when embedded systems attack therac 25
play

When Embedded Systems Attack Therac-25 Embedded systems can fail - PowerPoint PPT Presentation

Apr 28, 2023 •35 likes •65 views

1 2 When Embedded Systems Attack Therac-25 Embedded systems can fail for a variety of reasons The Therac-25 was a medical radiation therapy machine developed in the mid-1980s. Electrical problems Mechanical problems

  1. 1 2 When Embedded Systems Attack… Therac-25 • Embedded systems can fail for a variety of reasons • The Therac-25 was a medical radiation therapy machine developed in the mid-1980s. – Electrical problems – Mechanical problems • Controlled by a PDP-11 (16-bit minicomputer) – Errors in the programming • Errors in the hardware/software design let to three – Incorrectly specified patients being killed and many injured. – Errors caused by users – Zillion other reasons • Some failures have been well documented and can be used to learn how to make systems better. 3 4 Therac-25 Mars "Spirit" Rover • Examination of the system revealed numerous defects that • NASA/JPL robotic rover sent to Mars in 2004. could lead to improper operation: • Suffered a severe “anomaly” upon landing that nearly – Insufficient hardware/software interlocks to prevent dangerous types aborted the mission. of actions. – Certain unusual patterns of keystrokes could put the system in the incorrect mode. – Software was reused from previous models despite changes in the overall design. – No way for software to tell if the hardware was doing what it was told to do (open loop control). – Control tasks and operator tasks were not synchronized leading to possible race condition. – Overflows in some variables were not detected.

  2. 5 6 Mars "Spirit" Rover Mars "Spirit" Rover • Spirit appeared to be working as expected after • For 11 Martian days, the JPL team worked to diagnose landing, but soon started having problems. and fix the problem. • JPL could contact it to give it commands and know that • Data in the FLASH memory was believed to be it was alive but very little data was being received. corrupted. • Eventually concluded that the rover was resetting • Eventually reformatted the FLASH and loaded new continuously due to problems with the software stored data. in FLASH memory. • Problem caused by way the OS used memory to • Spirit was commanded to run in “crippled” mode implement a file system in the FLASH. where it doesn’t use the FLASH data. • Processes could run out of available memory and get • JPL had control of it, sort of, but what was wrong? stuck causing a reset. • Eventually fixed and returned to full operation. 7 8 Toyota Unintended Acceleration Toyota Unintended Acceleration • Over the last 6+ years many claims that Toyota vehicles • Toyota and NHTSA claimed the problem was with floor were subject to sudden unintended acceleration mats or drivers pressing the throttle instead of the problems. brake. • Vehicle throttles use “drive-by-wire” system • Eventually resulted in numerous lawsuits – No mechanical connection between the throttle pedal and • Testimony by expert witnesses for the plaintiffs have the engine. pointed to numerous potential problems in the – Computers sense the position of the throttle and adjust the embedded systems running the vehicles. engine power accordingly. – Disclaimer: Testimony is not proof, just an opinion. – Similar to “fly-by-wire” system in use in current military and commercial aircraft and in the space shuttle.

  3. 9 10 Toyota Unintended Acceleration Toyota Unintended Acceleration • Do we have unreasonably high expectation for the • Some possible problems were identified during reliability of consumer electronic devices? litigation: • How much are people willing to pay for reliability? – Possible for a single bit flipped to cause the problem. – “Fly by wire is done on aircraft -- and if you have flown on a – Portions of the memory were not protected against 757,767,747-400,787,777, or any Airbus Airliner, you have corruption due to stack overflows and software bugs. depended on this technology from take-off to landing -- The – One task was handling numerous functions including fail- best of these systems are Quadruple Redundant (typically safes and brake override. three redundant actuators and dual sticks, plus redundant – Tasks could terminate without the OS noticing. trim switch controls -- plus a dissimilar backup system -- in • Vehicle software is not designed to the same standards these systems the power systems are triple redundant or quadruple redundant as well.” - EETimes.com blogger as required by law in aircraft, medical devices, etc. • How much would a car cost if you demanded the same reliability and redundancy as in an aircraft?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

When Embedded Systems Attack Embedded systems can fail for a variety of reasons

When Embedded Systems Attack Embedded systems can fail for a variety of reasons

22.1 22.2 When Embedded Systems Attack Embedded systems can fail for a variety of reasons Electrical problems Unit 22 Mechanical problems Errors in the programming Incorrectly specified Errors caused by users Embedded

201 views • 5 slides
Case Study: Therac-25 January 11th, 2018 The Context u Therac machines are linear accelerators

Case Study: Therac-25 January 11th, 2018 The Context u Therac machines are linear accelerators

CS4001: Computing, Society and Professionalism Sauvik Das | Assistant Professor Case Study: Therac-25 January 11th, 2018 The Context u Therac machines are linear accelerators that target cancer sites with highly- concentrated beams of radiation

256 views • 15 slides
Case Study: Therac-25 August 22nd, 2018 Therac machines are linear accelerators that target

Case Study: Therac-25 August 22nd, 2018 Therac machines are linear accelerators that target

CS4001: Computing, Society and Professionalism Sauvik Das | Assistant Professor Case Study: Therac-25 August 22nd, 2018 Therac machines are linear accelerators that target cancer sites with highly-concentrated beams of radiation

333 views • 15 slides
Attack on Traffic Systems These attack examples have happened in the past. We will take an

Attack on Traffic Systems These attack examples have happened in the past. We will take an

From start to finish how a cyber attack would be performed on traffic system, we will go over first day >> exploitation of the device >> the real-world aftermath. Mission Secure, Inc. Attack on Traffic Systems These attack examples

556 views • 18 slides
HW/SW Codesign w/ FPGAs Embedded Systems ECE 495/595 Overview (Slides from Embedded Systems

HW/SW Codesign w/ FPGAs Embedded Systems ECE 495/595 Overview (Slides from Embedded Systems

HW/SW Codesign w/ FPGAs Embedded Systems ECE 495/595 Overview (Slides from Embedded Systems Design, F. Vahid and T. Givargis) Embedded computing systems definition: Computing systems embedded within electronic devices. Hard to define

396 views • 26 slides
Embedded systems and the role of programmable logic devices in embedded systems Embedded system :

Embedded systems and the role of programmable logic devices in embedded systems Embedded system :

Embedded systems and the role of programmable logic devices in embedded systems Embedded system : a combination of computer hardware and software, and perhaps additional mechanical or other parts, designed to perform a dedicated function. In some

414 views • 20 slides
4TU MASTER EMBEDDED SYSTEMS Bert Molenkamp 19/03/2020 Master Embedded Systems 1 Table of

4TU MASTER EMBEDDED SYSTEMS Bert Molenkamp 19/03/2020 Master Embedded Systems 1 Table of

4TU MASTER EMBEDDED SYSTEMS Bert Molenkamp 19/03/2020 Master Embedded Systems 1 Table of contents What is an embedded system Examples of research topics Admission Overview of the programme Success rates Master Embedded

814 views • 31 slides
Embedded Systems (ESII) Prof. Dr. J. Henkel, Dr. M. Shafique CES - Chair for Embedded Systems

Embedded Systems (ESII) Prof. Dr. J. Henkel, Dr. M. Shafique CES - Chair for Embedded Systems

1 ESII: ASIPs_ISEs Design and Architectures for Embedded Systems (ESII) Prof. Dr. J. Henkel, Dr. M. Shafique CES - Chair for Embedded Systems Karlsruhe Institute of Technology, Germany Today: Embedded Processor Platforms ASIPs and Extensible

1.5k views • 89 slides
Software Engineering for Embedded Systems Software Engineering for Embedded Systems Dr.-Ing.

Software Engineering for Embedded Systems Software Engineering for Embedded Systems Dr.-Ing.

Software Engineering for Embedded Systems Software Engineering for Embedded Systems Dr.-Ing. Mohammad. Abdullah Al Faruque Dipl.-Inform. Sebastian Kobbe CES - C hair for E mbedded S ystems (Prof. Dr. Jrg Henkel) Department of Computer Science

847 views • 72 slides
Embedded Systems Programming Trends of Embedded Systems (Module 2) Yann-Hang Lee Arizona State

Embedded Systems Programming Trends of Embedded Systems (Module 2) Yann-Hang Lee Arizona State

Embedded Systems Programming Trends of Embedded Systems (Module 2) Yann-Hang Lee Arizona State University yhlee@asu.edu (480) 727-7507 Summer 2014 Real-time Systems Lab, Computer Science and Engineering, ASU Trends of RT Embedded Systems

332 views • 10 slides
Networked Embedded Systems Ezio Bartocci Overview Networked Embedded Systems (182.717): 6 weeks

Networked Embedded Systems Ezio Bartocci Overview Networked Embedded Systems (182.717): 6 weeks

Networked Embedded Systems Ezio Bartocci Overview Networked Embedded Systems (182.717): 6 weeks for semester ECTS: 6.0 Web: http://ti.tuwien.ac.at/rts/teaching/courses/networked-embedded-systems Type: Lessons (VU Vorlesung) with

700 views • 20 slides
Embedded Systems Engineering VO + LU Overview The module Embedded Systems Engineering is split

Embedded Systems Engineering VO + LU Overview The module Embedded Systems Engineering is split

Embedded Systems Engineering VO + LU Overview The module Embedded Systems Engineering is split in 2 parts: Lectures: ESE VO (182.721) ECTS: 3.0 Web: http://ti.tuwien.ac.at/rts/teaching/courses/esevo Staff: Prof. Radu Grosu,

859 views • 7 slides
1 How are embedded systems different Timing and Concurrency than traditional software? Fire

1 How are embedded systems different Timing and Concurrency than traditional software? Fire

What is an Embedded System? Definition of an embedded computer system: Embedded Systems is a digital system. Introduction uses a microprocessor (usually). runs software for some or all of its functions. frequently used as a

158 views • 3 slides
PANACEA: AUTOMATING ATTACK CLASSIFICATION FOR ANOMALY-BASED NETWORK INTRUSION DETECTION SYSTEMS

PANACEA: AUTOMATING ATTACK CLASSIFICATION FOR ANOMALY-BASED NETWORK INTRUSION DETECTION SYSTEMS

PANACEA: AUTOMATING ATTACK CLASSIFICATION FOR ANOMALY-BASED NETWORK INTRUSION DETECTION SYSTEMS DAMIANO BOLZONI, SANDRO ETALLE AND PIETER HARTEL DISTRIBUTED AND EMBEDDED SECURITY GROUP TWENTE SECURITY LAB 10+ YEARS OF RESEARCH OVER ANOMALY

160 views • 14 slides
Introduction to Embedded Systems Introduction to Embedded Systems CS/ECE 6780/5780 CS/ECE

Introduction to Embedded Systems Introduction to Embedded Systems CS/ECE 6780/5780 CS/ECE

Introduction to Embedded Systems Introduction to Embedded Systems CS/ECE 6780/5780 CS/ECE 6780/5780 Al Davis Al Davis Todays topics: logistics - minor synopsis of last lecture software desig finite state machine based

466 views • 19 slides
Last Time Embedded systems introduction u Definition of embedded system Common

Last Time Embedded systems introduction u Definition of embedded system Common

Last Time Embedded systems introduction u Definition of embedded system Common characteristics Kinds of embedded systems Crosscutting issues Software architectures Choosing a processor Choosing a

931 views • 39 slides
Roger Colbeck (University of York) Explain what device-independence means Motivate its use

Roger Colbeck (University of York) Explain what device-independence means Motivate its use

Roger Colbeck (University of York) Explain what device-independence means Motivate its use Discuss the main ideas focussing on QKD Discuss what it means for a protocol to be secure Drawbacks of device-independence Related

847 views • 83 slides
Continuous-time Markov Chains Gonzalo Mateos Dept. of ECE and Goergen Institute for Data Science

Continuous-time Markov Chains Gonzalo Mateos Dept. of ECE and Goergen Institute for Data Science

Continuous-time Markov Chains Gonzalo Mateos Dept. of ECE and Goergen Institute for Data Science University of Rochester gmateosb@ece.rochester.edu http://www.ece.rochester.edu/~gmateosb/ October 31, 2016 Introduction to Random Processes

868 views • 51 slides
Post-quantum Security of the CBC, CFB, OFB, Modes of Operation. CTR, and XTS Modes of Operation.

Post-quantum Security of the CBC, CFB, OFB, Modes of Operation. CTR, and XTS Modes of Operation.

Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Post-quantum Security of the CBC, CFB, OFB, Modes of Operation. CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Mayuresh Anand, Ehsan Ebrahimi Targhi, Gelo Noel Tabia,

235 views • 22 slides
Smoothed Analysis of ICP David Arthur Sergei Vassilvitskii (Stanford University) Matching

Smoothed Analysis of ICP David Arthur Sergei Vassilvitskii (Stanford University) Matching

Smoothed Analysis of ICP David Arthur Sergei Vassilvitskii (Stanford University) Matching Datasets Problem: Given two point sets A and B, translate A to best match B. ICP: Iterative Closest Point Problem: Given two point sets A and B,

569 views • 38 slides
Multivariable Zeta Functions Je ff Lagarias , University of Michigan Ann Arbor, MI, USA

Multivariable Zeta Functions Je ff Lagarias , University of Michigan Ann Arbor, MI, USA

Multivariable Zeta Functions Je ff Lagarias , University of Michigan Ann Arbor, MI, USA International Conference in Number Theory and Physics (IMPA, Rio de Janeiro) (June 23, 2015) Topics Covered Part I. Lerch Zeta Function and Lerch

731 views • 52 slides
Current Status of Geant4 MultiThreading How it is designed and implemented How to convert

Current Status of Geant4 MultiThreading How it is designed and implemented How to convert

Current Status of Geant4 MultiThreading How it is designed and implemented How to convert Geant4 to Geant4MT Xin Dong and Gene Cooperma High Performance Computing Lab College of Computer and Information Science Northeastern University

436 views • 27 slides
Normalization by Evaluation for Martin-L of Type Theory Andreas Abel 1 Thierry Coquand 2 Peter

Normalization by Evaluation for Martin-L of Type Theory Andreas Abel 1 Thierry Coquand 2 Peter

Normalization by Evaluation for Martin-L of Type Theory Andreas Abel 1 Thierry Coquand 2 Peter Dybjer 2 1 Ludwig-Maximilians-University Munich 2 Chalmers University of Technology Buchholz-Fest Munich 5 April 2008 Abel Coquand Dybjer (LMU,

320 views • 21 slides
Micah 6:6 With what shall I come before the Lord, and bow myself before God on high? Micah

Micah 6:6 With what shall I come before the Lord, and bow myself before God on high? Micah

Micah 6:6 With what shall I come before the Lord, and bow myself before God on high? Micah 6:7 Will the LORD be pleased with thousands of rams, with ten thousands of rivers of oil? Micah 6:7 Shall I give my firstborn for my

707 views • 47 slides

More recommend