Robots state of insecurity is onstage. There is an emerging concern about major robot vulnerabilities and their adverse consequences. However, there is still a considerable gap between robotics and cybersecurity domains. For the purpose of filling that gap, the present technical report presents the Robotics CTF (RCTF), an online playground to challenge robot security from any browser. We describe the architecture of the RCTF and provide 9 scenarios where hackers can challenge the security of different robotic setups. Our work empowers security researchers to a) reproduce virtual robotic scenarios locally and b) change the networking setup to mimic real robot targets. We advocate for hacker powered security in robotics and contribute by open sourcing our scenarios.
翻译:机器人的不安全状态已经进入舞台。对机器人的主要脆弱性及其不利后果的关注正在出现。然而,机器人和网络安全领域之间仍然存在着巨大的差距。为了填补这一差距,本技术报告介绍了机器人CTF(RCTF),这是一个在线游乐场,可以挑战任何浏览器的机器人安全。我们描述了RCT的架构,提供了黑客可以挑战不同机器人设置安全的9种情景。我们的工作使安全研究人员能够(a)在当地复制虚拟机器人情景,(b)改变网络设置以模拟真正的机器人目标。我们倡导机器人黑客的强力安全,并通过公开获取我们的情景来作出贡献。