Application-level security for robotic networks

DSpace/Manakin Repository

Show simple item record

dc.contributor.advisor Cortesi, Agostino it_IT
dc.contributor.author Caiazza, Gianluca <1991> it_IT
dc.date.accessioned 2021-02-10 it_IT
dc.date.accessioned 2021-06-22T06:37:44Z
dc.date.available 2021-06-22T06:37:44Z
dc.date.issued 2021-03-17 it_IT
dc.identifier.uri http://hdl.handle.net/10579/18475
dc.description.abstract Cyber-physical systems (CPS) are increasingly deployed as part of the interconnected robotic cyber-infrastructures which are known as the Industrial Internet of Things (IIoT) network. Those pervasive devices are capable of automatizing various tasks and provide novel functionalities in a wide range of applications. However, this growth made the devices a worthwhile target for attackers and cybercriminals as well. The new frontiers of large-scale deployments of connected smart devices, in which we observed a tremendous growth in the amount of stored and processed sensitive data, have maturated into a widespread suspicion concerning the way in which these flow into the infrastructures. How do we make these devices safe? How can we verify their correct operation? Due to the intrinsic limitations of those devices, either from the power consumption point of view and the actual computational power at our disposal, engineering cybersecurity solutions are not trivial. This thesis focuses on discussing and developing security solutions for those networks by analyzing the application of the security pillars of Confidentiality, Integrity, Availability, Privacy, Authenticity and Trustworthiness, Non-Repudiation, Accountability, and Auditability. We provide an overview of the robotic scene and introduce the Robot Operating System (ROS), the framework we adopted as a testbed of our solutions. More in detail, this work discusses (i) novel solutions in the field of authentication and authorization in access control architectures and policy generation, management, and distribution, (ii) vulnerabilities and countermeasures in robotic frameworks, and (iii) novel approaches of network vulnerabilities excavation and accountability. In order to provide agnostic research tools and results, we develop static solutions at the application-level that could exploit prior offline computation power. The main results of the thesis can be summarized as follows: (i) a state of the art analysis of application-level threats on a general robotic framework and an in-deep review of the attack surface on ROS (ii) the formalization of novel approaches to access control architectures distribution, and the dissertation of an advanced policy management tooling we developed in the field of authentication and authorization (iii) the definition of a novel network vulnerability excavation tool and discussion on attribute-based encryption to tackle privacy issues (iv) creation of a blockchain-powered software-based black box for a robotic network to address Accountability and Non-Repudiation The results discussed in this thesis give a solid base for the definition of the future security mechanisms for robotic devices that could be easily and securely integrated into big-scale deployments spreading security solutions by reducing overall the tradeoff between security and usability. it_IT
dc.language.iso en it_IT
dc.publisher Università Ca' Foscari Venezia it_IT
dc.rights © Gianluca Caiazza, 2021 it_IT
dc.title Application-level security for robotic networks it_IT
dc.title.alternative it_IT
dc.type Doctoral Thesis it_IT
dc.degree.name Informatica it_IT
dc.degree.level Dottorato di ricerca it_IT
dc.degree.grantor Dipartimento di Scienze Ambientali, Informatica e Statistica it_IT
dc.description.academicyear Dottorato_appello_150321_33 con proroga it_IT
dc.description.cycle 33 it_IT
dc.degree.coordinator Cortesi, Agostino it_IT
dc.location.shelfmark D002117 it_IT
dc.location Venezia, Archivio Università Ca' Foscari, Tesi Dottorato it_IT
dc.rights.accessrights openAccess it_IT
dc.thesis.matricno 840009 it_IT
dc.format.pagenumber IX, 108 p. it_IT
dc.subject.miur INF/01 INFORMATICA it_IT
dc.description.note it_IT
dc.degree.discipline it_IT
dc.contributor.co-advisor it_IT
dc.provenance.upload Gianluca Caiazza (840009@stud.unive.it), 2021-02-10 it_IT
dc.provenance.plagiarycheck Agostino Cortesi (cortesi@unive.it), 2021-03-15 it_IT


Files in this item

This item appears in the following Collection(s)

Show simple item record