Delay = 0 Delay = 0 25

  26. Vuln #1: Last vehicle advantage • Attack : Spoof to arrive as late as possible to increase the delay of queuing vehicles in other lanes +105 2 +12 Delay = 15 9 5 3 9 7 40 3 5 1 5 … 1 I-SIG Delay = 0 Delay = 0 26

  27. Cause: Effectiveness & timeliness trade-off • COP on RSU = 4-5 sec decision time < 3 sec • To meet timeliness requirement, customize COP to limit the # of servings per lane Sub-optimal COP 2 – By default, only serve each lane once +12 Unexpectedly Security Delay = 15 exposed vuln. 9 5 3 Timeliness Effectiveness Sub-optimal COP also good 7 3 9 5 1 5 1 I-SIG Delay = 0 Delay = 0 27 RSU = Road-Side Unit

  28. Vuln #2: Curse of transition period • I-SIG has 2 operation modes based on PR: – PR ≥ 95%, full deployment: Directly run COP – PR < 95%, transition: COP becomes ineffective, use an unequipped vehicle estimation algorithm as pre-processing step Yes (full deployment period) COP PR ≥ 95% algorithm No (transition period) Unequipped vehicle estimation 28 PR = Penetration Rate

  29. Unequipped vehicle estimation algorithm Yes (full deployment period) COP PR ≥ 95% algorithm No (transition period) Unequipped vehicle estimation Vulnerable Free flow region Slow-down region Queuing region 29 PR = Penetration Rate

  30. Vulnerable queue estimation • Data from one single attack vehicle can add 30-50 “ghost” vehicles to COP input • Dramatically increase length of (wasted) green light Est. queue length = 3 Spoof the vehicle location! Est. queue length = 7 30

  31. Attack video demo • Demo time! – https://www.youtube.com/watch?v=3iV1sAxPuL0 31

  32. Recent interest: Autonomy software security in smart transportation Autonomous Vehicle (AV) Connected Vehicle (CV) [ISOC NDSS’18] [ACM CCS’19] First software security analysis of a First software security analysis of CV-based transportation system LiDAR-based AV perception 32

  33. Recent interest: Autonomy software security in smart transportation Autonomous Vehicle (AV) Connected Vehicle (CV) [ISOC NDSS’18] [ACM CCS’19] First software security analysis of a First software security analysis of CV-based transportation system LiDAR-based AV perception 33

  34. Background: Autonomous Vehicle technology • Equip vehicles with various types of sensors to enable self driving 34

  35. Goal: First security analysis of AV autonomy software • New attack surface: Sensors – Key input channel for critical control decisions – Public channel shared with potential adversaries • Fundamentally unavoidable attack surface 35

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Announcements U 4: I

Announcements U 4: I

Announcements Announcements U 4: I L 4: ANOVA If I still have your midterm, pick it up at the end of class. Lab 5 Today S

512 views • 10 slides
Announcements Lecture 22 System Development Leah Perlmutter / Summer 2018 Announcements

Announcements Lecture 22 System Development Leah Perlmutter / Summer 2018 Announcements

CSE 331 Software Design and Implementation Announcements Lecture 22 System Development Leah Perlmutter / Summer 2018 Announcements Announcements Last Fridays Guest Speaker (Kendra Yourtee) Quiz 8 due Thursday 8/16 Sign

397 views • 12 slides
Recursion Announcements for Today Prelim 1 Other Announcements Reading: 5.8 5.10

Recursion Announcements for Today Prelim 1 Other Announcements Reading: 5.8 5.10

Lecture 15 Recursion Announcements for Today Prelim 1 Other Announcements Reading: 5.8 5.10 Tonight at 7:30-9pm Assignment 3 now graded AJ (Uris G01) Mean 94, Median 99 K-Z (Statler Auditorium) Time

436 views • 41 slides
Recursion Announcements for Today Prelim 1 Other Announcements Reading: 5.8 5.10

Recursion Announcements for Today Prelim 1 Other Announcements Reading: 5.8 5.10

Lecture 14 Recursion Announcements for Today Prelim 1 Other Announcements Reading: 5.8 5.10 Tonight at 5:15 OR 7:30 Assignment 3 now graded AD (5:15, Uris G01) Mean 93.4, Median 98 E-K (5:15, Statler) Time : 7

827 views • 48 slides
Announcements Announcements (Extra credit for any of these) Rosenfield Symposium: Tyranny of

Announcements Announcements (Extra credit for any of these) Rosenfield Symposium: Tyranny of

Announcements Announcements (Extra credit for any of these) Rosenfield Symposium: Tyranny of Data, this Wed-Thurs Thursday Extra: Thursdays@4:00 in Science 3821 This week: Nathaniel Williams '20: Internship at Vocdoni Class slides posted

179 views • 5 slides
For personal use only 7 August 2007 Manager Announcements Companies Announcements Office

For personal use only 7 August 2007 Manager Announcements Companies Announcements Office

For personal use only 7 August 2007 Manager Announcements Companies Announcements Office Australian Stock Exchange Limited 10 th Floor, 20 Bond Street SYDNEY NSW 2000 By e-lodgment Dear Sir/Madam MANAGING DIRECTORS PRESENTATION

562 views • 29 slides
Overview of the New Unit Activity Reporting Module Announcements Introduction and announcements:

Overview of the New Unit Activity Reporting Module Announcements Introduction and announcements:

Overview of the New Unit Activity Reporting Module Announcements Introduction and announcements: All lines will be on mute. Please use the Chat with presenter option on the left hand side of your screen to ask questions. Answers will

548 views • 43 slides
61A Lecture 24 Monday, March 30 Announcements 2 Announcements Homework 7 due Wednesday 4/8

61A Lecture 24 Monday, March 30 Announcements 2 Announcements Homework 7 due Wednesday 4/8

61A Lecture 24 Monday, March 30 Announcements 2 Announcements Homework 7 due Wednesday 4/8 @ 11:59pm 2 Announcements Homework 7 due Wednesday 4/8 @ 11:59pm Quiz 3 released Tuesday 4/7, due Thursday 4/9 @ 11:59pm 2 Announcements

1.52k views • 113 slides
110 Announcements Announcements - Houses How-to use Zoom for Office-hours Video Posted on

110 Announcements Announcements - Houses How-to use Zoom for Office-hours Video Posted on

110 Announcements Announcements - Houses How-to use Zoom for Office-hours Video Posted on Course Site We will be doing house zooms today! Join yours via Sakai &gt; Postem Password: comp110! Additionally, houses have setup GroupMes

318 views • 8 slides
Announcements Announcements Reading for Wednesday Reading for Wednesday the rest of

Announcements Announcements Reading for Wednesday Reading for Wednesday the rest of

Announcements Announcements Reading for Wednesday Reading for Wednesday the rest of Chapter 2 (with a few exceptions) Check Check http://www.itk.ilstu.edu/faculty/kwsuh/courses/ ITK168/Fall2011/index.htm

704 views • 51 slides
Announcements Lecture 16 Debugging Leah Perlmutter / Summer 2018 Announcements Reading

Announcements Lecture 16 Debugging Leah Perlmutter / Summer 2018 Announcements Reading

CSE 331 Software Design and Implementation Announcements Lecture 16 Debugging Leah Perlmutter / Summer 2018 Announcements Reading 6 is posted, Quiz 6 coming out tonight Congrats on making it past HW6 due date if still

345 views • 12 slides
Lecture 22 System Development Leah Perlmutter / Summer 2018 Announcements Announcements

Lecture 22 System Development Leah Perlmutter / Summer 2018 Announcements Announcements

CSE 331 Software Design and Implementation Lecture 22 System Development Leah Perlmutter / Summer 2018 Announcements Announcements Last Fridays Guest Speaker (Kendra Yourtee) Sign thank-you card Take survey:

680 views • 46 slides
Superintendents Report April 10 th , 2018 Superintendents Report Announcements Proposed

Superintendents Report April 10 th , 2018 Superintendents Report Announcements Proposed

Superintendents Report April 10 th , 2018 Superintendents Report Announcements Proposed Action Items Presentation Announcements Safety, Mental Health and Wellness in Honeoye Falls-Lima Central Schools Announcements What parents

356 views • 32 slides
Lecture 12 Subtypes and Subclasses Leah Perlmutter / Summer 2018 Announcements Announcements

Lecture 12 Subtypes and Subclasses Leah Perlmutter / Summer 2018 Announcements Announcements

CSE 331 Software Design and Implementation Lecture 12 Subtypes and Subclasses Leah Perlmutter / Summer 2018 Announcements Announcements Building You must run ant validate to make sure your homework builds on attu!!!!!! In real

592 views • 47 slides
Announcements Lecture 4 Specifications Leah Perlmutter / Summer 2018 Announcements

Announcements Lecture 4 Specifications Leah Perlmutter / Summer 2018 Announcements

CSE 331 Software Design and Implementation Announcements Lecture 4 Specifications Leah Perlmutter / Summer 2018 Announcements Weaker/Stronger Statements HW1 Due tonight Question from last lecture... Why is {sum = sum(1..n) }

646 views • 15 slides
Lecture 14 Generics 1 Leah Perlmutter / Summer 2018 Announcements Announcements

Lecture 14 Generics 1 Leah Perlmutter / Summer 2018 Announcements Announcements

CSE 331 Software Design and Implementation Lecture 14 Generics 1 Leah Perlmutter / Summer 2018 Announcements Announcements Quiz 5 is due Thursday Homework 6 due Thursday Midterm grades and feedback will be out this

626 views • 37 slides
k N Wo r d S o c r a t i c S e mi n a r ( D a y 1 ) . n o t e b o

k N Wo r d S o c r a t i c S e mi n a r ( D a y 1 ) . n o t e b o

k N Wo r d S o c r a t i c S e mi n a r ( D a y 1 ) . n o t e b o o J a n u a r y 2 9 , 2 0 1 3 J a n 2 4 8 : 2 3 A M 1 k N Wo r d S o c r a t i c S e mi n a r (

329 views • 8 slides
Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach Anastasia

Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach Anastasia

Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach Anastasia Mavridou 1 and Aron Laszka 2 1 Vanderbilt University 2 University of Houston 2 Smart Contract Insecurity Smart contracts are riddled with bugs and

575 views • 21 slides
Smart Jump: Automated Navigation Suggestion for Videos in MOOCs Han Zhang , Maosong Sun ,

Smart Jump: Automated Navigation Suggestion for Videos in MOOCs Han Zhang , Maosong Sun ,

Smart Jump: Automated Navigation Suggestion for Videos in MOOCs Han Zhang , Maosong Sun , Xiaochen Wang , Zhengyang Song , Jie Tang , Jimeng Sun Tsinghua University Georgia Institute of Technology 1 MOOCs 808

626 views • 20 slides
A Note on the Performance Distribution of Affine Schedules Louis-Nol Pouchet 1 , Cdric Bastoul

A Note on the Performance Distribution of Affine Schedules Louis-Nol Pouchet 1 , Cdric Bastoul

A Note on the Performance Distribution of Affine Schedules Louis-Nol Pouchet 1 , Cdric Bastoul 1 , John Cavazos 2 and Albert Cohen 1 1 ALCHEMY, INRIA Futurs / University of Paris-Sud XI, France 2 Computer and Information Sciences, University of

823 views • 24 slides
University Of Bristol 1 What to talk about? 2 What to talk about? Theory vs Practice vs

University Of Bristol 1 What to talk about? 2 What to talk about? Theory vs Practice vs

(Or Living Between a Rock and a Hard Place) Nigel Smart University Of Bristol 1 What to talk about? 2 What to talk about? Theory vs Practice vs Theory and Practice A key problem is someones theory is someone elses practice,

1.66k views • 68 slides
Mastering the Diversity in Smart Homes A Practical Approach Kai Kreuzer, Deutsche Telekom AG

Mastering the Diversity in Smart Homes A Practical Approach Kai Kreuzer, Deutsche Telekom AG

Mastering the Diversity in Smart Homes A Practical Approach Kai Kreuzer, Deutsche Telekom AG Olaf Weinmann, Bosch SI Eclipse SmartHome Project Lead Eclipse Vorto Project Lead 1 http://imgs.xkcd.com/comics/standards.png INTRANET OF THINGS

390 views • 15 slides
Understanding Source Code through Machine Learning to Create Smart Software Engineering Tools

Understanding Source Code through Machine Learning to Create Smart Software Engineering Tools

Understanding Source Code through Machine Learning to Create Smart Software Engineering Tools Miltos Allamanis , University of Edinburgh March 13th, 2016 My PhD is supported by Joint work with: Charles Sutton (UoE), Earl T. Barr (UCL), Chris

1.13k views • 97 slides
Chapter 5: Color vision remnants Chapter 6: Depth perception Lec 12 Jonathan Pillow, Sensation

Chapter 5: Color vision remnants Chapter 6: Depth perception Lec 12 Jonathan Pillow, Sensation

Chapter 5: Color vision remnants Chapter 6: Depth perception Lec 12 Jonathan Pillow, Sensation &amp; Perception (PSY 345 / NEU 325) Princeton University, Fall 2017 1 Other types of color-blindness: Monochromat: true

775 views • 48 slides

More recommend