Decentralized Information-Flow Control for ROS2
Nishit V. Pandya
Network and Distributed System Security (NDSS) Symposium 2024 · Day 1 · Firmware
This article delves into Picaros, a novel system for **Decentralized Information-Flow Control (DIFC)** specifically designed for **ROS2 (Robot Operating System 2)**. Presented by Nishit V. Pandya from the Indian Institute of Science, the talk highlights a critical security gap in existing ROS2 deployments, even those utilizing **SROS2 (Secure ROS2)**. While SROS2 provides foundational security features like encryption, integrity, and authentication, it lacks the ability for data owners to control how their data is consumed or re-published downstream by other applications. This absence of fine-grained control exposes robotics systems to data exfiltration risks and unauthorized data usage.