Smart malware that uses leaked control data of robotic applications: The case of Raven-II surgical robots

Keywhan Chung; Xiao Li; Peicheng Tang; Zeran Zhu; Zbigniew T. Kalbarczyk; Ravishankar K. Iyer; Thenkurussi Kesavadas

Smart malware that uses leaked control data of robotic applications: The case of Raven-II surgical robots

Keywhan Chung
, Xiao Li
, Peicheng Tang
, Zeran Zhu
, Zbigniew T. Kalbarczyk
, Ravishankar K. Iyer
, Thenkurussi Kesavadas

Vice President for Research

University at Albany

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

27 Scopus citations

Abstract

In this paper, we demonstrate a new type of threat that leverages machine learning techniques to maximize its impact. We use the Raven-II surgical robot and its haptic feedback rendering algorithm as an application. We exploit ROS vulnerabilities and implement smart self-learning malware that can track the movements of the robot’s arms and trigger the attack payload when the robot is in a critical stage of a (hypothetical) surgical procedure. By keeping the learning procedure internal to the malicious node that runs outside the physical components of the robotic application, an adversary can hide most of the malicious activities from security monitors that might be deployed in the system. Also, if an attack payload mimics an accidental failure, it is likely that the system administrator will fail to identify the malicious intention and will treat the attack as an accidental failure. After demonstrating the security threats, we devise methods (i.e., a safety engine) to protect the robotic system against the identified risk.

Original language	English
Title of host publication	RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses
Publisher	USENIX Association
Pages	337-351
Number of pages	15
ISBN (Electronic)	9781939133076
State	Published - 2019
Event	22nd International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2019 - Beijing, China Duration: Sep 23 2019 → Sep 25 2019

Publication series

Name	RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses

Conference

Conference	22nd International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2019
Country/Territory	China
City	Beijing
Period	09/23/19 → 09/25/19

Cite this

Chung, K., Li, X., Tang, P., Zhu, Z., Kalbarczyk, Z. T., Iyer, R. K., & Kesavadas, T. (2019). Smart malware that uses leaked control data of robotic applications: The case of Raven-II surgical robots. In RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses (pp. 337-351). (RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses). USENIX Association.

Chung, Keywhan ; Li, Xiao ; Tang, Peicheng et al. / Smart malware that uses leaked control data of robotic applications : The case of Raven-II surgical robots. RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses. USENIX Association, 2019. pp. 337-351 (RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses).

@inproceedings{99aa97854afd4041b358495198d10a03,

title = "Smart malware that uses leaked control data of robotic applications: The case of Raven-II surgical robots",

abstract = "In this paper, we demonstrate a new type of threat that leverages machine learning techniques to maximize its impact. We use the Raven-II surgical robot and its haptic feedback rendering algorithm as an application. We exploit ROS vulnerabilities and implement smart self-learning malware that can track the movements of the robot{\textquoteright}s arms and trigger the attack payload when the robot is in a critical stage of a (hypothetical) surgical procedure. By keeping the learning procedure internal to the malicious node that runs outside the physical components of the robotic application, an adversary can hide most of the malicious activities from security monitors that might be deployed in the system. Also, if an attack payload mimics an accidental failure, it is likely that the system administrator will fail to identify the malicious intention and will treat the attack as an accidental failure. After demonstrating the security threats, we devise methods (i.e., a safety engine) to protect the robotic system against the identified risk.",

author = "Keywhan Chung and Xiao Li and Peicheng Tang and Zeran Zhu and Kalbarczyk, \{Zbigniew T.\} and Iyer, \{Ravishankar K.\} and Thenkurussi Kesavadas",

note = "Publisher Copyright: {\textcopyright} 2019 RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses. All rights reserved.; 22nd International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2019 ; Conference date: 23-09-2019 Through 25-09-2019",

year = "2019",

language = "English",

series = "RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses",

publisher = "USENIX Association",

pages = "337--351",

booktitle = "RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses",

}

Chung, K, Li, X, Tang, P, Zhu, Z, Kalbarczyk, ZT, Iyer, RK & Kesavadas, T 2019, Smart malware that uses leaked control data of robotic applications: The case of Raven-II surgical robots. in RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses. RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses, USENIX Association, pp. 337-351, 22nd International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2019, Beijing, China, 09/23/19.

Smart malware that uses leaked control data of robotic applications: The case of Raven-II surgical robots. / Chung, Keywhan; Li, Xiao; Tang, Peicheng et al.
RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses. USENIX Association, 2019. p. 337-351 (RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Smart malware that uses leaked control data of robotic applications

T2 - 22nd International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2019

AU - Chung, Keywhan

AU - Li, Xiao

AU - Tang, Peicheng

AU - Zhu, Zeran

AU - Kalbarczyk, Zbigniew T.

AU - Iyer, Ravishankar K.

AU - Kesavadas, Thenkurussi

PY - 2019

Y1 - 2019

N2 - In this paper, we demonstrate a new type of threat that leverages machine learning techniques to maximize its impact. We use the Raven-II surgical robot and its haptic feedback rendering algorithm as an application. We exploit ROS vulnerabilities and implement smart self-learning malware that can track the movements of the robot’s arms and trigger the attack payload when the robot is in a critical stage of a (hypothetical) surgical procedure. By keeping the learning procedure internal to the malicious node that runs outside the physical components of the robotic application, an adversary can hide most of the malicious activities from security monitors that might be deployed in the system. Also, if an attack payload mimics an accidental failure, it is likely that the system administrator will fail to identify the malicious intention and will treat the attack as an accidental failure. After demonstrating the security threats, we devise methods (i.e., a safety engine) to protect the robotic system against the identified risk.

AB - In this paper, we demonstrate a new type of threat that leverages machine learning techniques to maximize its impact. We use the Raven-II surgical robot and its haptic feedback rendering algorithm as an application. We exploit ROS vulnerabilities and implement smart self-learning malware that can track the movements of the robot’s arms and trigger the attack payload when the robot is in a critical stage of a (hypothetical) surgical procedure. By keeping the learning procedure internal to the malicious node that runs outside the physical components of the robotic application, an adversary can hide most of the malicious activities from security monitors that might be deployed in the system. Also, if an attack payload mimics an accidental failure, it is likely that the system administrator will fail to identify the malicious intention and will treat the attack as an accidental failure. After demonstrating the security threats, we devise methods (i.e., a safety engine) to protect the robotic system against the identified risk.

UR - https://www.scopus.com/pages/publications/85077822237

M3 - Conference contribution

T3 - RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses

SP - 337

EP - 351

BT - RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses

PB - USENIX Association

Y2 - 23 September 2019 through 25 September 2019

ER -

Chung K, Li X, Tang P, Zhu Z, Kalbarczyk ZT, Iyer RK et al. Smart malware that uses leaked control data of robotic applications: The case of Raven-II surgical robots. In RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses. USENIX Association. 2019. p. 337-351. (RAID 2019 Proceedings - 22nd International Symposium on Research in Attacks, Intrusions and Defenses).

Smart malware that uses leaked control data of robotic applications: The case of Raven-II surgical robots

Abstract

Publication series

Conference

Other files and links

Fingerprint

Cite this