Data Distribution and Redistribution - A formal and practical Analysis of the DDS Security Standard
Müller, Maximilian
1,2; Lauser, Timm
1 FZI Forschungszentrum Informatik (FZI)
2 Kompetenzzentrum für angewandte Sicherheitstechnologie (KASTEL), Karlsruher Institut für Technologie (KIT)
1,2; Lauser, Timm1 FZI Forschungszentrum Informatik (FZI)
2 Kompetenzzentrum für angewandte Sicherheitstechnologie (KASTEL), Karlsruher Institut für Technologie (KIT)
Abstract:
The Data Distribution Service (DDS) is a popular communication middleware for the Internet of Things (IoT), providing its own security mechanisms specified in the DDS Security standard. In this work, we formally analyze the authentication handshake protocol and the encryption algorithm used in DDS. We discover a replay vulnerability in the encryption algorithm, implement a proof-of-concept attack on an open-source implementation of DDS, and review security-relevant changes in the recently published version 1.2.
| Zugehörige Institution(en) am KIT | FZI Forschungszentrum Informatik (FZI) Kompetenzzentrum für angewandte Sicherheitstechnologie (KASTEL) |
| Publikationstyp | Proceedingsbeitrag |
| Publikationsjahr | 2025 |
| Sprache | Englisch |
| Identifikator | KITopen-ID: 1000176707 |
| HGF-Programm | 46.23.03 (POF IV, LK 01) Engineering Security for Mobility Systems |
| Erschienen in | SAC '25: Proceedings of the 40th ACM/SIGAPP Symposium on Applied Computing |
| Veranstaltung | 40th ACM/SIGAPP Symposium on Applied Computing (2025), Sicily, Italy, 31.03.2025 – 04.04.2025 |
| Schlagwörter | security; formal analysis; data distribution service; IoT; automotive |
| Referent/Betreuer | Baumgart, Ingmar Krauß, Christoph |