Logo image
Back
Hierarchical Firmware-level Security Policy for Industrial Control Systems
Conference proceeding

Hierarchical Firmware-level Security Policy for Industrial Control Systems

Sameer Mankotia, Daniel Conte de Leon and Jennifer Johnson-Leung
2025 Cyber Awareness and Research Symposium (CARS), pp.1-6
2025 Cyber Awareness and Research Symposium (Grand Forks, ND, USA, 10/27/2025–10/30/2025)
01/21/2026
DOI: https://doi.org/10.1109/CARS67163.2025.11337876

Abstract

access control binary trees Hardware hierarchical policies Industrial control Microprogramming Power system security Power systems security Protection Protective relaying protective relays Real-time systems Security System-on-chip Software
Industrial control systems need strong security and performance guarantees. Current digital systems may be vulnerable to a variety of low-level attacks that exploit common weaknesses such as out-of-bounds read/write, access of resource using incompatible type, and de-serialization of untrusted data. These types of weaknesses appear in the 2024 CWE Top 10 KEV Weaknesses List. In this article, we introduce the binary implementation (BHPol) of the HPol hierarchical security policy framework. BHPol enables the fast firmware-level declaration and enforcement of security polices on-chip. A BHPol enabled digital processor checks each low-level instruction against a predefined and static set of security policies using associative memory. Requests not allowed by the policy are denied.
url
doi.org/10.1109/CARS67163.2025.11337876View

Metrics

1 Record Views

Details

Logo image