Mad Monk: Arbitrary Criticality Escalation in Mixed Criticality Real-Time Systems

Mitchell Duncan; Ao Li; Nathan Fisher; Ning Zhang; Ryan Gerdes; Tanmaya Mishra; Thidapat Chantem

doi:10.1109/ISORC65339.2025.00020

Mad Monk: Arbitrary Criticality Escalation in Mixed Criticality Real-Time Systems

Mitchell Duncan
, Ao Li
, Nathan Fisher
, Ning Zhang
, Ryan Gerdes
, Tanmaya Mishra
, Thidapat Chantem

Department of Computer Science & Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

In safety critical computing, real-time and security concerns are often considered separately, though the behavior of a scheduling model itself may be an attack surface which can be exploited by an attacker to reduce system performance. In this work, we explore how the semantics of mode changes in mixed-criticality systems could be used as one such attack vector. This attack, dubbed Mad Monk, uses a mixed criticality scheduler's mode switches against itself by allowing a task of a lower criticality to interfere with tasks of a higher criticality, thereby forcing a disruptive mode switch which could possibly reduce service to some tasks. We describe this attack in detail, along with a case study demonstrating its risk. Furthermore, extensive simulations of this attack demonstrate its potential effectiveness based on a variety of timing and system factors.

Original language	English
Title of host publication	Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	60-71
Number of pages	12
ISBN (Electronic)	9798331599843
DOIs	https://doi.org/10.1109/ISORC65339.2025.00020
State	Published - 2025
Event	28th IEEE International Symposium on Real-Time Distributed Computing, ISORC 2025 - Toulouse, France Duration: May 26 2025 → May 28 2025

Publication series

Name	Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025

Conference

Conference	28th IEEE International Symposium on Real-Time Distributed Computing, ISORC 2025
Country/Territory	France
City	Toulouse
Period	05/26/25 → 05/28/25

Keywords

mixed criticality systems
real-time systems
security

Access to Document

10.1109/ISORC65339.2025.00020

Cite this

Duncan, M., Li, A., Fisher, N., Zhang, N., Gerdes, R., Mishra, T., & Chantem, T. (2025). Mad Monk: Arbitrary Criticality Escalation in Mixed Criticality Real-Time Systems. In Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025 (pp. 60-71). (Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ISORC65339.2025.00020

Duncan, Mitchell ; Li, Ao ; Fisher, Nathan et al. / Mad Monk : Arbitrary Criticality Escalation in Mixed Criticality Real-Time Systems. Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025. Institute of Electrical and Electronics Engineers Inc., 2025. pp. 60-71 (Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025).

@inproceedings{dea08037274346cea5d47f2cb12c0219,

title = "Mad Monk: Arbitrary Criticality Escalation in Mixed Criticality Real-Time Systems",

abstract = "In safety critical computing, real-time and security concerns are often considered separately, though the behavior of a scheduling model itself may be an attack surface which can be exploited by an attacker to reduce system performance. In this work, we explore how the semantics of mode changes in mixed-criticality systems could be used as one such attack vector. This attack, dubbed Mad Monk, uses a mixed criticality scheduler's mode switches against itself by allowing a task of a lower criticality to interfere with tasks of a higher criticality, thereby forcing a disruptive mode switch which could possibly reduce service to some tasks. We describe this attack in detail, along with a case study demonstrating its risk. Furthermore, extensive simulations of this attack demonstrate its potential effectiveness based on a variety of timing and system factors.",

keywords = "mixed criticality systems, real-time systems, security",

author = "Mitchell Duncan and Ao Li and Nathan Fisher and Ning Zhang and Ryan Gerdes and Tanmaya Mishra and Thidapat Chantem",

note = "Publisher Copyright: {\textcopyright} 2025 IEEE.; 28th IEEE International Symposium on Real-Time Distributed Computing, ISORC 2025 ; Conference date: 26-05-2025 Through 28-05-2025",

year = "2025",

doi = "10.1109/ISORC65339.2025.00020",

language = "English",

series = "Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "60--71",

booktitle = "Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025",

}

Duncan, M, Li, A, Fisher, N, Zhang, N, Gerdes, R, Mishra, T & Chantem, T 2025, Mad Monk: Arbitrary Criticality Escalation in Mixed Criticality Real-Time Systems. in Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025. Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025, Institute of Electrical and Electronics Engineers Inc., pp. 60-71, 28th IEEE International Symposium on Real-Time Distributed Computing, ISORC 2025, Toulouse, France, 05/26/25. https://doi.org/10.1109/ISORC65339.2025.00020

Mad Monk: Arbitrary Criticality Escalation in Mixed Criticality Real-Time Systems. / Duncan, Mitchell; Li, Ao; Fisher, Nathan et al.
Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025. Institute of Electrical and Electronics Engineers Inc., 2025. p. 60-71 (Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Mad Monk

T2 - 28th IEEE International Symposium on Real-Time Distributed Computing, ISORC 2025

AU - Duncan, Mitchell

AU - Li, Ao

AU - Fisher, Nathan

AU - Zhang, Ning

AU - Gerdes, Ryan

AU - Mishra, Tanmaya

AU - Chantem, Thidapat

PY - 2025

Y1 - 2025

N2 - In safety critical computing, real-time and security concerns are often considered separately, though the behavior of a scheduling model itself may be an attack surface which can be exploited by an attacker to reduce system performance. In this work, we explore how the semantics of mode changes in mixed-criticality systems could be used as one such attack vector. This attack, dubbed Mad Monk, uses a mixed criticality scheduler's mode switches against itself by allowing a task of a lower criticality to interfere with tasks of a higher criticality, thereby forcing a disruptive mode switch which could possibly reduce service to some tasks. We describe this attack in detail, along with a case study demonstrating its risk. Furthermore, extensive simulations of this attack demonstrate its potential effectiveness based on a variety of timing and system factors.

AB - In safety critical computing, real-time and security concerns are often considered separately, though the behavior of a scheduling model itself may be an attack surface which can be exploited by an attacker to reduce system performance. In this work, we explore how the semantics of mode changes in mixed-criticality systems could be used as one such attack vector. This attack, dubbed Mad Monk, uses a mixed criticality scheduler's mode switches against itself by allowing a task of a lower criticality to interfere with tasks of a higher criticality, thereby forcing a disruptive mode switch which could possibly reduce service to some tasks. We describe this attack in detail, along with a case study demonstrating its risk. Furthermore, extensive simulations of this attack demonstrate its potential effectiveness based on a variety of timing and system factors.

KW - mixed criticality systems

KW - real-time systems

KW - security

UR - https://www.scopus.com/pages/publications/105019186322

U2 - 10.1109/ISORC65339.2025.00020

DO - 10.1109/ISORC65339.2025.00020

M3 - Conference contribution

AN - SCOPUS:105019186322

T3 - Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025

SP - 60

EP - 71

BT - Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 26 May 2025 through 28 May 2025

ER -

Duncan M, Li A, Fisher N, Zhang N, Gerdes R, Mishra T et al. Mad Monk: Arbitrary Criticality Escalation in Mixed Criticality Real-Time Systems. In Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025. Institute of Electrical and Electronics Engineers Inc. 2025. p. 60-71. (Proceedings - 2025 28th International Symposium on Real-Time Distributed Computing, ISORC 2025). doi: 10.1109/ISORC65339.2025.00020

Mad Monk: Arbitrary Criticality Escalation in Mixed Criticality Real-Time Systems

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this