Robotics cyber security: vulnerabilities, attacks,

countermeasures, and recommendations

Yashvi kakadiya (BSC.IT 2020-23)

School of Information Technology

Auro University
Surat, India
[email protected]

Abstract Keywords Robotics · Security systems ·

The recent digital revolution led robots to
become integrated more than ever into
different domains such as agricultural,
medical, industrial, military, police (law
enforcement), and logistics. Robots are
devoted to serve, facilitate, and enhance
the human life. However, many incidents
have been occurring, leading to serious
injuries and devastating impacts such as
the unnecessary loss of human lives.
Unintended accidents will always take
place, but the ones caused by malicious
attacks represent a very challenging issue.
This includes maliciously hijacking and
controlling robots and causing serious
economic and financial losses. This paper
reviews the main security vulnerabilities,
threats, risks, and their impacts, and the
main security attacks within the robotics
domain. In this context, different
approaches and recommendations are
presented in order to enhance and improve
the security level of robotic systems such
as multi-factor device/user authentication
schemes, in addition to multi-factor
cryptographic algorithms. We also review
the recently presented security solutions
for robotic systems.
Security attacks · Countermeasures · Risk
analysis · Counter-terrorism/insurgency ·
Robotics against COVID-19
1 Introduction
With the latest digital revolution and the
heavy reliance on Artificial Intelligence
(AI), smart robots are being employed to
speed up the transformation of digital
operations. In this context, the market of
intelligent machines, including
autonomous robots, is exponentially
growing; more than 40 million robots were
reportedly sold between 2016 and 2019.
Robotics is one of those technologies that
are witnessing tremendous expansion and
growth especially with the rise of the
ongoing COVID-19 pandemic. Moreover,
its emergence into the Internet of Things
(IoT) domain led it to be called the Internet
of Robotic Things. In fact, robots play a
crucial role in modern societies, offering
various opportunities to help in various
domains, including civilian and military
sectors, as well as agricultural, industrial,
and medical ones. However, there are
several concerns related to robots’
deployment in critical infrastructures (e.g.,
industrial, medical, etc.). These concerns
are mainly related to security, safety,
accuracy and trust. Security is primarily
related to the level of protection of these
robots against different types of cyber-
attacks. Safety is related to the reduction of
the likelihood of accidents’ occurrence(s),
accuracy is based on performing the
intended task without any faults/mistakes,
while trust is based on the level of
satisfaction and capability of these robots
to accurately perform and replace humans
in certain fields and activities. However,
various security concerns, issues,
vulnerabilities, and threats are constantly
arising, including the malicious misuse of
these robots via cyber-attacks, which may
result in serious injuries and even death.
2 Robot application
domains
Robots have been deployed in different
domains and employed in different fields,
including civilian and military ones, which
are illustrates the various robotic usages in
different fields of operations for many
tasks and purposes such as photography,
product delivery, agriculture, wildlife
monitoring, policing, search and rescue,
emergency response, crisis/disaster
response, casualty evacuation,
reconnaissance and surveillance,
counterterrorism/insurgency, counter-
IEDs/unexploded ordnance, border patrol,
infrastructure inspections, and science.
There are different types of robots
depending on their field of operation:
Unmanned Aerial Vehicles (UAVs) such
as drones, Autonomous Unmanned
Aircraft Vehicles (AUAVs), Unmanned
Aerial Combat Vehicles (UACVs) and
Unmanned Aircraft Systems (UASs)
Unmanned Ground Vehicles (UGVs) such
as robots and autonomous vehicles, and
Unmanned Underwater Vehicles (UUVs)
such as underwater drones, Autonomous
Surface Vehicle (ASV), Remotely
Operated Underwater Vehicles (ROUVs)
and Autonomous Underwater Vehicles
(AUVs). This section discusses the main
use of robots in industrial, medical,
disaster and agriculture fields, in addition
to police and military one.
(Yaacoub, 19 March 2021)
2.1 Industrial field
Industrial robots are mainly used in order
to reduce manpower. Robots have become
artificially smart and able to perform jobs
faster, safer, and with higher efficiency.
Such jobs include manufacturing,
construction, transportation, and quality
control. In particular, robots are being used
in hazardous locations to perform
dangerous tasks. They are also capable of
performing repetitive tasks with the same
precision and accuracy, better than their
human counterpart.
(Yaacoub, 19 March 2021)
2.2 Medical field
Robots have been deployed in the medical
domain to be used in tele-medicine, virtual
care, and remote treatment concepts. In
fact, they were designed to serve as
medical robots, surgical robots, and
hospital robots. They are used to perform
small surgeries accurately, and new
medical robots are capable of performing
Cardio-Pulmonary Resuscitation (CPR).
(Yaacoub, 19 March 2021)
2.3 Agriculture field
Robots are used in agriculture due to their
efficient and increased performance in
reducing manpower and resource
consumption. They are used to perform
some tasks efficiently, especially when
dealing with a large farming area that
requires at least a dozen of workers and
several days. This enhances irrigation,
crop testing, crop agriculture, and so on.
(Yaacoub, 19 March 2021)
2.4 Disaster field
Disaster robots can be used to reach and
find helpless people who were isolated by
floods, or stuck and lost somewhere.
Disaster robots can perform jobs and reach
places that humans cannot. Their famous
use was when Search and Rescue (SAR)
robots were deployed to locate and find
lost Thai cave boys safely. Moreover,
robots were used in the firefighting
domain, which helps in sparing the lives of
firefighters and to access areas that are
deemed too dangerous, too small, and/or
too risky for firefighters. In fact, both
robots and UAVs were used after the
devastating Beirut port explosion that
occurred at around 6:07 pm on August 4th,
2020, to help with assessing the damage
and impact radius, as well as in the search
for missing personnel. The explosion was
caused by the alleged detonation of 2750
tonnes of Ammonium Nitrate due to lack
of proper storage, equivalent to 1.1
kilotons of Trinitrotoluene (TNT), and is
considered as one of the most powerful
non-nuclear explosions in history.
(Yaacoub, 19 March 2021)
2.5 Police and law
enforcement field
Robots are being deployed in various
police fields, especially when it comes to
shooting down, neutralizing, or
eliminating suspects in places that are
considered too dangerous and that could
lead to the loss of valuable officers’ lives.
A well-known use case of this application
is when the police used a robot strapped
with a C4 explosive and detonated it in
order to kill the Dallas shooter. In fact, the
Israeli police is known to have used drones
(i.e., spiderman urban assault drone), with
others equipped with tear gas to counter
the Gaza protests and to reduce the threat
imposed by possibly armed infiltrators and
burning/armed explosive incendiary kites
and balloons. Indian, South African, and
Dutch police are also known to have used
“Skunk” drones which are armed and
equipped with pepper spray. The American
police and law enforcement are also using
“weaponized drones” armed with tasers,
tear gas, and rubber bullets.
(Yaacoub, 19 March 2021)
2.6 Military field
Military robots became the latest adopted
weapons to be used in most of military
operations, especially with the extensive
use of Unmanned Aerial Vehicles (UAVs)
to perform target detection and to launch
airstrikes. Moreover, robots were used to
counter the Improvised Explosive Device
(IED) threat, especially in Iraq and
Afghanistan. In fact, they were being used
by the British army in Northern Ireland
since 1970s, to combat the IEDs threat
imposed by the Irish Republican Army
(IRA) and its different factions and issues.
(Yaacoub, 19 March 2021)
3 Robotics security: issues,
vulnerabilities, threats, and
risks
Despite the great advantages and
promising future, the robotic field holds,
some major concerns are still lurking
around, and imposing serious threats and
issues that can potentially affect both
humans and machines. For this reason,
these main issues and challenges are
presented in this section.
(Yaacoub, 19 March 2021)
3.1 Security issues
Robotic issues are not limited to one, but
to many aspects that could exploit any
vulnerability/security gap to target robotic
systems and applications alike. The aim is
to identify and classify them to gain a
better insight, which helps other fellow
researchers in their quest to identify, tackle
and overcome them
• Lack of secure networking which renders
the communication between
robots/machines and humans insecure and
prone to various attacks.
•Lack of proper authentication which leads
to an unauthorized access using standard
usernames and passwords, which can be
easily trespassed by a given attacker.
•Lack of confidentiality which is due to the
use of weak encryption algorithms that can
be easily broken, leading to the
interception and exposure of robotic
sensitive data and design plans.
•Lack of privacy can result in the exposure
of business deals and trades that can affect
the reputation of a given organization, and
the exposure of the collaboration between
different robotic security firms.
•Lack of integrity which is due to the use
of weak message authentication protocols
that can be easily compromised, leading to
the alteration of robotic sensitive data,
stored or in transit.
•Lack of verification which does not
include strong biometric features to
prevent any abuse of privilege or
unauthorized access.
•Lack of authorization it defines the right
physical access based on the assigned
access controls inside robotic labs,
factories, and industries.
•Misconfiguration and bad programming
which may render the robotic systems and
operating systems incapable of performing
the intended tasks at the required accuracy
level, and thus, threatening their human
operators and badly affecting the software
features.
•Lack of tamper-resistant hardware renders
robots prone to damage and/or partial/total
destruction, which can lead to the loss of
the robot’s functional and operational
capabilities.
•Lack of self-healing processing leaves the
robotic system prone to the possibly of
cascading attacks with the inability to
recover or react in time to prevent further
degradation in its performance. Hence, a
self-healing process is required to ensure
that robotic systems can sense faults or
disruptions and can reconfigure the backup
resources.
•Lack of safety designs is very risky and
has proven in many real-case incidents to
be lethal and threatening towards humans
with a remarkable number of casualties
and fatalities, aside the economic/financial
losses.
•Lack of security by-design features leads
to breaking into the robotic system’s
architecture and design to scan and exploit
its vulnerability/security gap(s) for further
attacks, including malicious data injection
and modification.
•Lack of AI-based designs affects the
operational and functional performance of
robots when being assigned a task, with
both accuracy and performance being
affected.
•Lack of update for the robotic operating
system, firmware,
and software may result in various cyber-
physical attacks.
•Lack of advanced IDS solutions is also a
major issue, especially when relying on
intrusion detection system that either
detect anomaly, behaviour or signature
pattern of a given malware, rather than
relying on advanced hybrid and
lightweight or AI-based IDS solutions.
The same is true for the use of Honeypots.
•Lack of penetration testing could lead to
security breaches of the deployed
applications.
•Lack of security patches increases the
chance of basic and advanced attacks such
as stealing of sensitive data, remote access,
and rootkit.
•Lack of personnel training is also a
serious issue since personnel working in
the coding robotic domain, or as human
operators, or as IT or chief executives, are
targeted by social engineering, reverse
engineering and phishing attacks.
•Lack of human–machine collaboration
could affect the human activity in terms of
labour, work, and performance.
•Lack of employee screening could result
in having an insider attack led by a
whistle-blower that leaks sensitive data
and exposes classified information and
sensitive robotic details.
(Yaacoub, 19 March 2021)
3.2 Security vulnerabilities
Robotic systems are prone to various
vulnerabilities that can affect their
performance in terms of connectivity,
productivity, operations, and accuracy.
This paper presents several vulnerabilities
that are challenging:
•Network vulnerability with the lack or the
adoption of basic security measures,
robotic systems are vulnerable to various
wired/wireless communication and
connections attacks including replay, man-
in-the-middle, eavesdropping, sniffing,
spoofing, etc.
•Platform vulnerability includes the lack of
constant updates of software and firmware
patches, as well as security patches to
maintain a secure up-to-date robotic
system. This results into also having
configuration and database vulnerabilities.
•Application vulnerability applications that
are not tested and evaluated for coding or
compatibility bugs, can also affect the
robotic system’s performance. Hence,
further testing is essentially required.
•Security vulnerability the adoption of new
security measures without thorough testing
can sometimes affect the performance of
both robotic systems and devices. Hence,
testing is essential before deployment.
•Bad practice vulnerability includes the
bad choice of security measures and
means, as well as lack of coding skills,
which can be easily re-modified to cause
errors or to perform the wrong tasks.
•Update vulnerability robots are also prone
to update vulnerabilities that can cause
their systems and operating systems to act
differently due to the new update,
including the loss of unsaved data,
interruption of the ongoing process, etc.
•Heterogeneity and homogeneity
vulnerability the heterogeneous nature of
robotic systems makes their integration
prone to many security issues. Moreover,
their homogeneous nature also leaves them
prone to similar attacks with possibly
cascading effects.
•Management vulnerability includes the
lack of advised planning, security
guidelines, procedures and policies.
(Yaacoub, 19 March 2021)
3.3 Security threats
Robotics threats are growing, not only due
to the concept of industrial competition,
but also due spying and terrorism.
(Yaacoub, 19 March 2021)
3.3.1 Threat source
Threats can originate from different
sources, and can be part of cyber-crimes,
cyber-warfare, cyber-espionage, or even
cyber-terrorism. This paper lists the main
ones as follows:
•Insiders (or whistle-blowers) are usually
rogue or unsatisfied employees who aim to
either steal robotic confidential
information, or infiltrators that help
outsiders to conduct their attack remotely
through abuse of privilege. Insiders can
also cause physical damage and
destruction to robotic systems.
•Outsiders aim to gain access to a robotic
system through the Internet. The external
adversary’s aim is to get access to
information for malicious purposes, to
cause malfunction or/and disrupt the
system’s services through the injection of
either fake or malicious data.
•Competitors usually, rivals in the robotic
industry aim to maintain a leading edge in
this domain. Many methods can be
adopted such as the reliance on insiders, or
part of industrial espionage to leak
confidential documents and damage the
rival company’s reputation
•Incompetent developers include bad
manufacturers and programmers who do
not take into consideration the essential
safety and security requirements upon the
development of software for robots and
machines.
•Incompetent operators include either
ignorant users who do not know how to
use well a robot or a machine, or malicious
users who try to use the robot/machine for
a malicious task.
•Cyber criminals including hackers whose
aim is put their cyber-attack capabilities
into action via scanning for security gaps
or software/firmware vulnerability and
exploiting them.
•Organized criminals unlike cyber
criminals, they break into a given company
and steal robotic components, parts,
designs, or architecture plan in order to sell
it into the black market to rival companies,
or for their own personal gains.
•Malicious manufacturers leave, on
purpose, a backdoor into the robotic
system to track and monitor the activities
of the robot and its operator without the
owner’s knowledge. Also, they can gather
sensitive and confidential information
about the user’s device through key
logging and root-kits. In fact, many
manufacturers leave on purpose a design
flaw or a misconfiguration as a backdoor
in order to exploit it or to get quick access
to the robotic system.
•State-sponsored hackers are usually
recruited as a nation’s cyber-army to
perform defensive and offensive tasks to
achieve political influence and gain. This
can include hijacking military robots,
leaking sensitive and confidential
documents about lethal robot designs, or
declassifying robotic documents and
experiments.
•Terrorists also rely, in this domain, in the
physical and cyber-world. Terrorists use
robots and drones in their paramilitary
operations. Also, cyber-terrorism is
growing to retrieve details and gain
insights about robotic systems to build
their own versions.
•Spies are constantly being used to
conduct (cyber) espionage and sabotage
operations, typically between rival
countries such as Iranian-Israeli cold
cyber-war, which reached its height in
May 2020, including cyber-attacks and
sabotage operations. A prime example is
the “Quicksand” operation led by Iran’s
“Muddy Water” and Cyber “Avengers”
that are linked to the Islamic
Revolutionary Guard Corps (IRGC)
targeting Israel’s industrial infrastructure,
followed by a series of ongoing Israeli
counter-cyber-offensives, which reached
their height in June, targeting Iran’s
infrastructure ports, electricity firms,
covert nuclear labs, etc. In fact, the Iranian
cyber-threat is growing with many
Advanced Persistent Threat (APT) actors
attacking Western targets such as: APT33
targeting aerospace and (petrochemical)
energy, APT34 involving a long-term
cyber espionage operation targeting
financial, government, energy, chemical
firms, APT35 (or Newscaster Team)
targeting military, governmental, media
and engineering firms, and APT39
targeting telecommunications sector and
high-tech industry.
(Yaacoub, 19 March 2021)
3.3.2 Threat nature
Despite the already listed issues, there are
various threats targeting Industrial IoT
systems that need to be addressed before
diving further into the security aspect of
the robotic domain. These main threats are
classified as follows:
•Wireless jamming robotic
communications are prone to various
availability attacks that can jam, disrupt
or/and interrupt its connection via either
de-authentication or jamming. This leads
to the complete or partial loss of
controlling the robot
•Reconnaissance and scanning robotic
systems are also prone to various
reconnaissance and scanning attacks that
aim to evaluate their level of protection,
the employed software, hardware, and
operating systems, to search for a security
vulnerability or gap that may be exploited
in future attacks.
•Information disclosure can take place
either via physical leaking of confidential
documents, or remotely via a cyber-attack.
Targeting both privacy and confidentiality
of robotic manufacturers, businesses and
industries.
•Abuse of privilege still remains a threat in
the robotic domain whereby unauthorized
users trespass physical and logical access
controls to gain an unauthorized access or
perform unauthorized tasks.
•Information gathering remains an
essential threat, especially with personnel
working in the robotic domain (operators,
manufacturers, IT security, Chief Robotics
Officers (CROs), etc.) lacking the right
security training to overcome phishing and
social engineering attempts.
•Information interception operating on
different high frequencies allows
manufacturers to communicate without
interference. However, the lack of security
protection and encryption over these
channels leave them prone to various
interception and delay attacks, which can
result in a total breach of privacy,
confidentiality and integrity.
•Information modification is a common
threat that targets the AI aspect of robotics,
with malicious modifications affecting the
ability of AI to distinguish between
pictures, for example, the accuracy of
performing the intended tasks.
•Physical damage robots are also prone to
physical damage, attack and theft by
insiders (rogue employees) and intruders.
This is mainly due to the lack of available
security checks and tamper-resistant
equipment.
•Service disruption or denial can be caused
either by an employee’s mistake or by
malicious users who inject malicious data
affecting the accuracy and performance of
robotic systems, or via launching a
(distributed) denial of service attack.
•Sabotage and espionage robotic systems
are typically prone to industrial espionage
operations, which can be further extended
to become a sabotage operation resulting
into hijacking, destroying or severely
crippling the ability of robotic systems to
properly perform their intended task(s).
This can also be classified as an act of
terrorism.
•Tracking and monitoring several robotic
applications may include covert tracking
systems that can monitor and track the
robotic operators without their knowledge
(i.e., iRobot cleaner), all by secretly
collecting information about them
including personal details, devices in use,
geographical locations, etc. In fact, threats
also target the security goals that surround
traditional and advanced Industrial Control
Systems (ICSs), as well as the Cloud
Computing (CC) domain associated with
the robotic field
•Confidentiality threats these include, in
addition to the use of malware, passive
traffic analysis (i.e., eavesdropping),
sensitive data theft, malicious code
injection (i.e., XSS or SQLi), exposure of
sensitive information, side channel attacks,
dumpster diving, and the adoption of
social engineering or phishing techniques.
•Integrity threats include active traffic
analysis (i.e., man/meet-in-the-middle),
snooping, spoofing, data/information
modification, malicious data or malware
injection, false data injection,
physical/logical compromise of robotic
devices, back-doors, rootkits and elevation
of privilege.
•Availability threats include service-data
theft, service denial/disruption,
disruption/interruption of network
communications, exhaustion of resources
and buffer overflow (i.e., Central
Processing Unit (CPU), memory, battery
consumption), jamming, malware types
(i.e., Trojans, Botnets, etc.), physical
damage to various equipment including
routers and switches, replay attacks, and
selective forwarding, as well as wormhole,
blackhole and sinkhole attacks.
•Authentication threats include malicious
third-party applications and services,
social engineering and phishing
techniques, abuse of privilege, key-stroke
register, stealing sensitive documents, lack
of proper (logical/physical) access
controls, deployment of dummy/fake
nodes, and spoofing
3.4 Security risks
The rise of various robotic security and
cyber-security issues, threats and
vulnerabilities, in addition to their negative
effects are presented as follows:
•Security and system flaw these risks
affect the normal processing and
performance of industrial robots, and could
disrupt the production and industrial
processes, leading to financial losses.
More precisely, they could result in a
system blockage, data interception,
extraction, and physical damage.
•Back-doors ill-configured robotic
applications or applications with third-
party access led to various backdoor and
rootkit attacks. This would expose robotic
users by targeting their privacy first, and
then by keeping them under constant
surveillance, monitoring, and tracking,
with possibility of registering keystrokes
and capturing snapshots or even videos
without their knowledge.
•Remote-access insecure and open
wireless communications and
communication ports, as well as unused
ones if not closed, could lead to
interception whereby attackers use them to
gain remote access to a given robotic
system, to launch their cyber-attack,
especially, robots relying on vulnerable
Lora WAN communications.
•Device theft robotic devices are also
prone to physical theft or hijacking and
control, a prime example is the de-
authentication process that allows
malicious users to disconnect legitimate
owners and re-control them (i.e., robots
and drones).
•Fake applications many robotic
applications are develop by third party
vendors, some of which are fake
applications masqueraded as legitimate
apps. Such apps include various malware
types attached to them such as
ransomware, backdoor, spyware, botnet,
worm, Trojan, and ransomware and can
target the privacy, availability and
authentication of robotic users.
•Insecure backup and data storage lack of
proper and verified storage of data can
lead to data loss or corruption. In fact,
without proper data storage, any attack
(i.e., ransomware) can cripple the ability of
industrial organizations to safely operate,
which may also affect the performance of
the robotic systems and devices alike.
• System failure robotic systems, in case of
cyber- events (i.e., attack or
malfunctioning), are prone to various
issues including major and cascading
system failures, loss of power, and lack of
operational availability.
•Battery constraints some robotic devices
are resource constrained and as such, they
are prone to excessive battery
consumption, battery power draining,
battery life expectancy, and resource-
exhaustion.
•Inaccurate activity threshold the lack of
available robotic activity threshold risks
having robots performing abnormal and
deviating activities without them being
detected. This might affect both
operational and functional safety and
security procedures that may endanger the
life of their human operators.
• Obstacle testing robots that are not tested
in their field of deployment are prone to
various software/hardware and operating
system issues. This may lead to system
and hardware failures, disabling the
robotic system, and bringing its production
to a total halt, which is associated with
financial losses.
• Authentication threats include malicious
third-party applications and services,
social engineering and phishing
techniques, abuse of privilege, key-stroke
register, stealing sensitive documents, lack
of proper (logical/physical) access
controls, deployment of dummy/fake
nodes, and spoofing.
(Yaacoub, 19 March 2021)
the rise of various robotic security and
cyber-security issues, threats and
vulnerabilities, in addition to their negative
effects are presented as follows:
•Security and system flaw these risks
affect the normal processing and
performance of industrial robots, and could
disrupt the production and industrial
processes, leading to financial losses.
More precisely, they could result in a
system blockage, data interception,
extraction, and physical damage.
•Back-doors ill-configured robotic
applications or applications with third-
party access led to various backdoor and
rootkit attacks. This would expose robotic
users by targeting their privacy first, and
then by keeping them under constant
surveillance, monitoring, and tracking,
with possibility of registering keystrokes
and capturing snapshots or even videos
without their knowledge
•Remote-access insecure and open
wireless communications and
communication ports, as well as unused
ones if not closed, could lead to
interception whereby attackers use them to
gain remote access to a given robotic
system to launch their cyber-attack,
especially, robots relying on vulnerable
Lora WAN communications.
•Device theft robotic devices are also
prone to physical theft or hijacking and
control, a prime example is the de-
authentication process that allows
malicious users to disconnect legitimate
owners and re-control them (i.e., robots
and drones)
•Fake applications many robotic
applications are developed by third party
vendors, some of which are fake
applications masqueraded as legitimate
apps. Such apps include various malware
types attached to them such as
ransomware, backdoor, spyware, botnet,
worm, Trojan, and ransomware and can
target the privacy, availability and
authentication of robotic users.
•Insecure backup and data storage lack of
proper and verified storage of data can
lead to data loss or corruption. In fact,
without proper data storage, any attack
(i.e., ransomware) can cripple the ability of
industrial organizations to safely operate,
which may also affect the performance of
the robotic systems and devices alike.
•System failure robotic systems, in case of
cyber-events (i.e., attack or
malfunctioning), are prone to various
issues including major and cascading
system failures, loss of power, and lack of
operational availability.
•Battery constraints some robotic devices
are resource constrained and as such, they
are prone to excessive battery
consumption, battery power draining,
battery life expectancy, and resource-
exhaustion.
•Inaccurate activity threshold the lack of
available robotic activity threshold risks
having robots performing abnormal and
deviating activities without them being
detected. This might affect both
operational and functional safety and
security procedures that may endanger the
life of their human operators.
•Obstacle testing robots that are not tested
in their field of deployment are prone to
various software/hardware and operating
system issues. This may lead to system
and hardware failures, disabling the
robotic system, and bringing its production
to a total halt, which is associated with
financial losses.
•Non-backed communication can lead to
the interception or loss of communication
between the robotic system and its
operator(s), which in turn, leads to loss of 4 Robotic security attacks
control. This occurs especially when the There are various increasing attacks that
device goes beyond the (visual) line-of- are specifically targeting robotic systems,
sight. Hence, further work needs to be especially after their integration in
invested in this domain. domains such as Industrial IoT, Medical
•Supply-chain disruption the disruption of IoT and Battlefield IoT. This resulted into
semi- or fully automated supply chain various attacks being conducted targeting
systems may lead to drastic financial both robotics data and systems’ security
losses, significant time-to-repair, in including confidentiality, integrity,
addition to risking the availability of availability, authentication and privacy.
robotic services and activities. This section will present and discuss the
•Nature’s disruption without a backup plan main attacks that target the robotic field.
to mitigate the threats imposed by natural (Yaacoub, 19 March 2021)
disasters such as earthquakes, flooding,
and so on, the operational services of
robotic systems may come to a total halt,
leading to high financial and economic
losses related to the damage and
destruction of hardware and software
equipment, in addition to the loss of data.
•Data transmission quality the diversity of
mitigation techniques deployed to protect
robotic systems may affect the robotics’
performance and data transmission quality.

(Yaacoub, 19 March 2021)

4.1 Robotic attacks: taxonomies
and classification
The aim of this subsection is to identify
and classify these attacks which target both
robots and robotic systems. Moreover, the
attack impact is also highlighted and
discussed. For this reason, presented to
summarize the main robot related cyber-
attacks, their structure and impact, along
their cause and concerns. Lastly, the main
risk assessment solutions are presented and
analysed in order to ensure a quicker
assessment of cyber risks, threats,
vulnerabilities and attacks, followed by a
qualitative risk assessment table being
proposed.
(Yaacoub, 19 March 2021)
4.1.1 Attacks on the robot hardware
These attacks can vary from least
dangerous (e.g., phishing) to the most
dangerous ones (e.g., hardware Trojans).
Such attacks can lead to the
implementation of back-doors for the
attacker to lead another attack by gaining
unauthorized access to the robots being
used, or during their maintenance. In some
cases, they can even have a full access to
the hardware. Furthermore, robots are
prone to implementation attacks such as
side channel attacks or fault attacks that
could possibly lead to sensitive data loss or
system exploitation (depending on the
attacker’s target(s)).
(Yaacoub, 19 March 2021)
4.1.2 Attacks on the robot’s firmware
The Operating System (OS) upgrades are
achieved via internet connection, due to
the presence of firmware codes that are
usually stored on a flash memory.
However, with each upgrade, the OS might
be vulnerable to new types of attacks.
According to, the OS is prone to DoS and
DDoS attacks, along with the arbitrary
code execution, and root-kit attacks. On
the other hand, since applications rely on
running software programs to perform the
required tasks, these software programs are
vulnerable to application attacks, rendering
the application itself prone to various types
of attacks. This includes malware that
including viruses, worms, software
Trojans attacks, in addition to buffer
overflow and malicious code injection
attacks. In the following, a set of these
possible software attacks are described.
•Worm attacks aim to target the robotic
systems by exploiting the vulnerabilities of
their network’s connected devices before
self-propagation and self-replicating to
infect other robotic devices, and target
industrial control systems. A prime
example of that is the famous Stuxnet
attack including its Stuxnet 2.0 and
Stuxnet Secret Twin Variant. This also
included Flame, Gauss and Grayfish,
Duqu, and Duqu 2.0, which were initially
designed by the joint US and Israel’s
signal intelligence (SIGINT) National Unit
(ISNU), Unit 8200 as part of “Operation
Olympics” to target Iran’s nuclear program
assets.
•Ransomware attacks aim to encrypt all
the data linked to robotic systems, devices
and applications, as well as locking the
backed-up data while preventing legitimate
users from re-accessing them without
conducting a Bitcoin payment. Hence, the
term of “Crypto ware”, targeting robotic
systems and data confidentiality, integrity,
availability, authentication and privacy.
•Botnet attacks are usually employed as
bots to conduct D-DoS attacks against
medical and industrial robotic systems.
Botnets can be based on malicious codes
used to infect unprotected robotic devices.
Botnets can also be linked to worms,
ransomware and Trojans which allow them
to conduct attacks against robotic systems
and data’s privacy, confidentiality and
integrity. This includes, a variety of
botnets such as Storm (2007), Cutwail
(2007), Grum (2008), Kraken (2008),
Mariposa (2008), Methbot (2016), Mirai
(2016), and Glupteba (2019). This type of
malware can affect the confidentiality, •Traffic analysis attacks since robotic
integrity, availability, authentication of systems are still relying on open wireless
data and robots. communications or communications with
basic security measures, traffic analysis

(Yaacoub, 19 March 2021) attacks can occur in a much more frequent

manner. This includes listening to the
4.2 Attacks on the robots ongoing traffic between the robots and
their robot controllers, and retrieve vital
communications
information without being detected. This
Robotic communications are also prone to mainly affects the privacy and
different attacks that might affect different confidentiality of both robotic systems and
security services (i.e., authentication, data, and can lead to further future attacks.
confidentiality, and integrity), as stated in
(Yaacoub, 19 March 2021)
the following.
•Jamming attacks aim to interrupt and 4.3 Robotic attacks: impact and
disrupt the robot-to robot and robot-to- concerns
humans communication with the aim to
The increasing number of attacks against
suspend further robotic activities and jam
robots and robotic systems has led to an
any sort of communication and control.
increase in number of concerns. This has
Thus, targeting both systems and data
raised many concerns surrounding this
availability.
field along questioning the ability of
•De-authentication attacks aim to effectively deploying in various domains
temporarily, periodically or disable the and areas of operation.
robotic devices from being able to connect
•On national security the use of robots and
back to their initial operator, disrupting the
robotics in domestic crimes and domestic
communication between them and the
terrorism has increased recently, not only
robotic devices and possibly preventing
through their use in the cyber field, but
them from re-connecting back and
also in the physical field too. Robots can
hijacking the robot by gaining control.
be re-modified to carry lethal weapons or
This aims to target the availability,
can be re-programmed to perform an
authentication and integrity of both data
excessive use force which can lead to both
and systems.
human and material losses. In fact, without
a proper programming that ensures a safer
and much more secure deployment and use
of robots in police and law enforcement
fields, robots may end up in a blue-on-blue
engagement which may result in friendly
fire, or engaging the wrong targets
including civilians.
(Yaacoub, 19 March 2021)
5 Securing robotics: presented
solutions and effective
countermeasures
It is essential to implement and maintain
effective security countermeasures in order
to secure the robotics systems. Therefore,
the need for a strong multi-factor
authentication process, along with the
identification and verification processes
(based on a strong access control policy
and robot fingerprints measures), in
addition to multi-factor confidentiality, are
highly recommended. This allows the
prevention of any malicious physical
and/or logical unauthorized access. In fact,
securing robots, robotics, and robot
operating systems is not an easy task.
However, it is not also an impossible task
either. Therefore, different cryptographic,
non-cryptographic and AI-based solutions
were presented for this specific task. We
highlight the various solutions presented
by various authors and highlight their
advantages and drawbacks.
(Yaacoub, 19 March 2021)
5.1 Cyber threat intelligence
The Cyber Threat Intelligence (CTI) is
based on the information gathered about
robotic threats and threat actors which
would help in mitigating harmful cyber-
events based on the Advanced Persistent
Threat (APT) concept through early
detection and prevention. In fact, CTI
sources include information gathered from
HUMAN INTELLIGENCE (HUMINT),
Open-Source INTELLIGENCE (OSINT),
TECHNICAL INTELLIGENCE
(TECHINT) and intelligence gathered
from the dark web (silk road). This allows
an enhancement in the robotic domain via
an evidence-based malware analysis.
(Yaacoub, 19 March 2021)
6 Security requirements,
recommendations, and future
research directions
Based on the reviewed works, we found
that various security requirements are still
needed to be studied, conducted and
analysed to enhance the discussed security
countermeasures and the recommendations
for future research directions. A very
limited number of presented work included
managing the security aspect of robotics
during the design phase, and many focused
on how to maintain the privacy and
confidentiality through encryption without
taking into consideration the source
authentication and data integrity part
through the use of strong keyed hash
mechanism (e.g. HMAC) or by using
authentication operation mode such as
Cipher-based Message Authentication
Code (CMAC) and Galois Message
Authentication Code (GMAC).
(Yaacoub, 19 March 2021)
6.1 Security requirements
It is essential to ensure the security of
robot’s wireless communication through
the implementation of various security
mechanisms. This maintains secure
communication and ensures authentication,
integrity, confidentiality, and availability.
(Yaacoub, 19 March 2021)
6.1.1 Adaptive security
This paper found that it is important to
ensure and implement an active and
adaptive security solution. This adaptive
security solutions can be divided into two
main types, threat centred or data-centred
to know what data to secure, and against
whom the data must be secured
(Yaacoub, 19 March 2021)
7 Conclusion
Nowadays, robotic systems are being
deployed and used in different domains
that are based on critical infrastructures.
However, robotic systems suffer from
several security vulnerabilities that can be
exploited to launch dangerous attacks,
which may have drastic consequences on
these infrastructures escalating from
economical losses all the way to the loss of
human lives. Such attacks are possible due
to the lack security by design of robotic
systems and the reliance on open wireless
communication channels. As such, it is
highly recommended to protect robots
from any possible attack and by all means
necessary. This includes detecting and
preventing attackers from breaching into
these systems to inject malicious malware
or/and data to cause either chaos and
havoc in the robots’ operation, or to leak
sensitive information (industrial
espionage). Therefore, the authentication
process should be designed to reach the
highest possible security level by
employing mutual multi-factor
authentication scheme. This helps in
reducing the illegal access to robots/users.
References
1. Rüßmann, M., Lorenz, M., Gerbert, P.,
Waldner, M., Justus, J., Engel, P.,
Harnisch, M.: Industry 4.0: the future of
productivity and growth in manufacturing
industries. Boston Consult. Group 9(1),
54–89 (2015)
2. Bahrin, M.A.K., Othman, M.F., Nor
Azli, N.H., Talib, M.F.: Industry 4.0: a
review on industrial automation and
robotic. J. Teknol. 78(6–13), 137–143
(2016)
3. Pfeiffer, S.: Robots, industry 4.0 and
humans, or why assembly work is more
than routine work. Societies 6(2), 16
(2016)
4. Shyvakov, O.: Developing a security
framework for robots. Master’s thesis,
University of Twente (2017)
5. Simoens, P., Dragone, M., Saffiotti, A.:
The internet of robotic things: a review of
concept, added value and applications. Int.
J. Adv. Robot. Syst. 15(1),
1729881418759424 (2018)
6. Chui, M., Manyika, J., Miremadi, M.:
Where machines could replace humans-
and where they can’t (yet). McKinsey Q.
7, 1–6 (2016) 7. Kirschgens, L.A., Ugarte,
I.Z., Uriarte, E.G., Rosas, A.M., Vilches,
V.M.: Robot hazards: from safety to
security (2018). arXiv preprint
arXiv:1806.06681
8. Guerrero-Higueras, Á.M., DeCastro-
Garcia, N., Matellan, V.: Detection of
cyber-attacks to indoor real time
localization systems for autonomous
robots. Robot. Auton. Syst. 99, 75–83
(2018)
9. Petit, J., Shladover, S.E.: Potential
cyberattacks on automated vehicles. IEEE
Trans. Intell. Transp. Syst. 16(2), 546–556
(2015)
10. Cerrudo, C., Apa, L.: Hacking robots
before skynet. Cybersecurity Insight,
IOActive Report, Seattle, USA (2017)
11. Vuong, T., Filippoupolitis, A., Loukas,
G., Gan, D.: Physical indicators of cyber
attacks against a rescue robot. In: 2014
IEEE International Conference on survey. Robot. Auton. Syst. 94, 43–52
Pervasive Computing and (2017)
Communications Workshops (PERCOM
Workshops), pp. 338–343. IEEE (2014)
12. Dash, P., Karimibiuki, M.,
Pattabiraman, K.: Stealthy attacks against
robotic vehicles protected by control-based
intrusion detection techniques. J. Digit.
Threats Res. Pract. 2(1), 1–25 (2021)
13. Chowdhury, A., Karmakar, G.,
Kamruzzaman, J.: Survey of recent cyber
security attacks on robotic systems and
their mitigation approaches. In: Cyber
Law, Privacy, and Security: Concepts,
Methodologies, Tools, and Applications,
pp. 1426–1441. IGI Global (2019) 14.
Lacava, G., Marotta, A., Martinelli, F.,
Saracino, A., La Marra, A., Gil-Uriarte, E.,
Vilches, V.M.: Current research issues on
cyber security in robotics (2020) 15.
Mitchell, R., Chen, I.-R.: A survey of
intrusion detection techniques for cyber-
physical systems. ACM Comput. Surv.
(CSUR) 46(4), 55 (2014)
16. Kehoe, B., Patil, S., Abbeel, P.,
Goldberg, K.: A survey of research on
cloud robotics and automation. IEEE
Trans. Autom. Sci. Eng. 12(2), 398–409
(2015)
17. Chowdhury, A., Karmakar, G.,
Kamruzzaman, J.: Survey of recent cyber
security attacks on robotic systems and
their mitigation approaches. In: Detecting
and Mitigating Robotic Cyber Security
Risks, pp. 284–299. IGI Global (2017)
18. Jeong, S.-Y., Choi, I.-J., Kim, Y.-J.,
Shin, Y.-M., Han, J.-H., Jung, G.-H., Kim,
K.-G.: A study on ros vulnerabilities and
countermeasure. In: Proceedings of the
Companion of the 2017 ACM/IEEE
International Conference on Human–
Robot Interaction, pp. 147– 148. ACM
(2017)
19. Hellaoui, H., Koudil,M., Bouabdallah,
A.: Energy-efficient mechanisms in
security of the internet of things: a survey.
Comput. Netw. 127, 173–189 (2017)
20. Guiochet, J., Machin, M., Waeselynck,
H.: Safety-critical advanced robots: a