Binary analysis of closed-source, low-level, and
embedded systems software has emerged at the heart of cyberphysical vulnerability assessment of third-party or legacy devices
in safety-critical systems. In particular, recovering the semantics
of the source algorithmic implementations enables analysts to
understand the context of a particular binary program snippet.
However, experimentation and evaluation of binary analysis
techniques on real-world embedded cyber-physical systems are
limited to domain-specific testbeds with a low number of use
cases–insufficient to support emerging data-driven techniques.
Moreover, the use cases rarely have the source mathematical
expressions, algorithms, and compiled binaries. In this paper, we
present AUTOCPS, a framework for generating a large corpus
of control systems binaries along with their source algorithmic
expressions and source code. AUTOCPS enables researchers to
tune the control system binary data generation by varying different permutations of cyber-physical modules, e.g., the underlying
control algorithm, while ensuring a semantically valid binary. We
initially constrain AUTOCPS to the flight software domain and
generate over 4000 semantically different control systems source
representations, which are then used to generate hundreds of
thousands of binaries. We describe current and future use cases
of AUTOCPS towards cyber-physical vulnerability assessment of
safety-critical systems.
more »
« less
Note: When clicking on a Digital Object Identifier (DOI) number, you will be taken to an external site maintained by the publisher.
Some full text articles may not yet be available without a charge during the embargo (administrative interval).
What is a DOI Number?
Some links on this page may take you to non-federal websites. Their policies may differ from this site.
Full Text Available