Rik Chatterjee

Bio

Hi, I'm Rik Chatterjee, a Research Assistant at Colorado State University. I work at the Energy Institute, specifically in the Systems Cyber Lab headed by Dr. Jeremy Daily. I have been involved in several research projects, including:

• The DARPA Assured Micropatching (AMP) program as a TA3 performer, where I created challenge problems, performed binary reversing, and evaluated performer solutions.
• The NSF PIVOT project, focused on vehicle system cybersecurity and intelligent transportation.
• Currently, I'm working on the Byte RI project in collaboration with NREL and AIS, focusing on applying solutions from AMP into embedded devices within the energy sector's electric grids.

Research Interests

• Finding software bugs (still learning!)
• Hardware reversing (still learning!)
• Commercial vehicle security (still learning!)
• Embedded systems (still learning!)
• Systems engineering (still learning!)

Current Projects

• AMP Project: Assured Micropatching with DARPA for patching of large legacy binaries without access to source code
• PIVOT Project: NSF-funded research focused on vehicle data generation and disemmination to the community
• Byte RI Project: Collaboration with NREL and AIS for embedded solutions in electric grids

Publications

• Exploiting transport protocol vulnerabilities in SAE J1939 networks - Symposium of Vehicular Security and Privacy, 2023 [DOI]
• Exploiting diagnostic protocol vulnerabilities on embedded networks in commercial vehicles - Symposium of Vehicular Security and Privacy, 2024 [DOI]
• Commercial vehicle electronic logging device security: Unmasking the risk of truck-to-truck cyber worms - Symposium of Vehicular Security and Privacy, 2024 [DOI]
• Assured Micropatching of Race Conditions in Legacy Real-time Embedded Systems - Workshop on Real-Time Autonomous Systems Security, 2024 [DOI]
• A Demonstration of MBSEsec Applied to Securing Cyber-Physical System Communications - IEEE Aerospace Conference, 2024 [DOI]

Presentations

• DEFCON32: [Truck2Truck Worm]
• Symopisum of Vehicle Security and Privacy: [Diagnostic Protocol Vulnerabilities in Commercial Vehicles]
• NMFTA Cybersecuirty Conference: [Ultimate Truck Hacking Platform]
• Poster: NMFTA Cybersecurity Conference: [UDS Vulnerabilities]
• Symopisum of Vehicle Security and Privacy: [Transport Protocol Vulnerabilities in Commercial Vehicles]
• Workshop on Road to Future Automotive Datasets: [J1939 Data-Link Layer Vulnerabilities in Truck Networks]
• Poster: INCOSE Western States Regional Conference: [The Request Overload Attack]

Personal Projects

• ESP32 Weather Station: A personal project where I built a weather station using ESP32.