Mitigating Timing-Based Attacks in Real-Time Cyber-Physical Systems
Arkaprava Sain, Sunandan Adhikary, Soumyajit Dey
TL;DR
Real-time CPS face timing-side-channel risks due to deterministic schedules. SecureRT mitigates this by computing bounded, delay-aware perturbations to victim control task releases and applying them online via a PFP-d scheduler, reducing the Attack Effective Window while preserving safety and control performance. The approach combines worst-case response-time analysis, a delay-aware controller synthesis, and MILP-based optimization to minimize AEW overlap with untrusted tasks. Experimental results on automotive-like task sets and a real-time Linux platform demonstrate substantial reductions in attack opportunities with acceptable control quality, highlighting practical security gains for real-time CPS.
Abstract
Real-time cyber-physical systems depend on deterministic task execution to guarantee safety and correctness. Unfortunately, this determinism can unintentionally expose timing information that enables adversaries to infer task execution patterns and carry out timing-based attacks targeting safety-critical control tasks. While prior defenses aim to obscure schedules through randomization or isolation, they typically neglect the implications of such modifications on closed-loop control behavior and real-time feasibility. This work studies the problem of securing real-time control workloads against timing inference attacks while explicitly accounting for both schedulability constraints and control performance requirements. We present a scheduling-based mitigation approach that introduces bounded timing perturbations to control task executions in a structured manner, reducing adversarial opportunities without violating real-time guarantees. The framework jointly considers worst-case execution behavior and the impact of execution delays on control performance, enabling the system to operate within predefined safety and performance limits. Through experimental evaluation on representative task sets and control scenarios, the proposed approach demonstrates that exposure to timing-based attacks can be significantly reduced while preserving predictable execution and acceptable control quality.
