Research Database: Projects

Dieses Projektvorhaben verfolgt das Ziel, Software in eingebetteten Systemen durch neuartige technische Methoden vor Produktpiraterie zu schützen. Im Fokus dieses Vorhabens steht die Plagiatserkennung von eingebetteter Software mittels Methoden der Seitenkanalanalyse. Eingebettete Systeme finden wir in nahezu allen Bereichen unseres heutigen Lebens, sei es in der hochtechnologisierten Automobilindustrie oder in den intelligenten Steuerungsgeräten im Haushalt, z.B. bei Waschmaschinen und neuen Stromzählern. In sicherheitsrelevanten Bereichen wird oft eingebettete Software in Smart Cards und Kartenlese-Terminals eingesetzt. Hieraus resultieren bereits vielfältige Anwendungen, genannt seien hier beispielsweise hoheitliche elektronische Ausweise, elektronische Zahlungsverkehrssysteme, elektronische Gesundheitskarte und das digitale Tachographensystem. Die Plagiatserkennung in gesicherten eingebetteten Systemen ist ein sehr schwieriges Problem, da in der Regel der Programmcode gegen Auslesen aus dem Speicher des eingebetteten Computers geschützt ist, so dass eine vergleichende Analyse des Programmcodes nicht direkt möglich ist. Einen vielversprechenden Ansatz, eingebettete Software effizient zu analysieren, bietet die Messung sogenannter Seitenkanäle, die von den Mikrocontrollern emittiert werden und Information über innere Zustände des Programms preisgeben. Als Seitenkanal werden physikalisch messbare Größen des eingebetteten Systems wie Versorgungsspannung oder elektromagnetische Abstrahlung verwendet. In der Regel werde diese Seitenkanäle genutzt, um kryptographische Implementierungen in Software oder Hardware zu brechen, d.h. geheime Informationen wie kryptographische Schlüssel aus Chips zu extrahieren. Diese als Seitenkanalangriffe bekannten Methoden sind seit etwa fünfzehn Jahren ein intensives Forschungsfeld mit schätzungsweise tausend wissenschaftlichen Veröffentlichungen. Dieses Projekt verfolgt das Ziel, neuartige Methoden für digitale Wasserzeichen in eingebetteter Software zu entwickeln, die mittels Seitenkanalanalyse zuverlässig erkannt werden können. Mit Hilfe eines  Prüfstandes lässt sich dann begutachten, ob eine verdächtige Software auf dem Markt mit diesem Kopierschutzverfahren erstellt wurde und somit, ob es sich mit hoher Wahrscheinlichkeit um ein Plagiat handelt.

The overarching goal of SESAME is to develop an open, modular, configurable, model-based approach for systematic engineering of dependable MRS. The approach is supported by a set of public meta-models, components and configuration tools produced by the project. Target MRS may employ AI, and will be capable of operating dependably in open configurations, and in conditions of uncertainty that include the acknowledged possibility of cyber-attacks. Five novel applications that add value to the European science and economy will be developed and verified for dependability using the SESAME approach.

Project management at the H-BRS

With MIAAS, a European open source platform for decision making based on mobility data is being developed. Key activities are the consolidation and exploitation of shared mobility and public transport data as well as the exploration and development of the required technical infrastructure and interfaces. In particular, a mobility intelligence dashboard will be developed and tested. One research focus is on end user development for machine learning. The goal is to support cities in establishing shared mobility together with public transport as a central component of their mobility strategy. MIAAS will simplify the planning of shared mobility services, improve the integration with public transport and facilitate the data exchange with mobility providers. All core components of MIAAS will be provided as open source. In addition, multimodal data sets for six focus cities will be published. In the future, standardized interfaces will help cities to request data directly from providers and to simultaneously provide regulatory information. Results are to be disseminated at conferences, trade fairs, workshops and in exchange with partners in Europe. Code, data and guidelines are to be published on a website in order to establish a mobility intelligence community in the mid-term. Scientific publications are planned in the fields of end user development, machine learning and multimodal mobility behavior. In addition, a productization by project partners is intended.

Project management at the H-BRS

Die Hochschule Bonn-Rhein-Sieg - einfach ausgezeichnet. Studieren Sie bei uns! Es erwartet Sie ein praxisorientiertes Studium auf der Basis aktueller Forschungsergebnisse.

Controlling a robotic system to perform a certain set of actions in an unknown and dynamic environment is easy if you have a perfect model of that environment. However, in the real world, such models are unavailable. In this research we are tackling the challenge of deploying an information maximization control strategy for Unmanned Aerial Vehicles (UAV) by accurately sensing and modelling dynamic environments using sensors and multi-sensor fusion methods.

Assuring the safety of teams of autonomous unmanned aerial vehicles (UAVs) that carry out a safety-critical inspection task collaboratively is very challenging due to uncertainties and risks associated with the operating environment, individual UAV failures, inconsistent global perspective between team, interference and/or contention because of limited physical space, and unreliable communication. In SAFEMUV, we will extend, adapt, and integrate our recent research and the latest advances from operational risk assessment for UAVs, managing variability in robotic systems through feature modelling, and automated synthesis of models and testing campaigns for assessing system robustness. In a nutshell, SAFEMUV will deliver a process for systematic robustness assessment of UAV teams underpinned by methods for the specification, generation and testing of collaborative inspection scenarios, enabling the progressive transition from simulation to lab-based operations and to real-world operations; and a demonstrator that realises this process using an a simulated environment, an indoor flight arena and an outdoor space at Luxembourg Airport.

Project management at the H-BRS

The main objective of METRICS is to organise challenge-led robotics competitions as clear, rigorous and effective evaluation campaigns for the four priority areas, namely healthcare, agile production, inspection and maintenance and agri-food. These competitions are a cornerstone for the effective design, manufacture, deployment and modification of robotic systems. To this end, METRICS will design metrology-grade methods for robotics evaluation, maximise the take-up of the evaluation and benchmarking tools, ensure the industrial relevance of challenge-led competitions, attract industrial stakeholders, academics and the general public to competitions, maximise the compliance of robots with ethical, legal, social, economic requirements, help to fill the normative gap for intelligent robotic systems by designing evaluation plans as representative standards, and structure the European robotics community around competitions in the four PAs and ensure its sustainability.

Providers of electric power from renewable sources e.g. photovoltaics or wind turbines underlie seasonal and weather-related variations. This demands a significant expansion of energy storage capacities. A possible solution is storage in the form of hydrogen, especially in metal hydride tanks.

In the course of digitalization, more and more data is being collected and evaluated in companies. This can optimize business processes, but also has the potential to affect employees' personal rights. The research project TrUSD builds a bridge between the potential of data analysis and the right of employees to privacy by developing so-called Privacy Dashboards. These dashboards provide employees with all the necessary privacy-related information, display it in an understandable way, and offer appropriate settings.

Project management at the H-BRS

The research project URIA inspects the widely deployed password-based authentication. Nearly everyone knows the difficulty of choosing and, especially, remembering good passwords. Password-secured systems also inhere high security risks due to its fast "crackability". Hence, password-based authentication has weaknesses in terms of usability as well as security. In contrast to that, Risk-based authentication has the potential of improving security without degrading usability.