Picture for Chuadhry Mujeeb Ahmed

Chuadhry Mujeeb Ahmed

Can You Still See Me?: Reconstructing Robot Operations Over End-to-End Encrypted Channels

Add code
May 17, 2022
Ryan Shah, Chuadhry Mujeeb Ahmed, Shishir Nagaraja
Figure 1 for Can You Still See Me?: Reconstructing Robot Operations Over End-to-End Encrypted Channels
Figure 2 for Can You Still See Me?: Reconstructing Robot Operations Over End-to-End Encrypted Channels
Figure 3 for Can You Still See Me?: Reconstructing Robot Operations Over End-to-End Encrypted Channels
Figure 4 for Can You Still See Me?: Reconstructing Robot Operations Over End-to-End Encrypted Channels

Connected robots play a key role in Industry 4.0, providing automation and higher efficiency for many industrial workflows. Unfortunately, these robots can leak sensitive information regarding these operational workflows to remote adversaries. While there exists mandates for the use of end-to-end encryption for data transmission in such settings, it is entirely possible for passive adversaries to fingerprint and reconstruct entire workflows being carried out -- establishing an understanding of how facilities operate. In this paper, we investigate whether a remote attacker can accurately fingerprint robot movements and ultimately reconstruct operational workflows. Using a neural network approach to traffic analysis, we find that one can predict TLS-encrypted movements with around \textasciitilde60\% accuracy, increasing to near-perfect accuracy under realistic network conditions. Further, we also find that attackers can reconstruct warehousing workflows with similar success. Ultimately, simply adopting best cybersecurity practices is clearly not enough to stop even weak (passive) adversaries.

* 13 pages, 7 figures, poster presented at wisec'22 
Viaarxiv icon
Github IconAccess Paper or Ask Questions
Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon

Attack Rules: An Adversarial Approach to Generate Attacks for Industrial Control Systems using Machine Learning

Add code
Jul 11, 2021
Muhammad Azmi Umer, Chuadhry Mujeeb Ahmed, Muhammad Taha Jilani, Aditya P. Mathur
Figure 1 for Attack Rules: An Adversarial Approach to Generate Attacks for Industrial Control Systems using Machine Learning
Figure 2 for Attack Rules: An Adversarial Approach to Generate Attacks for Industrial Control Systems using Machine Learning
Figure 3 for Attack Rules: An Adversarial Approach to Generate Attacks for Industrial Control Systems using Machine Learning
Figure 4 for Attack Rules: An Adversarial Approach to Generate Attacks for Industrial Control Systems using Machine Learning

Adversarial learning is used to test the robustness of machine learning algorithms under attack and create attacks that deceive the anomaly detection methods in Industrial Control System (ICS). Given that security assessment of an ICS demands that an exhaustive set of possible attack patterns is studied, in this work, we propose an association rule mining-based attack generation technique. The technique has been implemented using data from a secure Water Treatment plant. The proposed technique was able to generate more than 300,000 attack patterns constituting a vast majority of new attack vectors which were not seen before. Automatically generated attacks improve our understanding of the potential attacks and enable the design of robust attack detection techniques.

Viaarxiv icon
Github IconAccess Paper or Ask Questions
Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon