START:UAVs

Software Techniques for Automated Resiliency and Trustworthiness in Uncrewed Aerial Vehicles

Attack Scenario

We assume an uncrewed vehicle on a surveillance patrol mission; the mission objectives include aiming an on-board camera at each of a series of fixed waypoints during patrol. While presented here abstractly, both the UAV properties and the mission described here are also indicative of deployments that are of commercial or defense interest.

An attacker with ground station software and a directed antenna sends malicious MAVLink packets repeatedly. The attacker's signal radiates in a cone pattern (shown in red as the Cone of Influence). Upon vehicle entry into the cone of influence, the attacker can send packets that divert the path or heading of the vehicle, preventing capturing of a focused picture of the waypoint. We assume that the attacker is motivated by subtlety and will not seek to simply crash the vehicle or otherwise overtly draw attention. Such an attacker seeks to slightly influence the vehicle, concealing the exact source location of the attack.

Resources

Flight Plan

We conduct our hardware experiments at Milton Field, which is owned by the University of Virginia.

The flight plan (QGroundControl Waypoint Format) is available here.

Attack Simulator

Click here to download a Python script for simulating the cone of influence in our attack scenario. When run, the script will protect a sphere of a given radius around a given GPS coordinate. Communication can occur with the MAV either over UDP or an RF telemetry radio (specified at run-time).

Telemetry Data

Recordings of telemetry data from our experiments are available on GitHub.

Publications

Westley Weimer, Stephanie Forrest, Miryung Kim, Claire Le Goues, Patrick Hurley: Trusted Software Repair for System Resiliency: Dependable Systems and Networks (DSN 2016) — Industrial Track: to appear.
Kate Highnam, Kevin Angstadt, Kevin Leach, Westley Weimer, Aaron Paulos, Patrick Hurley: An Uncrewed Aerial Vehicle Attack Scenario and Trustworthy Repair Architecture: Dependable Systems and Networks (DSN 2016) — Industrial Track: to appear.

Tutorials

Injecting and Testing Faults in ArduPilot

Repairing Faults in ArduPilot

August 2016 Demonstration

Presentations

Pictures

Demonstration Photographs

Videos

Normal Mission & Attack

Repair Demonstration — Quad-Screen

Live Run #1

Live Run #2

People

Principal Investigators

Aaron Paulos, Raytheon BBN Technologies
Shane Clark, Raytheon BBN Technologies
Partha Pal, Raytheon BBN Technologies

Current Graduate Researchers

Past Students

Kate Highnam, moved on to Capital One

We gratefully acknowledge the partial support of the Air Force Research Laboratory (via grant FA8750-15-2-0075). Any opinions, findings and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of AFRL.

Template by Bootstrapious
Modified by Kevin Angstadt