Recently, cloud control systems have gained increasing attention from the research community as a solution to implement networked cyber-physical systems (CPSs). Such an architecture can reduce deployment and maintenance costs albeit at the expense of additional security and privacy concerns. In this paper, first, we discuss state-of-the-art security solutions for cloud control systems and their limitations. Then, we propose a novel control architecture based on Trusted Execution Environments (TEE). We show that such an approach can potentially address major security and privacy issues for cloud-hosted control systems. Finally, we present an implementation setup based on Intel Software Guard Extensions (SGX) and validate its effectiveness on a testbed system.
翻译:最近,云控制系统作为实施网络化网络物理系统(CPS)的解决方案,得到了研究界越来越多的关注。这种结构可以降低部署和维护成本,尽管会降低额外的安全和隐私关切。在本文中,我们首先讨论了云控制系统的最新安全解决方案及其局限性。然后,我们提出了基于信任执行环境的新式控制架构。我们表明,这种方法有可能解决云托管控制系统的重大安全和隐私问题。最后,我们介绍了基于英特尔软件保护扩展(SGX)的实施机制,并在测试台系统上验证其有效性。
相关内容
微信扫码咨询专知VIP会员