ESR12

Marine Kadar

  • Education:
    • Diplôme d’Ingénieur Ensimag (France) in 2017
      Specialized in Embedded Software
  • Research Interests:
    • Security solutions for safety critical systems
    • Real-Time operating systems
    • Hardware virtualization
Research project status:
Ongoing
PhD Student
marine.kadar@sysgo.com

Integration methods for host intrusion detection into embedded mixed-criticality systems

Host: SYSGOResearch and Technology.

  • Main supervisors:
    • Dr. Sergey Tverdyshev, sergey.tverdyshev@sysgo.com (2017-2020)
    • Philipp Gorski, philipp.gorski@sysgo.com (since 2020)
  • Co-supervisor:
    • Prof. Gerhard Fohler, fohler@eit.uni-kl.de

Objectives:

  1. Develop security monitoring solutions capable of detecting security attacks in industrial embedded mixed-criticality systems (MCS).
  2. Integrate the security solutions into the PikeOS hypervisor.

Results:

  • We defined a safety-aware architecture to integrate host intrusion detection system (HIDS) into an industrial embedded MCS. The approach is compatible with system certifiability towards industrial deployment.
  • We defined a set of metrics to evaluate the HIDS in regards to security, performance, and system schedulability impacts
  • We developed two monitoring approaches:
    • Transparent Control-Flow monitoring framework, using hardware assistance
    • Non-intrusive machine-learning based HIDS for embedded MCS
  • We implemented the proposed security monitoring services as extensions of SYSGO’s PikeOS real-time hypervisor and evaluated the overhead of the implemented solutions.

Collaboration with Prof. Gerhard Fohler:

  • TU Kaiserslautern: Evaluate the worst-case overhead of the anomaly detection solutions.

Publications:

  • M. Kadar, G. Fohler, D. Kuzhiyelil, and P. Gorski. Safety-aware integration of hardware-assisted program tracing in mixed-criticality systems for security monitoring. In IEEE Real-Time and Embedded Technology and Applications Symposium, 2021.
  • M. Kadar, S. Tverdyshev, and G. Fohler. Towards host intrusion detection for embedded industrial systems. In 50th Annual IEEE-IFIP International Conference on Dependable Systems and Networks-Supplemental Volume (DSN-S), 2020.
  • D. Kuzhiyelil, P. Zieris, M. Kadar, S. Tverdyshev, and G. Fohler. Towards transparent control-flow integrity in safety-critical systems. In 23rd Information Security Conference, 2020.
  • Patrick Denzler, Jan Ruh, Marine Kadar, Cosmin Avasalcai, Wolfgang Kastner. Towards Consolidating Industrial Use Cases on a Common Fog Computing Platform. In 25th IEEE International Conference on Emerging Technologies and Factory Automation (ETFA), 2020.
  • M. Kadar, S. Tverdyshev, and G. Fohler. System calls instrumentation for intrusion detection in embedded mixed-criticality systems. In 4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems, 2019.