actively utilized in the military domain [ 2 ]. Similarly, the The use of robots has exponentially increased in the last use of service robots has also significantly increased in decade. Throughout the year 2022, the utilization and recent years. These robots are designed to interact and deployment of industrial robots increased by 40% in the communicate with humans to assist in the completion of United States and 6% in Spain, according to the Spanish everyday tasks.

Association of Robotics (AER) [ 1 ]. Industrial robotics has Similarly, to other types of devices, cybersecurity in traditionally focused on the precise repetition of tasks, robotic environments is an important aspect that besurpassing the capabilities of a human being. However, comes critical when a robot is involved in highly sensitive in recent years, there has been a particular emphasis tasks or interacts with people. Many issues with these on the development of robotic platforms capable of per- platforms arise because manufacturers often prioritize forming tasks that are dificult or dangerous for humans. manufacturing cost or design over conducting product In this regard, the most impactful robotic platforms are security testing [ 3 ]. In addition to the lack of device sequadruped robots. These robots are characterized by sup- curity by manufacturers, it is worth noting that most of porting their weight on four legs, typically mimicking the these robotic platforms are "plug and play," meaning that morphology of a dog. The design of these devices ofers end users often do not pay proper attention to configuradvantages over bipedal robots due to their versatility ing the device correctly. This includes changing default in adapting to various types of terrains. The characteris- passwords, which poses an additional security challenge. tics of quadruped robots enable them to undertake tasks This paper aims to address some of the security issues considered challenging or hazardous for humans. These presented by both quadruped robotic platforms and sotasks include bomb inspection and deactivation, radia- cial robots. Specifically, a security evaluation has been tion detection, and critical infrastructure maintenance. conducted on the quadruped robot Unitree A1 and the semi-humanoid robot Pepper, with the objective of idenBISEC’23: 14th International Conference on Business Information tifying potential vulnerabilities and risks that could afect *SeCcourrrietys,pNonovdeinmgbaerut2h4o,r2.023, Niš, Serbia both humans and the robot itself, as well as the environ$ acamv@unileon.es (A. Campazas-Vega); ment in which it is deployed. The severity of the discovamigud00@estudiantes.unileon.es (A. Miguel-Diez); ered vulnerabilities has been assessed using the CVSSv3 mherml00@estudiantes.unileon.es (M. Hermida-López); (Common Vulnerability Scoring System version 3) stancalvaa@unileon.es (C. Álvarez-Aparicio); icrem@unileon.es dard. This work and the methods employed can serve as (I. S. Crespo-Martínez); am.guerrero@unileon.es (Á. M. Guerrero-Higueras) a starting point for other researchers interested in eval0000-0001-8237-5962 (A. Campazas-Vega); 0000-0002-7465-8054 uating the security risks of other models of quadruped (C. Álvarez-Aparicio); 0000-0002-3154-0144 (I. S. Crespo-Martínez); robots and social robots. 0000-0001©-8202247C7o-p0yr7ig0h0tfo(rÁth.isMpa.peGrbuyietsraruethroors-. HUseigpeurmeirttaeds)under Creative Commons License The rest of the article is organized as follows: In SecCPWrEooUrckReshdoinpgs IhStpN:/c1e6u1r3-w-0s.o7r3g ACttEribUutRion W4.0oInrtekrnsahtioonpal (PCCroBYce4.0e).dings (CEUR-WS.org) tion 2, related works are presented. Section 3 introduces the architecture and characteristics of the robots Unitree A1 and Pepper, along with the method for assessing the severity of discovered vulnerabilities. Section 4 provides details on the various experiments conducted and the implications of exploiting the vulnerabilities in a realworld environment. Finally, Section 5 ofers the current conclusions.

Pepper is the world’s first social humanoid robot capable of recognizing human faces and basic emotions. It is optimized for interaction and can engage with people through conversation or its touchscreen interface. Pepper is designed for intuitive and natural interaction. It finds common applications in various fields such as hospitality, retail, healthcare, education, entertainment, and personal assistance. Its appearance is depicted in Figure 2.

Pepper has 20 degrees of freedom to achieve more natural and expressive movements. Additionally, it features voice recognition available in 15 languages and perception modules to recognize and interact with the person in front of it. In terms of physical sensors, the robot is equipped with touch sensors, LEDs, microphones for multimodal interaction, infrared sensors, bumpers, an inertial unit, and 2D and 3D cameras to enable autonomous and omnidirectional navigation. Pepper provides an API that allows for the development of custom applications and functionalities for this robotic platform.

To assess the severity of the discovered vulnerabilities, the Common Vulnerability Scoring System (CVSS) version 3 has been employed [ 15 ]. CVSS, or Common Vulnerability Scoring System, is an open and widely used framework that defines metrics for communicating the characteristics, impact, and severity of vulnerabilities affecting security elements. It provides a standardized way to evaluate and communicate the seriousness of security vulnerabilities.

CVSSv3 categorizes vulnerabilities with a numerical value between 0 and 10. A vulnerability with a score between 0.1 and 3.9 is considered to have low severity. Vulnerabilities with a score between 4.0 and 6.9 are classiifed as having moderate severity. Finally, vulnerabilities with a score between 7.0 and 10.0 are considered to have high severity. This scoring system provides a clear way to assess the seriousness of vulnerabilities and helps organizations prioritize their remediation eforts.

CVSS defines metrics to assess the likelihood that a vulnerability will be exploited. The metrics defined by the CVSSv3 standard can be seen in Table 1.

4.1.1. Lack of protection against brute force attacks in SSH protocol

robot is through the SSH protocol. This connection allows for configuring certain aspects of the robot, such as the AP password, and even controlling the robot using the installed SDK. Both the Unitree A1 robot and Pepper do not implement security measures to prevent Figure 3: On the left, view of the teleoperator after being brute-force attacks on the SSH servers installed in the attacked. On the right, real image of the robot’s situation. robot. To verify that the SSH servers are vulnerable to dictionary attacks or brute-force attacks, the open-source tool Hydra has been used [ 16 ].

If an attacker gains access to the robot’s internal com- actual situation, potentially enabling an attacker to cause puters, they could potentially control the robot remotely harm to the robot itself or its surrounding environment. and even delete system files, rendering the device inop- To exploit this vulnerability, an ARP Spoofing attack erable. Furthermore, since the default password for both was conducted using the "arpspoof" tool [ 17 ]. This atdevices is considered insecure today and is present in tack is considered one of the most dangerous on LAN a wide range of online dictionaries, this vulnerability is networks [ 18 ]. The attacker manipulates both the robot’s deemed severe with a score of 9 and the following CVSS and the victim’s ARP tables, associating their MAC advector: AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H. dress with the victim’s IP address, thereby redirecting all trafic to a machine controlled by the attacker. Subse4.1.2. Lack of verification against MiTM attack quently, the attacker redirects the trafic arriving from the user to a web server identical to the robot’s but unNeither the quadruped robot Unitree A1 nor the social der the attacker’s control. In this case, the web server robot Pepper implement security measures to prevent deployed by the Unitree is MJPG-Streamer, which is puban attacker with access to the robot’s network from per- licly available on GitHub [ 19 ]. forming a Man-in-the-Middle (MitM) attack. This would The consequences of such attacks can be critical in allow the attacker to intercept unencrypted communica- certain environments. For instance, in Figure 3, can see tions and manipulate them at will. Here’s an example of that the person operating the robot perceives an obstaclethe vulnerability in the Unitree A1 robot: The A1 robot free corridor, while in reality, the robot is in a hazardous deploys a web server that serves images from the robot’s situation near a set of stairs. camera, allowing an operator to teleoperate the device This vulnerability has a high impact with a score remotely. of 8.0 and the following associated CVSSv3 vector:

An attacker who has access to the network deployed by AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. A video has the robot can carry out a MitM attack, altering the video been created to replicate the experiment performed [ 20 ]. transmission from the robot’s camera with another feed controlled by the attacker, without the victim noticing 4.1.3. Denial of service to the robot’s Web server any diference. If the robot is used in critical situations, the operator controlling the robot will not perceive the The web servers deployed by both robots are vulnerable to denial-of-service (DoS) attacks. The process to exesimply by plugging them in. These devices are referred to as Rubber Ducky [ 21 ]. Furthermore, the exposure of USB ports also makes the robot vulnerable to attacks carried out with a USB killer device [ 22 ]. This type of device discharges a high-voltage surge, damaging the components of the connected device. This vulnerability has a high impact with a score of 7.5, and the associated CVSSv3 vector is AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L. 4.2.2. Web server without authentication

does not have an authentication system. Therefore, any user connected to the network emitted by the robot can view the real-time image either through the device’s web server or via the mobile application. To be considered secure, this functionality should require authentication.

This vulnerability has a moderate impact with a score of 5.7 and the following CVSSv3 vector: AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

4.3.1. API access without authentication The API implemented by Pepper allows for complete control of the device. Access to the API occurs without any form of authentication, so an attacker only needs to be on the same network as the robot. Interaction with the API is done through port 9559 using the Python programming language, although C++ and Java are also supported.

This vulnerability has a high impact with a score of 7.5, and the associated CVSSv3 vector is: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 4.3.2. Communication with the web server without encryption

HTTP communication. An attacker connected to the network can snif the trafic and obtain the access credentials for the web server, as depicted in Figure 5.

This vulnerability has a moderate impact with a score of 6.5 and the following CVSSv3 vector: AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N. cute this attack is quite similar to the previous one, as it relies on the ARP Spoofing technique in both cases. To exploit this vulnerability, the attacker must manipulate the victim’s and robot’s ARP tables to intercept trafic. Once the attack is successfully carried out, all packets are received by the attacker, who will then discard these packets, causing the legitimate user to lose the connection to the web server. This vulnerability has a moderate impact with a score of 5.7 and the following associated CVSSv3 vector: AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.

4.2.1. Unsecured physical ports Figure 4 shows the port distribution of the robot. The main vulnerability lies in the fact that the robot does not request any form of authentication when connected through the provided ports.

The lack of authentication poses several security im- 5. Conclusions plications, even without connecting standard input and output devices such as a keyboard and monitor. Cur- The use of robotics is becoming increasingly widespread; rently, there are USB-like devices that function as input however, it is essential that progress in this field is accomand output devices, enabling the execution of commands panied by a thorough review of potential vulnerabilities in these devices.

In this work, a security evaluation has been conducted on the quadruped robot Unitree A1 and the service robot Pepper. Several potential vulnerabilities have been identified that could be exploited by an attacker to gain unauthorized access to the robot or control its movements and actions. For each of the vulnerabilities discovered in this work, a Common Vulnerabilities and Exposures (CVE) has been requested. The CVE program’s mission is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities.

To continue advancing in the field of robotics, it is necessary to implement security measures such as user authentication and authorization, encryption of device communications, and regular security testing to detect and address potential vulnerabilities in the software of various robotic platforms. It is important to emphasize that the cybersecurity of quadruped and social robots is a critical issue that must be addressed by manufacturers, developers, and users of these devices to ensure their proper functioning and protect them against potential malicious attacks that could pose a security risk to the robot itself or to people in its vicinity.

der the grant PID2021-126592OB-C21 funded by MCIN/AEI/10.13039/501100011033 and by ERDF A way of making Europe and under the Grant TED2021-132356B-I00 funded by MCIN/AEI/10.13039/501100011033 and by the "European Union NextGenerationEU/PRTR.