System Architecture Design

pSHIELDSystem Architecture DesignPUThe time isolation problem refers to the time at which a fault is injected. An attacker may be able tosynchronize exactly with the clock of the chip or may introduce the error in a random fashion. Thisgranularity is the only parameter of the time isolation problem. Clearly, the ability to inject a fault in a clockperiod granularity is desirable, but impractical in real world applications.4.2.3.3.2 Passive side channelsPassive side channels are not a new concept in cryptography and security. The information available fromthe now partially declassified TEMPEST project reveals helpful insights in how electromagnetic emissionsoccur and can be used to reconstruct signals for surveillance purposes. The new concept in this area isthe fact that such emissions can be also used to derive secret information from an otherwise securedevice.Researchers have been quite creative and have used many types of emissions or other physicalinteractions of the device with the environment it operates. A basic idea is the monitoring of executiontime of a cryptographic algorithm and tries to identify the secret keys used. The key concept in thisapproach is that an implementation of an algorithm may contain branches and other conditional executionor the implementation may follow different execution paths. If these variances are based on the bit valuesof a secret key, then a statistical analysis can reveal the secret key bit by bit. Power consumption can bealso correlated with key bits.4.3 ApplicationsNowadays railway is considered as one of the most important critical infrastructures due to its importancenot only in mass transport systems but also its usability in material and goods transport. In pSHIELDrailway infrastructures and operations had been chosen as the potential areas where the results ofpSHIELD can contribute to ensure its secure, dependable and reliable operations. More specifically,pSHIELD focuses on hazardous material transport scenario by railways system. Within this specificscenario, the following applications are planned which focus at pSHIELD core features such as embeddedsystems, SPD considerations, sensor integration and composability.MonitoringIn hazardous material transport, due to the nature of goods, continuous monitoring is crucial for safe anddependable operations of such transport scenario. For example, the following situations may threat safetyof the goods:• Some materials must not be collocated with inflammable substances• The on-carriage temperature should not rise above a certain level• The speed of the passing train should not be more than a certain limit as excess speed maycause higher vibration• Only authorized personnel should get access to the carriageTo monitor these situations, the carriage is expected to be equipped with various types of sensors tocollect e.g. temperature, pressure, vibration information. Besides, the carriage contains recoding cameraand position sensors. All the information can be stored on-board and can be transmitted to the controlcentre of the railway systems on-demand. In order to facilitate remote communication, the carriage isequipped with multiple communication systems. Above all, as contingency, such carriage carries extrapower source in case of un-availability of power from the grid.Interoperable Railway Information SystemIn such hazardous material transport scenario, different stakeholders are involved. For safety of theirinfrastructures or goods, the stakeholders are willing to get access to the data being transmitted from thePUD2.3.2Issue 5 Page 58 of 122