Chapter 10 Monitoring Systems
Most examples here monitor physical systems Alarms PrePayment Meters Taximeters, Tachographs, Truck Speed Limiters
Alarms Threat Model Who is your attacker See page examples Deter – Detect – Alarm – Delay – Respond Sensors Page 211 Eliminating false positives Layers of defenses -- barriers
Attacks Sensors Feature interactions Attacks on Communications Physical security
Prepayment meters Purchase one place use it in another location Protect against forgery and duplication Petty fraud acceptable risk Systematic fraud is not Great study of prepayment meter pages It is cool to read and think about these systems
Taximeters, Tachographs, Speed limiters. Odometer in cars Taximeters Black Boxes What goes wrong with Tachographs? 70% procedural 20% tamper with supply to tachograph 6% tamper with instrument hightech
Tachosmart European Union Designing smart card based system Does little to eliminate procedural fraud Issues of enforcement between countries Use of GPS units (privacy) Turnover time to equip trucks Digital open to additional fraud Resurrected Duckling
Discussion articles Prepayment meters Other uses of Resurrected Duckling
List of Resources Alarms SecProdPub.nsf/frame?open&redirect= / odpub.nsf/PubHome/180E42469D7AD8A CE634?Opendocument SecProdPub.nsf/frame?open&redirect= / odpub.nsf/PubHome/180E42469D7AD8A CE634?Opendocument
List of Resources Alarms and network security 0-6/features/police.html 0-6/features/police.html Secure Tachographs cho.pdf cho.pdf Tamper resistance
List of resources Tachosmart =A =A Resurrected Duckling ckling.html ckling.html Meter Security htm htm