Experimental Physics and
Industrial Control System

Hi Gedare,

On 04/21/2018 09:53 AM, Gedare Bloom wrote:
> Hello EPICS Community,
> 
> tl;dr: I'm looking for a partner willing to work with me on security
> hardening their EPICS deployment over the next 3 years if we
> successfully obtain NSF funding. I'm also looking for statements of
> general interest/enthusiasm about security hardening for EPICS.

I can provide the latter, on behalf of the Core Developers group. We are
going to be interested in various aspects of what you're planning, and
should be able to offer suggestions and pointers on how hardening could
be integrated into the existing code-base. Eventually we will also have
to review any changes to the EPICS Core that your project comes up with
before they can be merged, so it is in all our interests to collaborate
and work together.

> I'm one of the RTEMS maintainers and also an assistant professor of
> computer science at Howard University. I'm planning an NSF CICI grant
> proposal submission before June 4 [1] that would intend to improve the
> cyber security of the EPICS hardware/software infrastructure for
> scientific research with an emphasis on RTOS security hardening, EPICS
> security hardening, and evaluation/enhancement of the EPICS network
> protocols for secure access.
> 
> If you're generally interested in this project, or you think it is a
> total waste of time, I'd be glad to hear about it here and discuss
> some more of the overall ideas. If you and your institution might be
> able to partner on this, please keep reading and contact me privately
> so we can arrange to discuss details offline.
> 
> I'm looking for a partner in the EPICS community able and willing to
> commit to work with me on integration of security improvements with a
> plan to install/upgrade EPICS (using RTEMS on the IOCs) in their
> deployment in the next 3 years.

I hope you will be able to find one or more such partners here. The code
that you develop must run on all our supported targets (not just RTEMS)
to be eligible for inclusion in official EPICS releases, and be licensed
under a compatible license (the EPICS Open license is BSD-like).

> I have reached out to the EPICS Council to gauge a general interest in
> this direction of development and received an initially positive
> response. Now, I would like to find a partner so that I can put
> together a proposal with firm commitments in place before the proposal
> submission deadline. I can carve out some funding for a partner
> willing to work directly with me to integrate and deploy the
> prototypes developed through the project.
> 
> [1] https://www.nsf.gov/pubs/2018/nsf18547/nsf18547.htm
> 
> Sincerely,
> Gedare Bloom
> RTEMS Project Maintainer
> Assistant Professor of Computer Science
> Howard University

Please join and use our core-talk mailing list for technical discussions
and questions that don't need to be communicated to the whole community.
All the Core developers are subscribed to that list as well as here.

Thanks, and welcome!

- Andrew


-- 
Arguing for surveillance because you have nothing to hide is no
different than making the claim, "I don't care about freedom of
speech because I have nothing to say." -- Edward Snowdon

Replies:

Re: Security Hardening for EPICS/RTEMS Gedare Bloom

References:

Security Hardening for EPICS/RTEMS Gedare Bloom

Navigate by Date:

Prev: Re: base-3.15.5/templates/makeBaseApp/top/iocBoot/ioc/Makefile@Common Andrew Johnson

Next: dbReadDatabase in base-7.0 Benjamin Franksen

Index: 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  <2018>  2019  2020  2021  2022  2023  2024 

Navigate by Thread:

Prev: Security Hardening for EPICS/RTEMS Gedare Bloom

Next: Re: Security Hardening for EPICS/RTEMS Gedare Bloom

Index: 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  <2018>  2019  2020  2021  2022  2023  2024