Institut für Secure Cyber-Physical Systems
Institut für Secure Cyber-Physical Systems
DE

Trustworthy Cryptographic Architectures

Like other networked systems CPS need to be secured by cryptographic architectures that ensure communication and platform security. The context of CPS brings about many challenges such as new settings for key establishment, realtime requirements, and resource-constrained environments. We devise novel cryptographic architectures driven by concrete CPS applications, and provide the methodology for their specification and verification; to make them certifiable to a high evaluation assurance level.

Security Systems Engineering for Safety

In the last stage of a cyber-physical attack the attacker has gained access to a safety-critical controller network, and is able to inject messages that directly affect control. We provide the foundations and methodology to obtain integrated safety and security concepts. This involves: the analysis and systematization of the attacker‘s capability at the level of controller networks, the potential and limitations of intruder detection systems at this level, and isolation and mitigation strategies.

Systems-of-Systems Engineering for Resilience

Our goal is to understand the risk for the systems-of-systems level and how to contain risk by architectural measures. We aim for resilience against multi-instance attacks according to the following asymptotic yardstick: to increase the impact of an attack the attacker‘s effort and risk of exposure has to grow exponentially. We achieve this by architectural measures that code the physical into the security architecture including location- and hardware-based trust anchors.