R2U2: monitoring and diagnosis of security threats for unmanned aerial systems
Is Version Of
We present R2U2, a novel framework for runtime monitoring of security properties and diagnosing of security threats on-board Unmanned Aerial Systems (UAS). R2U2, implemented in FPGA hardware, is a real-time, Realizable, Responsive, Unobtrusive Unit for runtime system analysis, now including security threat detection. R2U2 is designed to continuously monitor inputs from on-board components such as the GPS, the ground control station, other sensor readings, actuator outputs, and flight software status. By simultaneously monitoring and performing statistical reasoning, attack patterns and post-attack discrepancies in the UAS behavior can be detected. R2U2 uses runtime observer pairs for Linear and Metric Temporal Logics for property monitoring and Bayesian networks for diagnosis of system health during runtime. We discuss the design and implementation that now enables R2U2 to handle security threats and present simulation results of several attack scenarios on the NASA DragonEye UAS.
This article is published as Moosbrugger, Patrick, Kristin Y. Rozier, and Johann Schumann. "R2U2: monitoring and diagnosis of security threats for unmanned aerial systems." Formal Methods in System Design 51, no. 1 (2017): 31-61. DOI: 10.1007/s10703-017-0275-x. Posted with permission.