TY - GEN
T1 - Support Remote Attestation for Decentralized Robot Operating System (ROS) using Trusted Execution Environment
AU - Wang, Qian
AU - Lee, Brian
AU - Qiao, Yuansong
N1 - Publisher Copyright:
© 2024 IEEE.
PY - 2024
Y1 - 2024
N2 - The surge in autonomous robot deployments across diverse domains is undeniable. The Robot Operating System (ROS) stands out as the prevailing standard for robotics systems, with ROS 2 emerging as its revitalized version. ROS 2 uses Data Distribution Service (DDS) as its communication middleware, aligning itself with the blossom of decentralized and distributed smart systems. However, the security of ROS 2 is dependent on the implementation of the DDS security plugins, which provides domain-level access protection under the assumption of trust in local machines. The problem arises when a malicious ROS 2 node, compromised by malware, can disseminate false information or pilfer sensitive data from other legitimate nodes within the system. To address this vulnerability, this paper harnesses the Trusted Execution Environment (TEE) to build a trustworthy ROS 2 platform with remote attestation. The proposed solution not only verifies the identity but also ensures the integrity of ROS 2 nodes before they provide/consume data and/or collaborate with each other. Our design establishes trust between communication parties and improves ROS 2 security by incorporating the hardware level protection.
AB - The surge in autonomous robot deployments across diverse domains is undeniable. The Robot Operating System (ROS) stands out as the prevailing standard for robotics systems, with ROS 2 emerging as its revitalized version. ROS 2 uses Data Distribution Service (DDS) as its communication middleware, aligning itself with the blossom of decentralized and distributed smart systems. However, the security of ROS 2 is dependent on the implementation of the DDS security plugins, which provides domain-level access protection under the assumption of trust in local machines. The problem arises when a malicious ROS 2 node, compromised by malware, can disseminate false information or pilfer sensitive data from other legitimate nodes within the system. To address this vulnerability, this paper harnesses the Trusted Execution Environment (TEE) to build a trustworthy ROS 2 platform with remote attestation. The proposed solution not only verifies the identity but also ensures the integrity of ROS 2 nodes before they provide/consume data and/or collaborate with each other. Our design establishes trust between communication parties and improves ROS 2 security by incorporating the hardware level protection.
KW - Data Distribution Service
KW - Remote Attestation
KW - Robot Operating System
KW - Trusted Execution Environment
UR - http://www.scopus.com/inward/record.url?scp=85203510404&partnerID=8YFLogxK
U2 - 10.1109/ICBC59979.2024.10634382
DO - 10.1109/ICBC59979.2024.10634382
M3 - Conference contribution
AN - SCOPUS:85203510404
T3 - 2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024
SP - 693
EP - 695
BT - 2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 6th IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024
Y2 - 27 May 2024 through 31 May 2024
ER -