{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,21]],"date-time":"2026-01-21T02:07:14Z","timestamp":1768961234632,"version":"3.49.0"},"reference-count":60,"publisher":"Association for Computing Machinery (ACM)","issue":"1","content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Cyber-Phys. Syst."],"published-print":{"date-parts":[[2026,1,31]]},"abstract":"\n This study evaluates software and hardware implementations based on the Cyber-Physical Firewall (CPFW) framework, which provides a flexible and generic access control mechanism for regulating malicious analog signals targeting cyber-physical systems. We describe the CPFW framework design and the implementation strategies for both software and hardware. The software implementation was performed on a Raspberry Pi, whereas the hardware implementation was performed on a Zybo Z7-10 SoC board. We evaluate the characteristics of each implementation, particularly for audio signals, and discuss the differences that arise between software and hardware implementations, along with the selection of an appropriate approach based on specific requirements. The evaluation results demonstrate that the software implementation of the CPFW framework has an overhead of 3.219\u2009ms, whereas the hardware implementation has an overhead of 310\u2009ns, indicating a difference in overhead of\n \n \\(10^{4}\\)<\/jats:tex-math>\n <\/jats:inline-formula>\n . The hardware implementation resulted in only a 5.88% increase in resource utilization owing to the addition of CPFW circuits, indicating that the added circuit size is practical for real-world applications.\n <\/jats:p>","DOI":"10.1145\/3777453","type":"journal-article","created":{"date-parts":[[2025,12,2]],"date-time":"2025-12-02T13:46:28Z","timestamp":1764683188000},"page":"1-27","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Software and Hardware Implementations of a Cyber-Physical Firewall"],"prefix":"10.1145","volume":"10","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-5766-0411","authenticated-orcid":false,"given":"Ryo","family":"Iijima","sequence":"first","affiliation":[{"name":"National Institute of Advanced Industrial Science and Technology, Koto-ku, Japan and Waseda University, Shinjuku-ku, Japan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9350-6091","authenticated-orcid":false,"given":"Tatsuya","family":"Takehisa","sequence":"additional","affiliation":[{"name":"National Institute of Information and Communications Technology, Koganei, Japan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1583-4174","authenticated-orcid":false,"given":"Tatsuya","family":"Mori","sequence":"additional","affiliation":[{"name":"Computer Science and Communication Engineering, Waseda University, Shinjuku-ku, Japan, and National Institute of Information and Communications Technology, Riken AIP, Japan"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2026,1,20]]},"reference":[{"key":"e_1_3_2_2_2","first-page":"173","volume-title":"33nd International Conference on Machine Learning (ICML \u201916)","volume":"48","author":"Amodei Dario","year":"2016","unstructured":"Dario Amodei, Sundaram Ananthanarayanan, Rishita Anubhai, Jingliang Bai, Eric Battenberg, Carl Case, Jared Casper, Bryan Catanzaro, Qiang Cheng, Guoliang Chen et al. 2016. Deep speech 2: End-to-end speech recognition in English and Mandarin. In 33nd International Conference on Machine Learning (ICML \u201916). Maria-Florina Balcan and Kilian Q. Weinberger (Eds.), JMLR Workshop and Conference Proceedings, Vol. 48, JMLR.org, 173\u2013182. Retrieved from http:\/\/proceedings.mlr.press\/v48\/amodei16.html"},{"key":"e_1_3_2_3_2","unstructured":"Arduino. 2021. Arduino. Retrieved from https:\/\/www.arduino.cc\/"},{"key":"e_1_3_2_4_2","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2017.33"},{"key":"e_1_3_2_5_2","first-page":"279","volume-title":"Advanced Techniques in Computing Sciences and Software Engineering, Volume II of the Proceedings of the 2008 International Conference on SCSS","author":"Bachu Rajesh","year":"2008","unstructured":"Rajesh Bachu, S. Kopparthi, B. Adapa, and Buket D. Barkana. 2008. Voiced\/unvoiced decision for speech signals based on zero-crossing rate and energy. In Advanced Techniques in Computing Sciences and Software Engineering, Volume II of the Proceedings of the 2008 International Conference on SCSS. Springer, 279\u2013282."},{"key":"e_1_3_2_6_2","volume-title":"Biometrics, Personal Identification in Networked Society: Personal Identification in Networked Society","author":"Jain Anil K.","year":"1998","unstructured":"Anil K. Jain, Ruud Bolle, and Sharath Pankanti. 1998. Biometrics, Personal Identification in Networked Society: Personal Identification in Networked Society. Kluwer Academic Publishers."},{"key":"e_1_3_2_7_2","doi-asserted-by":"publisher","DOI":"10.1145\/3464959"},{"key":"e_1_3_2_8_2","volume-title":"SUS-A Quick and Dirty Usability Scale Usability Evaluation in Industry","author":"Brooke John","year":"1996","unstructured":"John Brooke. 1996. SUS-A Quick and Dirty Usability Scale Usability Evaluation in Industry. CRC Press."},{"key":"e_1_3_2_9_2","doi-asserted-by":"publisher","unstructured":"Nicholas Carlini and David A. Wagner. 2018. Audio adversarial examples: Targeted attacks on speech-to-text. In 2018 IEEE Security and Privacy Workshops (SPW) 1\u20137. DOI: 10.1109\/SPW.2018.00009","DOI":"10.1109\/SPW.2018.00009"},{"key":"e_1_3_2_10_2","volume-title":"26th Annual Network and Distributed System Security Symposium (NDSS)","author":"Berkay Celik Z.","year":"2019","unstructured":"Z. Berkay Celik, Gang Tan, and Patrick D. McDaniel. 2019. IoTGuard: Dynamic enforcement of security and safety policy in commodity IoT. In 26th Annual Network and Distributed System Security Symposium (NDSS). The Internet Society."},{"key":"e_1_3_2_11_2","doi-asserted-by":"publisher","DOI":"10.1145\/3313831.3376304"},{"key":"e_1_3_2_12_2","doi-asserted-by":"publisher","DOI":"10.1145\/3243734.3243865"},{"key":"e_1_3_2_13_2","unstructured":"Simulink Documentation. 2020. Simulation and Model-Based Design. Retrieved from https:\/\/www.mathworks.com\/products\/simulink.html"},{"key":"e_1_3_2_14_2","unstructured":"Benedikt Eiteneuer and Oliver Niggemann. 2020. LSTM for model-based anomaly detection in cyber-physical systems. arXiv:2010.15680. Retrieved from https:\/\/arxiv.org\/abs\/2010.15680"},{"key":"e_1_3_2_15_2","doi-asserted-by":"publisher","DOI":"10.1109\/ICOSP.2002.1181092"},{"key":"e_1_3_2_16_2","unstructured":"Raspberry Pi Foundation. 2021. Raspberry Pi 3B+. Retrieved from https:\/\/www.raspberrypi.org\/products\/raspberry-pi-3-model-b-plus\/"},{"key":"e_1_3_2_17_2","unstructured":"Raspberry Pi Foundation. 2021. Raspberry Pi OS Lite Release Notes. Retrieved from https:\/\/downloads.raspberrypi.org\/raspios_lite_armhf\/release_notes.txt"},{"key":"e_1_3_2_18_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-29959-0_25"},{"key":"e_1_3_2_19_2","unstructured":"GNU Radio. 2021. GNU Radio The Free & Open Software Radio Ecosystem. Retrieved from http:\/\/www.gnuradio.org"},{"key":"e_1_3_2_20_2","unstructured":"Google. 2021. AIY Voice Kit. Retrieved from https:\/\/aiyprojects.withgoogle.com\/voice\/"},{"key":"e_1_3_2_21_2","unstructured":"Google. 2021. Speech-to-Text Accurately Convert Speech into Text Using an API Powered by Google\u2019s AI Technologies. Retrieved from https:\/\/cloud.google.com\/speech-to-text"},{"key":"e_1_3_2_22_2","unstructured":"IFTTT. 2021. IFTTT. Retrieved from https:\/\/ifttt.com\/"},{"key":"e_1_3_2_23_2","doi-asserted-by":"publisher","DOI":"10.1109\/TETC.2019.2953041"},{"key":"e_1_3_2_24_2","doi-asserted-by":"publisher","DOI":"10.1145\/3528416.3530997"},{"key":"e_1_3_2_25_2","unstructured":"Digilent Inc. 2021. Zybo Z7 DMA Audio Demo. Retrieved from https:\/\/digilent.com\/reference\/programmable-logic\/zybo-z7\/demos\/dma-audio"},{"key":"e_1_3_2_26_2","unstructured":"Digilent Inc. 2024. Zybo Z7 Getting Started Guide. Retrieved from https:\/\/digilent.com\/reference\/programmable-logic\/zybo-z7\/start"},{"key":"e_1_3_2_27_2","unstructured":"InvenSense Inc. 2014. TDK-InvenSense Motion Sensor Universal Evaluation Board (UEVB) User Guide. Retrieved from https:\/\/invensense.tdk.com\/download-pdf\/invensense-motion-sensor-universal-evaluation-board-uevb-user-guide\/"},{"key":"e_1_3_2_28_2","unstructured":"Xilinx Inc. 2022. FIR Compiler Product Page. Retrieved from https:\/\/www.xilinx.com\/products\/intellectual-property\/fir_compiler.html"},{"key":"e_1_3_2_29_2","unstructured":"YAMAHA Inc. 2021. A-S501 Integrated Amplifier. Retrieved from https:\/\/usa.yamaha.com\/products\/audio_visual\/hifi_components\/a-s501\/downloads.html"},{"key":"e_1_3_2_30_2","unstructured":"ITU-T. 2003. G.114 : One-Way Transmission Time. Retrieved from https:\/\/www.itu.int\/rec\/T-REC-G.114-200305-I\/en"},{"key":"e_1_3_2_31_2","first-page":"415","volume-title":"The 22th USENIX Security Symposium","author":"Jana Suman","year":"2013","unstructured":"Suman Jana, David Molnar, Alexander Moshchuk, Alan M. Dunn, Benjamin Livshits, Helen J. Wang, and Eyal Ofek. 2013. Enabling fine-grained permissions for augmented reality applications with recognizers. In The 22th USENIX Security Symposium, 415\u2013430."},{"key":"e_1_3_2_32_2","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3485389"},{"key":"e_1_3_2_33_2","doi-asserted-by":"publisher","DOI":"10.21437\/Interspeech.2017-1111"},{"key":"e_1_3_2_34_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-92627-8_16"},{"key":"e_1_3_2_35_2","first-page":"145","volume-title":"IEEE Symposium on Security and Privacy (S&P)","author":"Foo Kune Denis","year":"2013","unstructured":"Denis Foo Kune, John D. Backes, Shane S. Clark, Daniel B. Kramer, Matthew R. Reynolds, Kevin Fu, Yongdae Kim, and Wenyuan Xu. 2013. Ghost talk: Mitigating EMI signal injection attacks against analog sensors. In IEEE Symposium on Security and Privacy (S&P). IEEE Computer Society, 145\u2013159."},{"key":"e_1_3_2_36_2","doi-asserted-by":"publisher","DOI":"10.21437\/Interspeech.2017-360"},{"key":"e_1_3_2_37_2","doi-asserted-by":"publisher","DOI":"10.1145\/2873587.2873595"},{"key":"e_1_3_2_38_2","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.13"},{"key":"e_1_3_2_39_2","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2018.1331020"},{"key":"e_1_3_2_40_2","first-page":"3963","volume-title":"33rd USENIX Security Symposium (USENIX Security \u201924)","author":"Liu Tiantian","year":"2024","unstructured":"Tiantian Liu, Feng Lin, Zhongjie Ba, Li Lu, Zhan Qin, and Kui Ren. 2024. MicGuard: A comprehensive detection system against out-of-band injection attacks for different level microphone-based devices. In 33rd USENIX Security Symposium (USENIX Security \u201924). USENIX Association, Philadelphia, PA, 3963\u20133978. Retrieved from https:\/\/www.usenix.org\/conference\/usenixsecurity24\/presentation\/liu-tiantian"},{"key":"e_1_3_2_41_2","doi-asserted-by":"publisher","DOI":"10.1109\/TBIOM.2021.3059479"},{"key":"e_1_3_2_42_2","doi-asserted-by":"publisher","DOI":"10.5772\/50639"},{"key":"e_1_3_2_43_2","unstructured":"Pyramid. 2021. Pyramid TW28 3.75 Aluminum Bullet Horn Tweeter Pair with Swivel Housing. Retrieved from https:\/\/www.parts-express.com\/Pyramid-TW28-3.75-Aluminum-Bullet-Horn-Tweeter-Pair-with-Swivel-Housing-270-105"},{"key":"e_1_3_2_44_2","first-page":"229","volume-title":"The 13th USENIX Conference (LISA \u201999)","author":"Roesch Martin","year":"1999","unstructured":"Martin Roesch. 1999. Snort - Lightweight intrusion detection for networks. In The 13th USENIX Conference (LISA \u201999), 229\u2013238."},{"key":"e_1_3_2_45_2","first-page":"547","volume-title":"15th USENIX Symposium on (NSDI \u201918)","author":"Roy Nirupam","year":"2018","unstructured":"Nirupam Roy, Sheng Shen, Haitham Hassanieh, and Romit Roy Choudhury. 2018. Inaudible voice commands: The long-range attack and defense. In 15th USENIX Symposium on (NSDI \u201918). USENIX Association, 547\u2013560."},{"key":"e_1_3_2_46_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-92627-8_15"},{"key":"e_1_3_2_47_2","doi-asserted-by":"publisher","DOI":"10.1371\/journal.pcbi.1008228"},{"key":"e_1_3_2_48_2","doi-asserted-by":"publisher","DOI":"10.21437\/Interspeech.2015-92"},{"key":"e_1_3_2_49_2","unstructured":"Shunsuke Aihara. 2021. Github: Shunsukeaihara\/Changefinder. Retrieved from https:\/\/github.com\/shunsukeaihara\/changefinder"},{"key":"e_1_3_2_50_2","doi-asserted-by":"publisher","DOI":"10.5555\/2831143.2831199"},{"key":"e_1_3_2_51_2","volume-title":"The 29th USENIX Security Symposium","author":"Sugawara Takeshi","year":"2020","unstructured":"Takeshi Sugawara, Benjamin Cyr, Sara Rampazzi, Daniel Genkin, and Kevin Fu. 2020. Light commands: Laser-based audio injection attacks on voice-controllable systems. In The 29th USENIX Security Symposium."},{"key":"e_1_3_2_52_2","doi-asserted-by":"publisher","DOI":"10.21437\/Odyssey.2016-41"},{"key":"e_1_3_2_53_2","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2017.42"},{"key":"e_1_3_2_54_2","volume-title":"9th USENIX Workshop on Offensive Technologies (WOOT)","author":"Vaidya Tavish","year":"2015","unstructured":"Tavish Vaidya, Yuankai Zhang, Micah Sherr, and Clay Shields. 2015. Cocaine noodles: Exploiting the gap between human and machine speech recognition. In 9th USENIX Workshop on Offensive Technologies (WOOT)."},{"key":"e_1_3_2_55_2","doi-asserted-by":"publisher","DOI":"10.21437\/Interspeech.2015-465"},{"key":"e_1_3_2_56_2","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00026"},{"key":"e_1_3_2_57_2","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2025.242334"},{"key":"e_1_3_2_58_2","first-page":"49","volume-title":"27th USENIX Security Symposium (USENIX Security \u201918)","author":"Yuan Xuejing","year":"2018","unstructured":"Xuejing Yuan, Yuxuan Chen, Yue Zhao, Yunhui Long, Xiaokang Liu, Kai Chen, Shengzhi Zhang, Heqing Huang, XiaoFeng Wang, and Carl A. Gunter. 2018. CommanderSong: A systematic approach for practical adversarial voice recognition. In 27th USENIX Security Symposium (USENIX Security \u201918). USENIX Association, Baltimore, MD, 49\u201364. Retrieved from https:\/\/www.usenix.org\/conference\/usenixsecurity18\/presentation\/yuan-xuejing"},{"key":"e_1_3_2_59_2","doi-asserted-by":"publisher","DOI":"10.1109\/JSTSP.2016.2647199"},{"key":"e_1_3_2_60_2","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134052"},{"key":"e_1_3_2_61_2","doi-asserted-by":"publisher","DOI":"10.1109\/MWC.2019.1800477"}],"container-title":["ACM Transactions on Cyber-Physical Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3777453","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,1,20]],"date-time":"2026-01-20T13:46:59Z","timestamp":1768916819000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3777453"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,1,20]]},"references-count":60,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2026,1,31]]}},"alternative-id":["10.1145\/3777453"],"URL":"https:\/\/doi.org\/10.1145\/3777453","relation":{},"ISSN":["2378-962X","2378-9638"],"issn-type":[{"value":"2378-962X","type":"print"},{"value":"2378-9638","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026,1,20]]},"assertion":[{"value":"2024-09-15","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2025-10-28","order":2,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2026-01-20","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}