With increasing complexity, connectivity, and programmability of embedded CPS devices, the potential cyber-attack surface has also been increasing making the study of related cyber-security issues highly relevant and timely. This article provides an efficient verification method for runtime applications with tight performance specifications. By considering classification and the declarative and definitive properties of different types of attacks, it is shown that a runtime security monitor can be generated to assure the security of application execution against known threats given the performance requirements. The methodology is applied in a healthcare application of insulin pump to regulate blood sugar level. — Farshad Khorrami, New York University

中文翻译：

---

实时关键控制应用程序对已知威胁的运行时保护

随着嵌入式CPS设备的复杂性，连接性和可编程性的不断提高，潜在的网络攻击面也在不断增加，这使得对相关网络安全问题的研究变得高度相关和及时。本文为性能要求严格的运行时应用程序提供了一种有效的验证方法。通过考虑分类以及不同类型攻击的声明性和确定性，表明可以生成运行时安全监视器，以确保在给定性能要求的情况下针对已知威胁的应用程序执行安全性。该方法被应用于胰岛素泵的医疗应用中以调节血糖水平。— 纽约大学Farshad Khorrami